Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 01-03-2017 Executado por PAULO (02-03-2017 21:22:32) Executando a partir de C:\Users\PAULO\Desktop Windows 10 Pro Versão 1607 (X64) (2016-09-23 04:09:27) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-3024616143-3309111996-383524719-500 - Administrator - Disabled) Convidado (S-1-5-21-3024616143-3309111996-383524719-501 - Limited - Disabled) DefaultAccount (S-1-5-21-3024616143-3309111996-383524719-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3024616143-3309111996-383524719-1005 - Limited - Enabled) PAULO (S-1-5-21-3024616143-3309111996-383524719-1001 - Administrator - Enabled) => C:\Users\PAULO ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.) 7-Zip 15.06 beta (x64) (HKLM\...\7-Zip) (Version: 15.06 - Igor Pavlov) 7-Zip 15.14 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated) Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated) Ansel (Version: 372.90 - NVIDIA Corporation) Hidden Atualizações da NVIDIA 2.11.4.1 (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.) BMW M3 Challenge (HKLM-x32\...\{C4CD208D-E3A2-488B-A4F4-FD8DE3DADD25}_is1) (Version: BMW M3 Challenge v1.0.0.0 - 10TACLE STUDIOS AG) Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform) Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine) Chromium (HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\{0CDCE41C-5C5C-359C-EDDC-451C3D5C969C}) (Version: - ) Combined Community Codec Pack 2015-10-18 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2015.10.19.0 - CCCP Project) COMODO Programs Manager (HKLM\...\{D968E920-3A49-48EB-BA1D-8964DCDF0CA9}) (Version: 1.3_build_30 - COMODO) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.) Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware) DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version: - FromSoftware, Inc) Darksiders II (HKLM-x32\...\Steam App 50650) (Version: - Vigil Games) Devil May Cry 4 (HKLM-x32\...\Steam App 45700) (Version: - Capcom) DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team) DVD Decrypter (Remove Only) (HKLM-x32\...\DVD Decrypter) (Version: - ) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts) Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software) FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts) FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.47.2427 - Electronic Arts) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.1.0.1013 - Foxit Software Inc.) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Free Video Flip and Rotate (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.2.37.627 - Digital Wave Ltd) Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GBBD Caixa Economica Federal (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden i-Menu version 4.0.8 (HKLM-x32\...\{0121C0BD-363C-4B1D-8B64-FE7681A37D0A}_is1) (Version: 4.0.8 - AOC) Instalação do DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3910 - Intel Corporation) Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java SE Development Kit 8 Update 73 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation) K-Lite Codec Pack 11.4.0 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.4.0 - ) Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - ) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 51.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 pt-BR)) (Version: 51.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla) NVIDIA Áudio Virtual Miracast 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.62 - NVIDIA Corporation) NVIDIA Driver de áudio HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Driver de gráficos 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.4.3.15631 - Electronic Arts, Inc.) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) Painel de controle da NVIDIA 376.53 (Version: 376.53 - NVIDIA Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.5.0.1144 - Lenovo) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.) Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.5.0 - IObit) Software de dispositivo do Chipset Intel® (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.70155 Beta - TeamViewer) Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0416-0000-0000000FF1CE}_Office15.PROPLUS_{7BDD179E-C954-438B-937D-EB411B701EAB}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0416-0000-0000000FF1CE}_Office15.PROPLUS_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version: - Microsoft) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.30 - VSO-Software SARL) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) Warsaw 1.13.0.525 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.13.0.525 - GAS Tecnologia) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Wondershare Data Recovery(Build 5.0.9.6) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 5.0.9.6 - Wondershare Software Co.,Ltd.) Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare) Xerox WorkCentre 3045B (HKLM-x32\...\InstallShield_{645082D0-144F-42A1-B7CD-1419DC7BA06D}) (Version: 1.006.00 - Xerox) Xerox WorkCentre 3045B (x32 Version: 1.006.00 - Xerox) Hidden ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-3024616143-3309111996-383524719-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\PAULO\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia) CustomCLSID: HKU\S-1-5-21-3024616143-3309111996-383524719-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\PAULO\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll (GAS Tecnologia) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {01AC682B-0058-4318-A0E0-0C2C565EA2C3} - System32\Tasks\SafeZone scheduled Autoupdate 1456184566 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe Task: {1474425B-EC75-4F09-8280-E64E5CE061FC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {186ED3E5-C94B-48E0-80FE-DF390985DB14} - System32\Tasks\SafeZone scheduled Autoupdate 1451431727 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe Task: {1A33D4AA-4B9B-4216-A2CE-B825B77D307C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd) Task: {238E391B-77A6-423C-A4BC-1C884FC57542} - System32\Tasks\{B3F96D29-1135-4038-BDB6-C39434087B93} => pcalua.exe -a C:\Users\PAULO\Desktop\CPM_SETUP_1.3.2.30_xp_vista_server2003_win7.exe -d C:\Users\PAULO\Desktop Task: {2CCF1373-8617-4D61-A44A-D1F793323EFD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-02-22] (Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe Task: {4F40C826-7AF8-41DA-B223-4F109C567B6C} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe [2016-10-18] (IObit) Task: {4FED72AA-3585-4BFD-B2A4-DB56A02F41B9} - System32\Tasks\{F05BEFB2-495D-4152-99B2-8542C1B89A03} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\" Task: {53081C05-9A26-4E08-93CB-AE8174081B91} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-16] (Adobe Systems Incorporated) Task: {5EC5F146-C02D-4D2B-9CB4-7E85928A6D62} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2017-02-17] (IObit) Task: {65CE367B-56EC-4C14-8727-33CD621C2941} - System32\Tasks\{5D1D1669-F67D-4A03-9713-E1AFC5C452E3} => pcalua.exe -a C:\Users\PAULO\AppData\Local\{F936CF6A-DD9E-A3D2-B006-863A946E7AA2}\uninst.exe -c -FN=""-P=/Uninstall /s /noun /DelSelfDir Task: {6610E1F5-15A9-4339-BEA6-9FFF8DDA4DC8} - System32\Tasks\{6D13DCED-2294-4FF9-B29D-DEE76E2D5F07} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\" Task: {6ACE2B94-257B-42C7-B35C-154D4A69E437} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {800051A6-2CC7-492F-AB7B-5C37DA17E7B3} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\PAULO\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {89FE7362-F53F-40EE-BD11-431F1B69B82C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {8C883DAF-766B-44A8-8A49-E820AC89FC62} - System32\Tasks\{84016D63-C0E3-421E-8B71-9D9343BBB46C} => pcalua.exe -a C:\PROGRA~2\WSE_AS~1\\uninstall.exe Task: {93615CA9-CC73-4FAA-88BE-BDBEE55D0000} - \WPD\SqmUpload_S-1-5-21-3024616143-3309111996-383524719-1001 -> Nenhum Arquivo <==== ATENÇÃO Task: {96AFF688-61A2-4B26-B6FE-B7FCDDE067E9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {9B953841-8C55-47E9-9E4A-A3220CF8DE96} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-16] (Adobe Systems Incorporated) Task: {A59C1564-7877-4E65-9C3D-49CD84CF0827} - System32\Tasks\{C26B5FFA-FAD7-4AF5-BE84-8A8DA43F09AB} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\" Task: {B88DA3DB-C6F9-4721-ADDE-ACD93D682603} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {C8996A91-1654-43F9-BF71-49C361DD1006} - System32\Tasks\Driver Booster SkipUAC (PAULO) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {C9F536A7-B843-4A51-B716-ADF957FDBDCB} - System32\Tasks\{841843E4-782A-4933-BC62-E1311650F293} => pcalua.exe -a C:\Users\PAULO\Desktop\CSC_3.0.172695.53_xp_vista_server2003_server2008_win7.exe -d C:\Users\PAULO\Desktop Task: {D934EF78-6B25-4CF8-8C1A-BAD71ED14471} - System32\Tasks\{E066C28C-6946-49DE-8BF2-1FA302394993} => pcalua.exe -a "C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe" -d "C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86" Task: {E5E7662B-C2E3-4153-B05C-A7BC20149B5D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {E817CCF8-C487-44C7-BD06-F948E41BF9B1} - System32\Tasks\SafeZone scheduled Autoupdate 1456355717 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe Task: {F2B6753A-C09E-474A-8D58-29BB3791A15D} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Atalhos ============================= (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2016-07-16 08:42 - 2016-07-16 08:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-12-13 20:59 - 2016-12-09 07:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-23 00:41 - 2016-12-29 09:44 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2012-03-09 14:34 - 2012-03-09 14:34 - 00022528 _____ () C:\WINDOWS\System32\xrhr3aLM.DLL 2014-10-11 23:02 - 2012-03-15 14:36 - 15054336 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\xrhr3aRC.DLL 2011-09-05 12:11 - 2011-09-05 12:11 - 00116032 _____ () C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe 2015-12-25 00:28 - 2016-06-14 22:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-03-01 20:18 - 2016-06-14 22:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-05-02 21:59 - 2016-06-14 22:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-03-01 20:18 - 2016-06-14 22:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2012-01-03 10:04 - 2012-01-03 10:04 - 00095744 _____ () C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe 2016-05-02 21:59 - 2016-06-14 22:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-05-02 21:59 - 2016-06-14 22:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-05-02 21:59 - 2016-06-14 22:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-01-27 20:19 - 2016-06-14 22:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-05-02 21:59 - 2016-06-14 22:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-05-02 21:59 - 2016-06-14 22:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-12-13 20:59 - 2016-12-09 07:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-09-23 00:33 - 2016-09-23 00:33 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-11 17:05 - 2016-12-21 04:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-11 17:05 - 2016-12-21 03:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-11 17:05 - 2016-12-21 03:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-11 17:05 - 2016-12-21 03:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-11 17:05 - 2016-12-21 03:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-01-11 17:05 - 2016-12-21 03:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-11 17:05 - 2016-12-21 03:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-12-21 14:49 - 2016-12-21 14:49 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll 2012-01-03 10:04 - 2012-01-03 10:04 - 00247296 _____ () C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmW.exe 2012-01-03 10:04 - 2012-01-03 10:04 - 00227840 _____ () C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmwj.exe 2012-01-03 10:05 - 2012-01-03 10:05 - 04476928 _____ () C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe 2017-02-22 17:39 - 2017-02-22 17:39 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-02-22 17:39 - 2017-02-22 17:39 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-02-22 17:39 - 2017-02-22 17:40 - 42895360 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-02-06 13:53 - 2017-02-06 13:53 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\roottools.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00710144 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe 2017-03-01 22:02 - 2017-03-01 22:04 - 00710144 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe 2016-02-25 08:11 - 2014-10-16 10:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2016-09-13 21:15 - 2017-02-06 20:23 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll 2015-03-31 00:47 - 2016-06-14 22:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00112128 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WP8MSVCCommon.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00384512 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WP8MSVCBridge.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00079872 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WinPhoneBridge_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 01000960 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\System_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00107520 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\pthreadVC_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 00644096 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\CrossPortability_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00210432 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\system_malloc_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 63255406 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00081422 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\unwind_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 00812544 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\ffmpeg_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 00152576 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\exif_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00153088 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\z_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 01216512 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\c++_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00428544 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\SystemResources_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 01530880 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WRTBridge_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 00166400 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WinMediaFoundation_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 00125952 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\EGL_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 01157632 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\GLESv2_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 186402686 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\App.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 01085440 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\iconv_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 28717924 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\WebCore_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:35 - 00397312 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\OpenAL_osmeta.dll 2017-03-01 11:35 - 2017-03-01 11:36 - 01776435 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_77.754.22711.0_x86__8xx8rvfyw5nnt\pgl_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00112128 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WP8MSVCCommon.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00384512 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WP8MSVCBridge.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00079872 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WinPhoneBridge_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 01000448 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\System_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 00643072 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\CrossPortability_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00107520 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\pthreadVC_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00210432 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\system_malloc_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 63043950 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00153088 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\z_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00081422 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\unwind_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 00812544 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\ffmpeg_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 00152576 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\exif_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 01209344 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\c++_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00428032 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\SystemResources_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 01530880 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WRTBridge_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 00166400 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WinMediaFoundation_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 00126464 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\EGL_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 01158144 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\GLESv2_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 131088280 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\App.dll 2017-03-01 22:02 - 2017-03-01 22:03 - 00397312 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\OpenAL_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 28717924 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\WebCore_osmeta.dll 2017-03-01 22:02 - 2017-03-01 22:04 - 01776435 _____ () C:\Program Files\WindowsApps\Facebook.317180B0BB486_99.732.13355.0_x86__8xx8rvfyw5nnt\pgl_osmeta.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:DocumentSummaryInformation [63] AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:SummaryInformation [63] AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1518] AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2166] AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10] AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br IE trusted site: HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\bb.com.br -> hxxps://seg.bb.com.br IE trusted site: HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br IE trusted site: HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\caixa.gov.br -> imagem.caixa.gov.br ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 10:25 - 2015-07-30 18:38 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3024616143-3309111996-383524719-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PAULO\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\iracemacpd - 0052.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\Services: lfsvc => 3 HKLM\...\StartupApproved\Run: => "mylbx" HKLM\...\StartupApproved\Run: => "3045B RUN" HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\StartupApproved\StartupFolder: => "Enviar para o OneNote.lnk" HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\StartupApproved\Run: => "kpm.exe" HKU\S-1-5-21-3024616143-3309111996-383524719-1001\...\StartupApproved\Run: => "Chromium" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{6D846004-477E-4F6C-AC05-D9710F23A0C2}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{E1CC29F3-B297-4166-ADC1-1BE5E0E8C38D}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{28FF617D-899A-4A7C-95DF-ECFD0602B6CE}] => (Allow) C:\Program Files (x86)\SHAREit\SHAREit\SHAREit.exe FirewallRules: [{E9765948-D456-48FD-94A1-74DF96D4440D}] => (Allow) C:\Program Files (x86)\SHAREit\SHAREit\SHAREit.exe FirewallRules: [{5C4DBA71-228F-4033-833A-54967C57BA6B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{7ADED71D-FA64-44AF-8F19-C0C08F345DA4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E870D2B8-E61B-4FC0-8B37-FA5007400BB4}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{3BA9A58D-BA49-4242-BC2F-FAFB84D14988}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{0072C9E3-472A-4493-914D-1D9FFB386C26}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D7E1B93A-2E42-47EF-B3CB-E2F813432D8E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [TCP Query User{BC9EA770-629C-467E-9C19-7E3D9740B68C}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [UDP Query User{97224895-1F9F-4A39-835E-451A1A08CDB2}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [{C7297453-F70B-4B45-962B-1617561DA624}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{FC753F3E-B84D-4AD0-99C0-FC889C915FC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{04AECA1E-6ABC-4D4C-8394-7F52880DFBA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{5886A641-6688-4B54-A894-5E5E8946C1AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E2319F5B-463F-4089-A210-F3BC82AC511C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C45D91B2-6150-476A-B4F5-0CA992D6A731}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2C350990-7BC7-46B2-83C3-4B257412B65F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{1CCFEA4D-C30C-4768-A992-D0DFD4EBB1D5}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{8571810C-4B54-47B6-AA43-D987DA40D00B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{B50FB35C-3A75-4EF0-8DF0-AB16669F2F0C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{1435A851-C5CE-4749-8272-E297C02EA597}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{31E7C612-A623-4CD8-ABAB-2FE1FA6C47FA}C:\users\paulo\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\paulo\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{5F693EDE-A902-442A-ACAB-4E3772F78D27}C:\users\paulo\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\paulo\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{02EA8F3C-B3B4-4045-920B-90CF60413596}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{CFBEDA21-8737-4D5B-AEF5-C0DC5EFB7098}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{B7492C26-A7B0-47F4-9091-A926C1A555A1}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe FirewallRules: [UDP Query User{076591BD-14F7-4414-9D32-1C3B543CE53D}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe FirewallRules: [{59960DAD-1506-4485-A0CA-AEA84EEC8BA9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{A93A40CB-1130-4D26-BB7C-47D0D6962A40}] => (Allow) LPort=1688 FirewallRules: [{B2543D5D-0C6A-451E-8ADD-BD4DBD0EA6DD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{9AE26E4B-5CFF-4A3C-A5F1-4C3899F8B181}] => (Allow) LPort=2869 FirewallRules: [{93F28273-BB41-47D0-A850-F2F65C237E5A}] => (Allow) LPort=1900 FirewallRules: [{8BFD3B03-841A-4520-9C0A-2CBACBB2CD70}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C8CD1245-407B-404B-A05F-DD5CF774E43A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{8569A4F0-EBBC-4530-8460-E71BAB3A075B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{8D92BB66-0822-49E9-9EA0-2C6752D7531C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{9E368657-2CB4-4736-A192-471D96BB5016}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe FirewallRules: [{ADD020D4-F5C5-44DE-8C05-CF8379B0FA8F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe FirewallRules: [{3AE5D42B-9549-4099-9DA1-92C90D3126F2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{EE83477C-FDAE-459F-B806-48AC62C2981A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{1D9DD3FD-9926-4EEE-952B-6F16D2CBAF65}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{BD77A2EB-F721-47D4-9AE4-D9229194ACE2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{71F26E70-CE58-4501-9CF7-D78F622FD53D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe FirewallRules: [{D033914E-504F-4379-9940-058D7AB56479}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe FirewallRules: [{0252ED1C-2374-4370-AA34-B363E391EFF3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\EvolveGame\bin64_SteamRetail\Evolve.exe FirewallRules: [{6B0701D2-A62E-4BB9-9ABB-FBC616DEAE2E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\EvolveGame\bin64_SteamRetail\Evolve.exe FirewallRules: [{374102A6-5641-4C0E-81DA-39A831EEDCF7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{F799B29F-0891-4711-A002-0A538F2437A4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{9A5CEC0B-8670-49A6-A807-C055E0878EC0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{0030B258-1844-4134-B981-CCA92AAB6879}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{8412C666-86D9-4C8E-B477-B74BCAD4F36B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{E230DE0C-9BC0-44A9-8263-02F40EABCC25}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{F31EBA84-03C1-4163-A303-CC5A1F1D6ECC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{356EF51B-FCBD-4249-A175-66B50339D551}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe FirewallRules: [{7A6FCA8C-F9CF-4D52-AD4C-1F1372BAF0B1}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe FirewallRules: [{738D6913-11F1-4F75-B516-6209408421DE}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{5FF1B256-559A-4FFE-A09F-3CDD12FF301B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [TCP Query User{F278324C-72E8-4B5E-A5DD-A3035B150341}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) C:\program files (x86)\origin games\fifa 17\fifa17.exe FirewallRules: [UDP Query User{68C323D8-DA68-4C34-BB88-16DB43E9F254}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) C:\program files (x86)\origin games\fifa 17\fifa17.exe ==================== Pontos de Restauração ========================= 16-02-2017 12:33:26 Ponto de Verificação Agendado 21-02-2017 19:26:06 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (03/01/2017 10:22:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-QUARTO) Description: Falha na ativação do aplicativo Facebook.Facebook_8xx8rvfyw5nnt!App com o erro: -2144927142. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (03/01/2017 12:16:54 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\Office15\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\Office15\UccApi.DLL", na linha 1. Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado. A referência é UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". A definição é UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Use o arquivo sxstrace.exe para obter um dignóstico detalhado. Error: (03/01/2017 11:20:51 AM) (Source: SideBySide) (EventID: 35) (User: ) Description: Falha na geração de contexto de ativação para "C:\Program Files (x86)\Microsoft Office\Office15\lync.exe.Manifest". Erro no arquivo de manifesto ou de política C:\Program Files (x86)\Microsoft Office\Office15\UccApi.DLL", na linha 1. Identidade do componente localizado no manifesto não corresponde à identidade do componente solicitado. A referência é UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". A definição é UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Use o arquivo sxstrace.exe para obter um dignóstico detalhado. Error: (02/28/2017 10:16:44 AM) (Source: ESENT) (EventID: 455) (User: ) Description: DllHost (8308) WebCacheLocal: Erro -1032 (0xfffffbf8) ao abrir o arquivo de log C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log. Error: (02/28/2017 10:16:44 AM) (Source: ESENT) (EventID: 489) (User: ) Description: DllHost (8308) WebCacheLocal: Uma tentativa de abrir o arquivo "C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log" para acesso somente leitura falhou com o erro de sistema 32 (0x00000020): "O arquivo já está sendo usado por outro processo. ". A operação para abrir o arquivo falhará com o erro -1032 (0xfffffbf8). Error: (02/28/2017 10:16:30 AM) (Source: ESENT) (EventID: 455) (User: ) Description: DllHost (8308) WebCacheLocal: Erro -1032 (0xfffffbf8) ao abrir o arquivo de log C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log. Error: (02/28/2017 10:16:30 AM) (Source: ESENT) (EventID: 489) (User: ) Description: DllHost (8308) WebCacheLocal: Uma tentativa de abrir o arquivo "C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log" para acesso somente leitura falhou com o erro de sistema 32 (0x00000020): "O arquivo já está sendo usado por outro processo. ". A operação para abrir o arquivo falhará com o erro -1032 (0xfffffbf8). Error: (02/28/2017 10:16:20 AM) (Source: ESENT) (EventID: 455) (User: ) Description: DllHost (8308) WebCacheLocal: Erro -1032 (0xfffffbf8) ao abrir o arquivo de log C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log. Error: (02/28/2017 10:16:20 AM) (Source: ESENT) (EventID: 489) (User: ) Description: DllHost (8308) WebCacheLocal: Uma tentativa de abrir o arquivo "C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log" para acesso somente leitura falhou com o erro de sistema 32 (0x00000020): "O arquivo já está sendo usado por outro processo. ". A operação para abrir o arquivo falhará com o erro -1032 (0xfffffbf8). Error: (02/28/2017 10:15:34 AM) (Source: ESENT) (EventID: 455) (User: ) Description: DllHost (8308) WebCacheLocal: Erro -1032 (0xfffffbf8) ao abrir o arquivo de log C:\Users\PAULO\AppData\Local\Microsoft\Windows\WebCache\V01.log. Erros de Sistema: ============= Error: (03/02/2017 08:59:04 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT) Description: O servidor {784E29F4-5EBE-4279-9948-1E8FE941646D} não se registrou no DCOM dentro do tempo limite necessário. Error: (03/02/2017 08:56:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (03/02/2017 08:56:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (03/02/2017 08:56:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (03/02/2017 08:56:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (03/02/2017 08:56:04 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} e APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (03/02/2017 08:55:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço DigitalWave.Update.Service devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (03/02/2017 08:55:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço DigitalWave.Update.Service. Error: (03/02/2017 08:14:58 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} e APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (03/02/2017 05:18:04 PM) (Source: DCOM) (EventID: 10010) (User: AUTORIDADE NT) Description: O servidor {784E29F4-5EBE-4279-9948-1E8FE941646D} não se registrou no DCOM dentro do tempo limite necessário. CodeIntegrity: =================================== Date: 2017-03-02 18:36:07.523 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-01 08:37:23.804 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:26.054 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.946 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.898 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.893 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.602 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.582 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.577 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-27 17:08:25.571 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-3340 CPU @ 3.10GHz Percentagem de memória em uso: 18% RAM física total: 16347.46 MB RAM física disponível: 13396.45 MB Virtual Total: 18779.46 MB Virtual disponível: 15544.89 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.12 GB) (Free:602.27 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 000DB11A) Partition: GPT. ==================== Fim de Addition.txt ============================