Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:07-02-2016 Executado por Leandro Melati (2016-02-08 22:27:33) Executando a partir de C:\Users\Leandro Melati\Downloads Windows 8.1 Single Language (X64) (2014-11-15 18:03:48) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-2530638663-2618862025-20250992-500 - Administrator - Disabled) Convidado (S-1-5-21-2530638663-2618862025-20250992-501 - Limited - Disabled) Leandro Melati (S-1-5-21-2530638663-2618862025-20250992-1001 - Administrator - Enabled) => C:\Users\Leandro Melati ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Antivírus e antispyware da McAfee (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Antivírus e antispyware da McAfee (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Photoshop Lightroom 5.7 64-bit (HKLM\...\{1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD}) (Version: 5.7.0 - Adobe Systems Incorporated) Advanced Calendar 2.0.0.11189 (HKLM\...\{D9BAB2C9-5236-48c3-AF02-67E799F09BBD}) (Version: 2.0.0.11189 - MEIXIAN XIE) <==== ATENÇÃO AMD Catalyst Install Manager (HKLM\...\{161E08DE-252C-5567-ECEB-52D173E88224}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Atheros Outlook Addin 2010 (HKU\S-1-5-21-2530638663-2618862025-20250992-1001\...\D9918D4858F5B722A4667B7989E1983A8FCC0462) (Version: 1.0.0.0 - Atheros Outlook Addin 2010) bl (x32 Version: 1.0.0 - Your Company Name) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.9.2.8 - Dell Inc.) Dell Data Vault (Version: 4.3.7.0 - Dell Inc.) Hidden Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP) Dell Product Registration (HKLM-x32\...\{17FFE63C-6734-4950-B488-134B5A2505F7}) (Version: 2.04.0280 - Aviata Inc.) Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6745.47 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{A62A2F03-3006-40CA-A3FA-C1086B2FEF5D}) (Version: 1.2.0.94 - Dell) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.5.9 - Synaptics Incorporated) Dell Update (HKLM-x32\...\{D9D0E75C-F791-402A-98E2-A2F43E7B0CE3}) (Version: 1.1.1054.0 - Dell Inc.) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) Dropbox (HKU\S-1-5-21-2530638663-2618862025-20250992-1001\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) Dropbox 20 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 0.9.0 - Dropbox, Inc.) Firebird 2.1.3.18185 (Win32) (HKLM-x32\...\FBDBServer_2_1_is1) (Version: 2.1.3.18185 - Firebird Project) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - ) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.22.1760 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation) iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8.66 (HKLM-x32\...\Java 8.66_is1) (Version: - Oracle Corporation) Matroska Pack (HKLM-x32\...\Matroska Pack) (Version: - ) McAfee All Access – Internet Security (HKLM-x32\...\MSC) (Version: 14.0.6120 - McAfee, Inc.) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.141 - McAfee, Inc.) Microsoft Office 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 15.0.4787.1002 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2530638663-2618862025-20250992-1001\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Módulo de Segurança - Banco do Brasil (HKLM-x32\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.11.0.1 - ) MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project) OEM Application Profile (HKLM-x32\...\{8F92E0CF-620B-5C20-F292-59C93567B06D}) (Version: 1.00.0000 - Nome de sua empresa:) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4779.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4779.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4779.1002 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden ph (x32 Version: 1.0.0 - Your Company Name) Hidden Photodex Presenter (HKLM-x32\...\Photodex Presenter) (Version: - Photodex Corporation) ProShow Gold (HKLM-x32\...\ProShow Gold) (Version: - Photodex Corporation) Proteção de Terminal Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1507.104 - Trusteer) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.312 - Qualcomm Atheros Communications) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.16.007 - Dell Inc.) Rapport (x32 Version: 3.5.1507.104 - Trusteer) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7152 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Shop Foto Digital 1.0 (HKLM-x32\...\{3be270d0-a1d9-4538-b522-5d15e8a9c7cd}_is1) (Version: - Shop Foto Digital) Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) True Color (HKLM-x32\...\{9ece0e50-5966-4a25-a5ef-c93d1e209b04}) (Version: 5.0.0.1 - Entertainment Experience) True Color (Version: 5.0.0.1 - Entertainment Experience LLC) Hidden Warsaw 1.11.0.42826 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.0.42826 - GAS Tecnologia) WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2530638663-2618862025-20250992-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {05104ECA-A5DB-4F44-9BFF-E7D5A8BB474B} - System32\Tasks\svchost => C:\Users\Leandro Melati\AppData\Local\Temp\setup_767.exe [2016-02-07] (TZ) <==== ATENÇÃO Task: {1123376B-9F7D-4DDD-9DFB-B54D7C3D31A6} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe Task: {1BC63245-91CF-43A4-93EA-24F3F14694A4} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2530638663-2618862025-20250992-1001 => C:\Users\Leandro Melati\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15] (Microsoft Corporation) Task: {2500EBD3-CA25-406B-8A65-79D2091E8F99} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {2C21CC98-4481-4CB4-8992-974C6535C19A} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {319F382C-FBD9-4447-94EB-10ABE482BC59} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {397AAA89-F4F5-4C27-90DD-C2DCCFF524CD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {39FEFC6C-8924-4C46-BF26-A938415EF8C1} - System32\Tasks\{55681595-C0FD-4FD4-8CC5-477D56E8F0D6} => pcalua.exe -a "C:\Users\Leandro Melati\AppData\Roaming\mystartsearch\UninstallManager.exe" -c -ptid=slbnew Task: {4801181A-572D-4BDC-8560-E45150BC0A77} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {50E47F6D-B814-4644-96DE-9D21274A9EDA} - System32\Tasks\Dell\Dell Product Registration => /boot /LSRC=autolaunch Task: {5FF41F75-4A79-4CED-925C-C7A14B0ECCFD} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {60DEF14D-64CE-49F3-98E7-30FDB2D12D5D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {76C3A7A9-A870-4911-A9C0-9990F5F0CDE3} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-leandromelati@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-09-19] (Adobe Systems Incorporated) Task: {94B739E8-853A-45EB-9236-44C51A45F3C1} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\21.0\mcdatrep.exe [2015-12-14] (McAfee, Inc.) Task: {9E3E2B03-2946-49F8-9F6C-14F385148287} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2530638663-2618862025-20250992-1001Core => C:\Users\Leandro Melati\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.) Task: {A5B03BAF-6158-4FC7-A362-60A00A7C738E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-19] (Piriform Ltd) Task: {A8B8E8AE-C553-491A-A0BB-745449A213AF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-12-22] (Microsoft Corporation) Task: {BDC49D4C-5731-4898-AB31-6D268CAB98FE} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-10-20] () Task: {BECC4D1E-734C-4863-880F-F7ED2151D343} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-12-29] (PC-Doctor, Inc.) Task: {C4E85232-79B4-4A98-B348-127115E7C953} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-04-09] (Synaptics Incorporated) Task: {C5724B85-B91E-4930-B6F6-39B0A8D5368B} - System32\Tasks\ASC Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\PromoteASCAfterInstall.exe Task: {C6A47F14-8B03-4A71-AD81-A268F59A2615} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-12-29] (PC-Doctor, Inc.) Task: {C7A3CD2B-FF8D-4378-B9E8-E458205FDA01} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2530638663-2618862025-20250992-1001UA => C:\Users\Leandro Melati\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.) Task: {C948C8F2-C852-4FD6-9E75-EF126EDE8634} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-01-12] (Dell Inc.) Task: {D530E47F-0AA4-4B60-8527-AFDE371021CA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-08] (Google Inc.) Task: {E0AE4378-771D-44E9-B984-12FCF7EF6F41} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-08] (Google Inc.) Task: {EB9B0B84-915A-4147-A809-9B63425E68E8} - System32\Tasks\Uninstaller_SkipUac_Leandro_Melati => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe Task: {F5878222-515A-4E2F-8289-EF1E86C5CFE9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-12-22] (Microsoft Corporation) Task: {F8B39533-55ED-4208-BF66-7B7A38CA8C19} - System32\Tasks\Dell\Dell Product Registration Update => /updatecheck /LSRC=autolaunch (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2530638663-2618862025-20250992-1001Core.job => C:\Users\Leandro Melati\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2530638663-2618862025-20250992-1001UA.job => C:\Users\Leandro Melati\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\Uninstaller_SkipUac_Leandro_Melati.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\Leandro Melati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.123rede.com?oem=mbtkv3&uid=W382HJAN_ST1000LM014-1EJ164&tm=1430499457 ShortcutWithArgument: C:\Users\Leandro Melati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.123rede.com?oem=mbtkv3&uid=W382HJAN_ST1000LM014-1EJ164&tm=1430499457 ShortcutWithArgument: C:\Users\Leandro Melati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> www.123rede.com?oem=mbtkv3&uid=W382HJAN_ST1000LM014-1EJ164&tm=1430499457 ==================== Módulos Carregados (Whitelisted) ============== 2013-12-24 14:04 - 2013-12-24 14:04 - 00466944 _____ () C:\Windows\system32\DPPPlugin.dll 2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-12-17 18:38 - 2015-12-17 18:38 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-01-06 22:25 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2015-05-15 22:32 - 2015-05-15 22:32 - 00186760 _____ () C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe 2014-09-21 10:46 - 2014-09-21 10:46 - 00101840 _____ () C:\Program Files\TrueColor\TrueColorALS.exe 2014-10-22 08:24 - 2014-03-07 14:21 - 00080312 _____ () C:\Windows\system32\igfxexps.dll 2015-12-25 06:42 - 2015-12-25 06:42 - 00148104 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarEntry.dll 2013-11-28 23:19 - 2013-11-28 23:19 - 00011264 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-11-28 23:16 - 2013-11-28 23:16 - 00086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll 2013-11-28 23:22 - 2013-11-28 23:22 - 00012928 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe 2016-02-07 21:52 - 2016-01-26 11:54 - 02415616 _____ () c:\users\leandro melati\appdata\roaming\msiql.exe 2015-12-25 06:42 - 2015-12-25 06:42 - 00141960 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe 2015-12-25 06:42 - 2015-12-25 06:42 - 03934344 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\Calendar.exe 2016-02-08 21:51 - 2015-12-23 16:27 - 00629536 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2016-02-08 21:33 - 2016-02-03 05:27 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\libglesv2.dll 2016-02-08 21:33 - 2016-02-03 05:27 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\libegl.dll 2016-02-08 21:33 - 2016-02-03 05:27 - 16799048 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\PepperFlash\pepflashplayer.dll 2015-12-25 06:42 - 2015-12-25 06:42 - 00543368 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPTask.dll 2015-12-25 06:42 - 2015-12-25 06:42 - 00406664 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPNet.dll 2015-12-25 06:41 - 2015-12-25 06:41 - 00428680 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPDR.dll 2015-12-25 06:42 - 2015-12-25 06:42 - 00747144 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPKernel.dll 2015-12-25 06:42 - 2015-12-25 06:42 - 00327304 _____ () C:\Program Files (x86)\CalendarTool\2.0.0.11189\EVPHelp.dll 2014-10-22 03:14 - 2013-12-18 15:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== AlternateDataStreams: C:\Windows\System32:F2871362_Bb.gbp AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 AlternateDataStreams: C:\ProgramData\Temp:1AAB2E68 AlternateDataStreams: C:\Users\Leandro Melati\AppData\Local\Temporary Internet Files:B6Qf2StM2kg8tJigFGbcVV0j AlternateDataStreams: C:\Users\Leandro Melati\AppData\Local\Temporary Internet Files:m73D7HWejmAr3PHmftEAidUBWEcpOW AlternateDataStreams: C:\Users\Todos os Usuários\Temp:1AAB2E68 ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== EXE Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-2530638663-2618862025-20250992-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br IE trusted site: HKU\S-1-5-21-2530638663-2618862025-20250992-1001\...\bb.com.br -> hxxps://seg.bb.com.br ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 11:25 - 2016-02-07 22:06 - 00000896 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2530638663-2618862025-20250992-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Leandro Melati\Desktop\AL DUO STUDIO\WALLPAPER2.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "DropboxOEM" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-2530638663-2618862025-20250992-1001\...\StartupApproved\StartupFolder: => "Mumuzinho - Design.lnk" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{B018E1DC-9DE0-4700-B938-1D08A420CDE3}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe FirewallRules: [{FE1840F5-4920-4578-91F7-2E3C89A75385}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{D9FFF702-1A19-49ED-9A6B-5151EBA119BA}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{299D4FD3-843B-4D34-8EDD-3B7206D57041}] => (Allow) C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{3C19877F-8B7C-438E-A590-72C2DDD01C9C}] => (Allow) C:\Users\Leandro Melati\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{1521DD6D-A301-4248-9E7A-35C32813693E}C:\users\leandro melati\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\leandro melati\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{ECC197EB-8BFC-4AE0-9BC0-BC079B1576DC}C:\users\leandro melati\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\leandro melati\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{639DC5C8-AA90-4058-8876-52833232DE44}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{FECE03E9-3F56-4869-9F9F-82617F2B4B80}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{0F54ADE3-F1D3-43FE-9829-158CBCBF80C7}] => (Allow) LPort=1688 FirewallRules: [{F7496A04-4AD4-4E73-9FC1-172AB4CC9746}] => (Allow) C:\Program Files\Microsoft Office 15\Root\Office15\outlook.exe FirewallRules: [{17363AB7-A949-4CC0-AB9E-16FB3E625DE0}] => (Allow) LPort=1688 FirewallRules: [{C3308D77-DDE0-4BDB-94DF-7FF70FA42F48}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{A81200F5-9947-4C29-A56C-01BE1AC432BB}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1E970DD9-C115-4D26-85A2-0A1E981D4BA3}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{DE0B9E08-056D-4D6B-95A3-06C35F796F3B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{F4853DF8-15C1-4F9D-8E9C-148022496D0F}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{AED7C676-2E7B-4A20-9EF3-90E80575F29C}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [{D28FDA3C-1268-44D4-802D-BD8844CDAB9A}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{3EE21C72-7CD9-4CF6-B82C-8BD114800F01}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{414CA059-5563-4839-8471-4D88B3313320}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3274D0ED-2197-4B25-8206-6F56A21F3909}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A2067FF0-5C73-49E5-8822-2C41D5D5EFA8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{8B2EE87D-5324-4786-A797-57100971760F}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{67626996-4589-4958-8BC7-DB161EF442BF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Pontos de Restauração ========================= 08-02-2016 21:36:16 Removed PocketCloud. ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (02/08/2016 10:22:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Explorer.exe, versão: 6.3.9600.17284, carimbo de data/hora: 0x53f816dc Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000 Código de exceção: 0xc0000005 Deslocamento da falha: 0x0000000400000801 ID do processo com falha: 0x1524 Hora de início do aplicativo com falha: 0xExplorer.exe0 Caminho do aplicativo com falha: Explorer.exe1 Caminho do módulo com falha: Explorer.exe2 ID do Relatório: Explorer.exe3 Nome completo do pacote com falha: Explorer.exe4 ID do aplicativo relativo ao pacote com falha: Explorer.exe5 Error: (02/08/2016 10:18:17 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Explorer.exe, versão: 6.3.9600.17284, carimbo de data/hora: 0x53f816dc Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000 Código de exceção: 0xc0000005 Deslocamento da falha: 0x0000000400000801 ID do processo com falha: 0x18b8 Hora de início do aplicativo com falha: 0xExplorer.exe0 Caminho do aplicativo com falha: Explorer.exe1 Caminho do módulo com falha: Explorer.exe2 ID do Relatório: Explorer.exe3 Nome completo do pacote com falha: Explorer.exe4 ID do aplicativo relativo ao pacote com falha: Explorer.exe5 Error: (02/08/2016 10:11:43 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (02/08/2016 10:11:13 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 39594 Error: (02/08/2016 10:11:13 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 39594 Error: (02/08/2016 10:11:13 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/08/2016 10:10:46 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 12609 Error: (02/08/2016 10:10:46 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 12609 Error: (02/08/2016 10:10:46 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/08/2016 10:10:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 11312 Erros de Sistema: ============= Error: (02/08/2016 10:28:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço print server foi encerrado inesperadamente. Isso aconteceu 1 vez(es). Error: (02/08/2016 10:23:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (02/08/2016 10:23:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 Error: (02/08/2016 10:23:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 Error: (02/08/2016 10:23:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (02/08/2016 10:23:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 Error: (02/08/2016 10:22:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: O serviço Superfetch terminou com o erro: %%1062 Error: (02/08/2016 10:20:52 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: O serviço GoogleChromeUpSvc está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente. Error: (02/08/2016 10:19:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (02/08/2016 10:19:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: %%2 CodeIntegrity: =================================== Date: 2015-02-14 22:35:30.465 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:30.418 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:30.355 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:30.261 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:27.965 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:27.902 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:27.855 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:27.777 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:25.246 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. Date: 2015-02-14 22:35:25.199 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz Percentagem de memória em uso: 34% RAM física total: 8072.96 MB RAM física disponível: 5298.82 MB Virtual Total: 9416.96 MB Virtual disponível: 6114.77 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:922.53 GB) (Free:423.99 GB) NTFS Drive d: (ESP) (Fixed) (Total:0.48 GB) (Free:0.46 GB) FAT32 Drive w: (WINRETOOLS) (Fixed) (Total:0.73 GB) (Free:0.45 GB) NTFS Drive x: (PBR Image) (Fixed) (Total:7.6 GB) (Free:0.62 GB) NTFS Drive y: (PBR Image) (Fixed) (Total:7.6 GB) (Free:0.62 GB) NTFS ==================== MBR & Tabela de Partições ================== ==================== Fim de Addition.txt ============================