Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:18-05-2016 Executado por José Augusto (2016-05-18 14:49:54) Executando a partir de C:\Users\José Augusto\Downloads Windows 8.1 Single Language (X64) (2015-07-21 18:18:51) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-1180790967-12711911-3030461915-500 - Administrator - Disabled) Convidado (S-1-5-21-1180790967-12711911-3030461915-501 - Limited - Enabled) José Augusto (S-1-5-21-1180790967-12711911-3030461915-1001 - Administrator - Enabled) => C:\Users\José Augusto ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.4.0.2710 - Adobe Systems Incorporated) CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.1.0.7 - Lenovo) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.55.52 - Conexant) Corel Graphics - Windows Shell Extension (HKLM\...\_{3CAAE169-6001-48ED-B2C6-5B6F511552FD}) (Version: 18.0.0.448 - Corel Corporation) Corel Graphics - Windows Shell Extension (Version: 18.0.448 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 32 Bit Keys (Version: 18.0.448 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 64 Bit (Version: 16.0.707 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - BR (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Capture (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Common (x64) (Version: 18.0.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Connect (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Custom Data (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Draw (x64) (Version: 18.0.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Filters (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Font Manager (x64) (Version: 18.0.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - IPM Content (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - IPM T (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - PHOTO-PAINT (x64) (Version: 18.0.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Redist (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Setup Files (x64) (Version: 18.0.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - VBA (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - VideoBrowser (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Workspaces (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 - Writing Tools (x64) (Version: 18.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X8 (64-Bit) (HKLM\...\_{4B3FC55D-E999-4BEC-AF29-1091E574961F}) (Version: 18.0.0.450 - Corel Corporation) CorelDRAW Graphics Suite X8 (Version: 18.0 - Corel Corporation) Hidden CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) CyberLink PowerDirector 10 (Version: 10.0.0.2810 - Nome de sua empresa:) Hidden Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.3.90 - Dll-Files.com) Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc) Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.123 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4062 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.2.1001 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation) IPM_Installer (Version: 2.1 - Your Company Name) Hidden Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited) Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10292 - Realtek Semiconductor Corp.) Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.) Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 2.0.0.19 - Lenovo) Lenovo PhoneCompanion (x32 Version: 2.0.0.19 - Lenovo) Hidden Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1826.01 - CyberLink Corp.) Lenovo Photo Master (x32 Version: 1.0.1826.01 - CyberLink Corp.) Hidden Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.49.1 - ELAN Microelectronic Corp.) Lenovo Settings - Camera Audio (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 4.3.5.0 - Lenovo Corporation) Lenovo Settings (HKLM\...\{D14CCBF5-1A3A-4C08-955B-BE6D519835C4}_is1) (Version: 2.0.0.4 - Lenovo) Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.3.1.28 - Lenovo Group Limited) Lenovo Settings Service (HKLM\...\{8C6F1EBA-17F1-4481-B688-9777E63E985F}_is1) (Version: 2.3.0.20 - Lenovo Group Limited) Lenovo Settings UMDF driver (HKLM\...\{2BDC7413-65EA-4B99-8C4B-02F11075BE6D}_is1) (Version: 1.2.0.6 - Lenovo Group Limited) Lenovo Settings WiFi (HKLM\...\{86045A6C-C156-4349-A3E2-47A88A42F5C2}_is1) (Version: 2.0.0.2 - Lenovo) Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 2.0.5.0 - Lenovo Group Limited) Lenovo Solution Center (HKLM\...\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}) (Version: 2.7.003.00 - Lenovo Group Limited) Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.1.14.6181 - Lenovo) LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 2.0.0.5 - Nome de sua empresa:) LenovoUtility (x32 Version: 2.0.0.5 - Nome de sua empresa:) Hidden Manuais do usuário (x32 Version: 3.0.0.3 - Lenovo) Hidden Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}) (Version: - Microsoft) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation) OneKey Optimizer (HKLM-x32\...\InstallShield_{D5D573DC-D989-4769-9B56-D6A7EA503D7F}) (Version: 1.1.20.16 - Lenovo) OneKey Optimizer (x32 Version: 1.1.20.16 - Lenovo) Hidden Pacote de Driver do Windows - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo) Pacote de Driver do Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo) Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.331 - Qualcomm Atheros Communications) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39059 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek) Software de dispositivo do Chipset Intel® (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 1.4.0.0 - IObit) SYSM Monitor (HKLM-x32\...\SYSM Monitor_is1) (Version: - SYSM Monitor) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Warsaw 1.11.1.24 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.11.1.24 - GAS Tecnologia) Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0B688981-7A77-4DCA-A171-9CC7F5EB736F} - System32\Tasks\{00F29E2A-0463-428C-8614-4F7C18A50B18} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe" -c --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" Task: {28D423AF-347B-45DD-BAEB-0BF506C5BBD3} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2015-07-22] (IObit) Task: {39C601B3-7ACA-4B2D-8BC2-8C4607D64874} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-07-21] () Task: {4444995A-D953-486F-B89B-D36E75BD37B2} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-10-16] (Lenovo) Task: {50073C50-9BEF-4BA1-BA46-7638C5AF09C0} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] () Task: {6252735D-457C-4EB1-96FC-7D7E5DCB8A8A} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-10-16] (Lenovo) Task: {6A572FED-EF0F-46B3-A2ED-F61AF2DC0F6E} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-10-16] (Lenovo) Task: {6B8D0019-DDD8-416E-8D74-180B82584DC8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-09-02] (Lenovo) Task: {940052D1-669B-4722-A270-A1A02E158B69} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.) Task: {9EA5EA5B-60C9-4F33-9CDB-1E8275A27E51} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] () Task: {9ECD927C-B2C1-48C0-8AAA-7C5E7288F070} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo) Task: {AD517D7C-B411-40BE-8C8D-24E0A09095F7} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-10-30] (Dll-FIles.Com) Task: {D259E39C-8A89-43AF-B298-D08957C3FD7C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.) Task: {D270BF97-5F1B-4F9A-A43E-7CE7E9BF4861} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] () Task: {D4CB0A1E-ED97-4804-B89B-BE01CFB9351B} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2016-02-26] (Corel Corporation) Task: {D4FEC51C-2D2B-4BB0-890D-A594E3535CAB} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] () Task: {DF4A6D72-7043-418C-9CA1-C42F5A207D72} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-10-30] (Dll-FIles.Com) Task: {EC109FCE-D9B4-4DB4-9A93-5EE5684D8FE1} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-10-30] (Dll-FIles.Com) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2015-05-19 17:13 - 2015-05-19 17:13 - 00133440 _____ () C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe 2015-05-19 17:11 - 2012-04-24 23:43 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2015-05-19 17:08 - 2015-05-19 17:08 - 00068880 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe 2015-05-19 17:08 - 2015-05-19 17:08 - 00672016 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfDataStorageInterface.dll 2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2015-05-19 20:53 - 2014-12-19 17:03 - 00391784 _____ () C:\WINDOWS\system32\igfxTray.exe 2014-09-11 23:34 - 2014-09-11 23:34 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2014-09-11 23:31 - 2014-09-11 23:31 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll 2014-09-11 23:37 - 2014-09-11 23:37 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe 2015-07-21 16:36 - 2013-12-09 16:10 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl 2015-07-21 16:36 - 2013-12-09 16:10 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl 2015-07-21 16:36 - 2013-12-09 16:10 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl 2015-07-21 16:36 - 2013-12-09 16:10 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll 2015-07-21 16:36 - 2013-12-09 16:10 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll 2015-07-21 16:36 - 2013-12-09 16:11 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll 2014-09-03 11:03 - 2014-09-03 11:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-05-13 09:39 - 2016-05-11 08:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll 2016-05-13 09:39 - 2016-05-11 08:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\WINDOWS\System32:BEA636AB_Cef.gbp [2] AlternateDataStreams: C:\WINDOWS\System32:BEA636AB_Uni.gbp [2] AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1778] AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1434] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\caixa.gov.br -> imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\google.com -> www.google.com IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\google.com.br -> www.google.com.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\itau.b.br -> www.itau.b.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\itau.com.br -> hxxps://bankline.itau.com.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\itau.com.br -> bankline.itau.com.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br IE trusted site: HKU\S-1-5-21-1180790967-12711911-3030461915-1001\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br ==================== Hosts Conteúdo: ========================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 10:25 - 2015-10-13 11:44 - 00002343 ____N C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 192.150.14.69 127.0.0.1 192.150.18.101 127.0.0.1 192.150.18.108 127.0.0.1 192.150.22.40 127.0.0.1 192.150.8.100 127.0.0.1 192.150.8.118 127.0.0.1 209-34-83-73.ood.opsource.net 127.0.0.1 3dns-1.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-4.adobe.com 127.0.0.1 3dns.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 activate.adobe.com 127.0.0.1 activate.wip.adobe.com 127.0.0.1 activate.wip1.adobe.com 127.0.0.1 activate.wip2.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 activate.wip4.adobe.com 127.0.0.1 adobe-dns-1.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 adobe-dns-4.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe.activate.com 127.0.0.1 adobeereg.com 127.0.0.1 crl.verisign.net 127.0.0.1 crl.verisign.net.* 127.0.0.1 ereg.adobe.com Existem ainda 20 mais linhas. ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-1180790967-12711911-3030461915-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\José Augusto\Desktop\12246710_905422779535649_3671171523799191497_n.jpg DNS Servers: 200.189.80.128 - 200.189.80.123 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == (Atualmente não há nenhuma correção automática para esta seção.) MSCONFIG\Services: AVControlCenter => 3 MSCONFIG\Services: Lenovo OKO Service => 2 MSCONFIG\Services: Lenovo Settings Service => 2 MSCONFIG\Services: Lenovo System Agent Service => 2 MSCONFIG\Services: LENOVO.CAMMUTE => 3 MSCONFIG\Services: LENOVO.TPKNRSVC => 3 MSCONFIG\Services: LENOVO.TVTVCAM => 3 MSCONFIG\Services: LenovoSetSvr => 2 MSCONFIG\Services: LenovoWiFiHotspotSvr => 2 MSCONFIG\Services: OKOControlSvc => 2 MSCONFIG\Services: SwitchBoard => 3 HKLM\...\StartupApproved\Run: => "ForteConfig" HKLM\...\StartupApproved\Run: => "PhoneCompanion" HKLM\...\StartupApproved\Run: => "LenovoUtility" HKLM\...\StartupApproved\Run: => "LENOVO.TPKNRRES" HKLM\...\StartupApproved\Run: => "OneKeyOptimizer" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{442FFB6C-9301-472B-8AE7-662D828C9AC1}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{B9D64834-294C-4B2E-AB27-F10949F6F108}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{CD39484A-2B7A-4673-BB55-668EDF3DD6D3}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{471FDFC6-8ED6-4D34-B9B2-A776AE3F2622}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{DC068E83-43C4-4F1F-9673-E92676B36BB6}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{5426B877-0C8F-4B75-A429-16745057CCB8}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe FirewallRules: [{E928ADFC-E862-42A7-B6E1-BB30787630AC}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe FirewallRules: [{FA93CA07-0BD9-48D4-8301-D712E15413ED}] => (Allow) LPort=55100 FirewallRules: [{17E6EA6C-BB28-4D68-B173-1052FD7A4D6A}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe FirewallRules: [TCP Query User{228C4A2D-DC2A-469F-8EB8-66E1183F6BF9}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{73735580-F9F1-4457-BB4C-02426B5C409F}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{B3715A42-52B4-46E5-8E37-CC915D14863E}] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{D4FBEBC0-A720-4E5D-958D-D69EF5E7B1B1}] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [TCP Query User{B3FF0176-C22C-4A0B-9F9E-0F012C4E8FCE}C:\program files (x86)\sysm monitor\sysm-monitor.exe] => (Allow) C:\program files (x86)\sysm monitor\sysm-monitor.exe FirewallRules: [UDP Query User{E1E30432-6A73-4E50-8F94-05B06F66C47D}C:\program files (x86)\sysm monitor\sysm-monitor.exe] => (Allow) C:\program files (x86)\sysm monitor\sysm-monitor.exe FirewallRules: [{250A01ED-4A8E-406B-9E0F-C03BC0805F48}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{E0B7A76D-907D-4445-9E54-0FCE7605F131}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{EA1BC425-8792-470F-AE72-33803B2B9ECC}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelDrw.exe FirewallRules: [{4717AAB9-2299-446C-95C0-894DA6C4968E}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelPP.exe FirewallRules: [{A3263379-F349-4AD8-8E8E-DA57ACA1D1B1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{A5E4CAB5-256F-4BAE-A4D1-51F60D5C5A16}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{989E82CB-1384-47AD-B2E8-BF6CC930D4E7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe ==================== Pontos de Restauração ========================= 02-05-2016 11:14:02 Ponto de Verificação Agendado 11-05-2016 09:44:00 Ponto de Verificação Agendado 18-05-2016 11:58:40 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (05/18/2016 02:41:51 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: GbpSv.exe, versão: 0.0.0.0, carimbo de data/hora: 0x55df083e Nome do módulo com falha: gbiehuni.dll, versão: 4.14.0.100, carimbo de data/hora: 0x55cbc50e Código de exceção: 0xc0000417 Deslocamento da falha: 0x00151644 ID do processo com falha: 0xa44 Hora de início do aplicativo com falha: 0xGbpSv.exe0 Caminho do aplicativo com falha: GbpSv.exe1 Caminho do módulo com falha: GbpSv.exe2 ID do Relatório: GbpSv.exe3 Nome completo do pacote com falha: GbpSv.exe4 ID do aplicativo relativo ao pacote com falha: GbpSv.exe5 Error: (05/18/2016 02:39:11 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: i-ms-win-crt-runtime-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x12c4 Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:36:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: i-ms-win-crt-runtime-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x284 Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:32:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x6fc Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:29:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x1274 Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:26:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0xa38 Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:25:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x1760 Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:25:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: CorelDRW.exe, versão: 18.0.0.450, carimbo de data/hora: 0x57265a1d Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x3ec Hora de início do aplicativo com falha: 0xCorelDRW.exe0 Caminho do aplicativo com falha: CorelDRW.exe1 Caminho do módulo com falha: CorelDRW.exe2 ID do Relatório: CorelDRW.exe3 Nome completo do pacote com falha: CorelDRW.exe4 ID do aplicativo relativo ao pacote com falha: CorelDRW.exe5 Error: (05/18/2016 02:22:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: FontService.exe, versão: 18.0.0.448, carimbo de data/hora: 0x56da655a Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x1708 Hora de início do aplicativo com falha: 0xFontService.exe0 Caminho do aplicativo com falha: FontService.exe1 Caminho do módulo com falha: FontService.exe2 ID do Relatório: FontService.exe3 Nome completo do pacote com falha: FontService.exe4 ID do aplicativo relativo ao pacote com falha: FontService.exe5 Error: (05/18/2016 02:18:39 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: FontService.exe, versão: 18.0.0.448, carimbo de data/hora: 0x56da655a Nome do módulo com falha: api-ms-win-crt-heap-l1-1-0.dll, versão: 6.3.9600.17476, carimbo de data/hora: 0x54516b13 Código de exceção: 0xc0000135 Deslocamento da falha: 0x00000000000ec5a0 ID do processo com falha: 0x1030 Hora de início do aplicativo com falha: 0xFontService.exe0 Caminho do aplicativo com falha: FontService.exe1 Caminho do módulo com falha: FontService.exe2 ID do Relatório: FontService.exe3 Nome completo do pacote com falha: FontService.exe4 ID do aplicativo relativo ao pacote com falha: FontService.exe5 Erros de Sistema: ============= Error: (05/18/2016 02:31:42 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: G:\Device\HarddiskVolume93 Error: (05/18/2016 02:28:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (05/18/2016 02:28:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: %%2 Error: (05/18/2016 02:27:28 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: G:\Device\HarddiskVolume83 Error: (05/18/2016 02:19:22 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: G:\Device\HarddiskVolume123 Error: (05/18/2016 02:15:16 PM) (Source: Ntfs) (EventID: 55) (User: AUTORIDADE NT) Description: Corrupção detectada na estrutura do sistema de arquivos, no volume G:. A natureza exata da corrupção é desconhecida. As estruturas do sistema de arquivos precisam ser verificadas offline. Error: (05/18/2016 02:15:16 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: G:\Device\HarddiskVolume113 Error: (05/18/2016 02:15:04 PM) (Source: Ntfs) (EventID: 55) (User: AUTORIDADE NT) Description: Corrupção detectada na estrutura do sistema de arquivos, no volume G:. A natureza exata da corrupção é desconhecida. As estruturas do sistema de arquivos precisam ser verificadas offline. Error: (05/18/2016 02:15:04 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORIDADE NT) Description: G:\Device\HarddiskVolume103 Error: (05/18/2016 02:12:49 PM) (Source: Ntfs) (EventID: 55) (User: AUTORIDADE NT) Description: Corrupção detectada na estrutura do sistema de arquivos, no volume G:. A natureza exata da corrupção é desconhecida. As estruturas do sistema de arquivos precisam ser verificadas offline. CodeIntegrity: =================================== Date: 2016-05-17 09:22:51.964 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-16 11:20:35.176 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-14 11:39:39.125 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-13 09:31:54.308 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-12 11:49:58.851 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-11 09:28:41.577 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-10 10:14:42.738 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-09 10:24:51.828 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-07 10:51:43.928 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-06 10:28:13.690 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Percentagem de memória em uso: 51% RAM física total: 4011.08 MB RAM física disponível: 1938.36 MB Virtual Total: 7723.08 MB Virtual disponível: 2373.18 MB ==================== Drives ================================ Drive c: (Windows8_OS) (Fixed) (Total:891.82 GB) (Free:840.85 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:24.93 GB) NTFS Drive g: (SAMSUNG) (Fixed) (Total:931.51 GB) (Free:887.37 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 016D5AC0) Partition: GPT. ======================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: E567DED6) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fim de Addition.txt ============================