Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:29-05-2016 02 Executado por teteu (2016-05-29 18:07:31) Executando a partir de C:\Users\teteu\Desktop Windows 10 Pro Versão 1511 (X64) (2016-05-01 01:33:11) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1250866198-237274365-681837531-500 - Administrator - Disabled) Convidado (S-1-5-21-1250866198-237274365-681837531-501 - Limited - Disabled) DefaultAccount (S-1-5-21-1250866198-237274365-681837531-503 - Limited - Disabled) teteu (S-1-5-21-1250866198-237274365-681837531-1001 - Administrator - Enabled) => C:\Users\teteu ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.) A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk) ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden Aplicativos da Autodesk em destaque 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk) Atualizações da NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk) Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk) Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk) Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk) Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC) BlueStacks App Player (HKLM-x32\...\{D7E3588F-25E6-4A93-8B1C-596F7951CA38}) (Version: 0.10.7.5601 - BlueStack Systems, Inc.) Dark Souls III (HKLM-x32\...\Dark Souls III_is1) (Version: - ) Driver Booster 3.3 (HKLM-x32\...\Driver Booster_is1) (Version: 3.3 - IObit) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software) Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - ) Fallout 4 Portuguese-Brazil Language Pack (HKLM-x32\...\Fallout 4 Portuguese-Brazil Language Pack_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North) Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Importação do SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 92 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418092F0}) (Version: 8.0.920.14 - Oracle Corporation) Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains) Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - ) NARUTO SHIPPUDEN: Ultimate Ninja STORM 4 Update v1.04 Incl. DLC (HKLM\...\bmFydXRvc2hpcHB1ZGVudWx0aW1hdGVuaW5qYXN0b3JtNA_is1) (Version: 1 - ) NVIDIA Driver de áudio HD 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) NVIDIA Driver de gráficos 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) One Finger Death Punch (HKLM\...\Steam App 264200) (Version: - Silver Dollar Games) Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.) Painel de controle da NVIDIA 368.22 (Version: 368.22 - NVIDIA Corporation) Hidden PC DUAL SHOCK (HKLM-x32\...\{42DC7D64-F389-4E37-B545-E7D674A97D66}) (Version: 1.00.0000 - GASIA) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7746 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 11.0.0.18 - Bioware/EA) Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.12.0 - GOG.com) The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.12.0 - GOG.com) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) Wondershare Filmora(Build 7.2.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\teteu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1250866198-237274365-681837531-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {03D60E2B-9C4B-48A2-9844-03A1E89B74EF} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {05E09DBE-B824-41D4-BBD2-9D89B2BFEEA3} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic Task: {07A75899-3610-4F38-B0DC-5A8040FD10C3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {0F4DEB63-BE94-4CF7-93B5-9A8101FAC934} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {2AE1DBDA-C35D-45F3-BD1B-DE94DCFE5B0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.) Task: {36418D41-B332-410E-B2F7-0E1AB0D48583} - System32\Tasks\CCleanerSkipUAC => C:\Users\teteu\AppData\Local\Temp\RarSFX2\CCleaner.exe [2015-10-19] (Piriform Ltd) <==== ATENÇÃO Task: {5E231C32-877F-4AB2-8210-36DCFC9FF882} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic Task: {846601B0-6C66-49F4-AADD-6DF457616F9F} - System32\Tasks\Driver Booster SkipUAC (teteu) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-04-06] (IObit) Task: {874E5F75-6652-4E9D-B1C9-7095191242F8} - System32\Tasks\update-S-1-5-21-1250866198-237274365-681837531-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] () Task: {B4968E41-4DFA-4736-B2BD-B83FC2904EAB} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-12-09] () Task: {BE56255D-9391-4B90-99F2-DA7039093B19} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {EA569BC7-295D-4805-A316-6E4D4D33CA67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.) Task: {F7EB7B89-C520-4194-8A73-26CD7B661688} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-04-01] (IObit) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\update-S-1-5-21-1250866198-237274365-681837531-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-10-30 04:17 - 2015-10-30 04:17 - 00028672 _____ () C:\Windows\SYSTEM32\efsext.dll 2016-05-03 17:49 - 2016-05-27 20:15 - 00026112 _____ () C:\Windows\KMS-R@1n.exe 2016-05-07 12:05 - 2016-05-07 12:05 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2015-10-30 04:18 - 2015-10-30 04:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll 2016-05-13 14:36 - 2016-05-19 23:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-05-01 09:17 - 2016-03-29 07:20 - 02656952 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-05-01 09:17 - 2016-03-29 07:20 - 02656952 _____ () C:\Windows\System32\CoreUIComponents.dll 2016-04-30 22:41 - 2016-04-30 22:41 - 00959176 _____ () C:\Users\teteu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll 2016-02-13 14:39 - 2016-02-13 14:39 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-10 17:44 - 2016-04-23 01:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-05-10 17:44 - 2016-04-23 01:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-05-10 17:44 - 2016-04-23 00:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-05-10 17:45 - 2016-04-23 00:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-05-10 17:45 - 2016-04-23 01:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-05-01 10:05 - 2016-05-01 10:06 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-05-03 17:49 - 2016-05-27 20:15 - 00005120 _____ () C:\Windows\KMS-R@1nHook.exe 2016-05-27 20:15 - 2016-05-27 20:15 - 00004096 _____ () C:\Windows\KMS-R@1nHook.dll 2016-05-16 20:21 - 2014-12-04 23:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2016-05-16 20:21 - 2014-12-04 23:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2016-04-30 22:55 - 2016-05-02 03:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-05-01 10:05 - 2016-05-01 10:06 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-05-01 10:05 - 2016-05-01 10:06 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-05-12 20:54 - 2016-05-11 08:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll 2016-05-12 20:54 - 2016-05-11 08:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Windows\system32\Drivers\wacrmway.sys:changelist [1666] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) HKU\S-1-5-21-1250866198-237274365-681837531-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" <===== ATENÇÃO ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2015-10-30 04:24 - 2015-10-30 04:21 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1250866198-237274365-681837531-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\teteu\Desktop\team_gurren_a_by_spleko-d69ym9j.jpg DNS Servers: 201.82.0.62 - 201.82.0.64 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKLM\...\StartupApproved\Run32: => "ADSKAppManager" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "Autodesk Sync" HKU\S-1-5-21-1250866198-237274365-681837531-1001\...\StartupApproved\Run: => "CCleaner Monitoring" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{A1A926E7-37F4-4D02-8FD2-ED4C9AAF1A36}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{D3348832-780A-4530-9A62-CB8BA2D479FD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{F75606F5-1A37-4B7F-874D-F26955536231}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{77EA9BA3-5B0C-4DBF-BF9D-D58327601302}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{D6441F1F-4E97-4219-8E92-D84E83497783}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{734E0491-B2C9-4A67-82A1-101CB8097BDC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D6371B84-8219-4B1E-93EF-788C6D906C96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{15B7CBEF-08DF-4BE4-9CE7-817AEBB66158}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{6156D3CA-4B9A-4DD7-8C09-8F3277D229A0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{0C359D26-CE31-4797-B63A-C5867FB91AB7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{2926726A-5038-4BCE-BE3C-6990BEA33568}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{2A65AD9B-A49E-4803-BFD5-46B0CE5821A8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{834A0AEF-43B5-4904-A876-A409C0A51CCF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{76706ED0-F800-48F5-A200-7ECD4199C3DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{914EEFF2-091B-4820-8774-B1CCAB93FA45}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{4E5F4009-D15D-4752-8FFB-5095D32BB1BC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{6411B5F9-5913-403E-A9CB-9846917AD1F7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{3BCCB0B1-9606-45EF-B7D3-61F1EFE8EFC2}C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe] => (Allow) C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe FirewallRules: [UDP Query User{F5A4C815-6B74-46CB-90B0-28FDFE2448D2}C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe] => (Allow) C:\program files (x86)\far cry 4. gold edition\bin\farcry4.exe FirewallRules: [TCP Query User{FF26FE9E-ABCF-4644-99BA-BB81FB403DFA}C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{9E12E2E0-B08B-4AD1-B651-410067A851CF}C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\teteu\documents\munacraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{D3DB9B4D-318D-4FEF-A2D4-E8E44CCDE904}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{59EA5FC7-4127-4170-AEB1-E512F3DDBF28}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{6CA48798-3D7C-4847-99D1-A2599E28C2DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{9C845A91-3F92-43DA-8A64-3EEC74C18BC5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7F9EB483-37F5-4557-BF4C-31EA6906A3C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{39329E26-8B74-4B17-BDC9-5C38E1529A00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [TCP Query User{5A3D3915-1F79-4CA2-9578-8CB11C729CF4}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{B1B80868-D1F6-4B43-BF34-14276274D21A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{862D9509-8133-481F-B5B0-C11FBF45CA12}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{97FD6596-3D9F-4810-86B3-F2047C41BB99}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{D5AF28C6-E4B6-4516-8C9D-7712849F7131}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{601E0B77-04D8-4A93-A5A8-4C727300C162}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{0F75C1D8-E164-45F0-81B8-450685915D84}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{7901315E-DA80-4E71-A576-DBFA4D40B502}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{133349C7-77C5-4FD5-A735-0637022C37E0}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{D13FF804-739F-4C20-90C1-E721D1F4FB88}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{D60B7412-FB0B-48B2-B88F-0D15B6B53EE4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{15268109-0470-4208-A6AC-616CC9511CF8}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{42202046-3247-42BD-9EE6-6CB25267DE3B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{968C9C9A-81AA-4B43-AEF9-1184844B02D4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [TCP Query User{46FC4A08-786F-49CC-A88F-4ECB6A38EA59}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [UDP Query User{4C79FE4B-6254-4E2E-89EB-E22A9369CDF2}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [{DAFEC05F-FC5C-4BF1-8C02-FC658176673B}] => (Block) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [{EC5EF0DB-FD12-4EF7-8A33-F0E313001700}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{874828E9-F6C2-4FF8-B4BE-E59778FC5D2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{ECD62254-CE00-4719-84DA-52DA08CF28F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{BF8EEE95-83CE-49B7-9713-BD2AAFD41C7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{3057BC60-83D9-48F6-8C3F-87C1B6CAFDD5}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{54099ADA-66EB-4144-9321-DB1DB7898630}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D1093B8A-BCB3-4BA3-8C28-E8B99D0A954B}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{10A3FCA8-4404-4B2D-9C33-8F9FD5E46FF3}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FB5DBEA1-5E75-46D0-A0F6-AEA68CB20630}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{747A3520-1F0D-4AFD-BF30-36BC68F0B740}] => (Allow) C:\Users\teteu\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{D2511476-88F4-4917-8716-62FEA1479F36}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe FirewallRules: [UDP Query User{A5F2B3CA-6BF7-4013-AE45-E9870CC99BC7}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe FirewallRules: [{5DFD3770-AE86-4809-96FF-7C990624F0F1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{6E175EF2-A2BD-43FB-BD2E-274277E2DE6E}] => (Allow) LPort=50248 FirewallRules: [{EA280DA2-A6A6-4A5A-AD75-CEE59B4F6831}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{E6BE6249-D2DF-4AD2-BA83-698C12D3D2E3}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{EFEE9B94-0F2F-4424-8F3B-614478FA24CD}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{7E3A168D-0FD7-44E7-89FD-0FFE8316A8EC}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{28EA0A38-8FD8-4F3C-9A3F-1CAED48D5E1B}] => (Allow) C:\Windows\KMS-R@1n.exe FirewallRules: [{5DDB8622-3609-4307-868E-472F3F06E05B}] => (Allow) C:\Windows\KMS-R@1n.exe ==================== Pontos de Restauração ========================= 26-05-2016 19:14:57 Ponto de Verificação Agendado 27-05-2016 20:02:59 Installed Microsoft Office Professional Plus 2016 27-05-2016 20:03:33 PROPLUS ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (05/29/2016 09:13:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0x1770 Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0 Caminho do aplicativo com falha: backgroundTaskHost.exe1 Caminho do módulo com falha: backgroundTaskHost.exe2 ID do Relatório: backgroundTaskHost.exe3 Nome completo do pacote com falha: backgroundTaskHost.exe4 ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5 Error: (05/28/2016 11:36:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: dwm.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d756 Nome do módulo com falha: combase.dll, versão: 10.0.10586.103, carimbo de data/hora: 0x56a849ab Código de exceção: 0xc0000005 Deslocamento da falha: 0x0000000000067e3c ID do processo com falha: 0x184 Hora de início do aplicativo com falha: 0xdwm.exe0 Caminho do aplicativo com falha: dwm.exe1 Caminho do módulo com falha: dwm.exe2 ID do Relatório: dwm.exe3 Nome completo do pacote com falha: dwm.exe4 ID do aplicativo relativo ao pacote com falha: dwm.exe5 Error: (05/28/2016 09:24:11 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-74P9F9B) Description: O pacote Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy+CortanaUI foi terminado porque levou muito tempo para ser suspenso. Error: (05/28/2016 08:47:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: Microsoft.Photos.exe, versão: 16.325.12390.0, carimbo de data/hora: 0x56f59965 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0x2bb8 Hora de início do aplicativo com falha: 0xMicrosoft.Photos.exe0 Caminho do aplicativo com falha: Microsoft.Photos.exe1 Caminho do módulo com falha: Microsoft.Photos.exe2 ID do Relatório: Microsoft.Photos.exe3 Nome completo do pacote com falha: Microsoft.Photos.exe4 ID do aplicativo relativo ao pacote com falha: Microsoft.Photos.exe5 Error: (05/28/2016 08:46:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0x227c Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0 Caminho do aplicativo com falha: backgroundTaskHost.exe1 Caminho do módulo com falha: backgroundTaskHost.exe2 ID do Relatório: backgroundTaskHost.exe3 Nome completo do pacote com falha: backgroundTaskHost.exe4 ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5 Error: (05/28/2016 08:33:14 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0x2dac Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0 Caminho do aplicativo com falha: backgroundTaskHost.exe1 Caminho do módulo com falha: backgroundTaskHost.exe2 ID do Relatório: backgroundTaskHost.exe3 Nome completo do pacote com falha: backgroundTaskHost.exe4 ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5 Error: (05/28/2016 08:13:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0x1e40 Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0 Caminho do aplicativo com falha: backgroundTaskHost.exe1 Caminho do módulo com falha: backgroundTaskHost.exe2 ID do Relatório: backgroundTaskHost.exe3 Nome completo do pacote com falha: backgroundTaskHost.exe4 ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5 Error: (05/28/2016 07:58:27 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0x2454 Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0 Caminho do aplicativo com falha: backgroundTaskHost.exe1 Caminho do módulo com falha: backgroundTaskHost.exe2 ID do Relatório: backgroundTaskHost.exe3 Nome completo do pacote com falha: backgroundTaskHost.exe4 ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5 Error: (05/28/2016 07:43:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: backgroundTaskHost.exe, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d8f0 Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.10586.0, carimbo de data/hora: 0x5632d2f5 Código de exceção: 0xc000027b Deslocamento da falha: 0x000000000004b199 ID do processo com falha: 0xc80 Hora de início do aplicativo com falha: 0xbackgroundTaskHost.exe0 Caminho do aplicativo com falha: backgroundTaskHost.exe1 Caminho do módulo com falha: backgroundTaskHost.exe2 ID do Relatório: backgroundTaskHost.exe3 Nome completo do pacote com falha: backgroundTaskHost.exe4 ID do aplicativo relativo ao pacote com falha: backgroundTaskHost.exe5 Error: (05/28/2016 07:33:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-74P9F9B) Description: O pacote Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe+App foi terminado porque levou muito tempo para ser suspenso. Erros de Sistema: ============= Error: (05/29/2016 05:57:02 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:57 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:54 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:51 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:48 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:44 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:41 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:37 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:34 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. Error: (05/29/2016 05:56:31 PM) (Source: disk) (EventID: 7) (User: ) Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso. CodeIntegrity: =================================== Date: 2016-05-28 22:28:54.298 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-28 09:19:54.683 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-27 20:16:49.230 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-27 20:11:12.765 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-18 17:40:12.174 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-16 19:32:52.932 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 19:26:49.410 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-14 12:31:17.069 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-13 13:40:29.826 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 13:02:48.418 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz Percentagem de memória em uso: 35% RAM física total: 7605.11 MB RAM física disponível: 4910.02 MB Virtual Total: 7605.11 MB Virtual disponível: 4565.29 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.96 GB) (Free:513.19 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 29F329F2) Partition: GPT. ==================== Fim de Addition.txt ============================