Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 13-07-2017 Executado por fabinho (13-07-2017 21:15:15) Executando a partir de C:\Users\fabinho\Desktop Windows 10 Home Single Language Versão 1703 (X64) (2017-06-18 19:26:38) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-2225947846-1434423812-2591476607-500 - Administrator - Disabled) Convidado (S-1-5-21-2225947846-1434423812-2591476607-501 - Limited - Disabled) DefaultAccount (S-1-5-21-2225947846-1434423812-2591476607-503 - Limited - Disabled) fabinho (S-1-5-21-2225947846-1434423812-2591476607-1001 - Administrator - Enabled) => C:\Users\fabinho ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated) Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{7EABB7C4-BD84-2B20-5268-82D547C8F898}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0416-0000-0000000FF1CE}_HOMESTUDENTR_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft) Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0416-0000-0000000FF1CE}_HOMESTUDENTR_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft) Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0416-0000-0000000FF1CE}_HOMESTUDENTR_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.27.34 - Avira Operations GmbH & Co. KG) Avira Connect (HKLM-x32\...\{14d00649-a178-473f-bf48-eec016dc4bfa}) (Version: 1.2.89.29905 - Avira Operations GmbH & Co. KG) Avira Connect (HKLM-x32\...\{271D5399-34AF-4611-BCD9-B09185B2BBE0}) (Version: 1.2.89.29905 - Avira Operations GmbH & Co. KG) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform) CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.9.2.8 - Dell Inc.) Dell Data Vault (HKLM\...\{2E55EEFD-2162-4A7D-9158-EDB0305603A6}) (Version: 4.3.4.0 - Dell Inc.) Hidden Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP) Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.10 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.1.0.47 - Dell) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.45 - Synaptics Incorporated) Dell Update - SupportAssist Update Plugin (HKLM\...\{EEA45885-F3E3-4E7D-8435-E9C21D36C141}) (Version: 3.0.0.2840 - Dell Inc.) Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) Freedom Connect 2.1 (HKLM-x32\...\Freedom Connect) (Version: 2.1 - Freedom Veículos Elétricos) Galeria de Fotos (HKLM-x32\...\{9EE1AE8B-4872-41CA-8C9A-C33D899523E0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.) Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard) HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation) IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2016) (Version: 1.2 - Receita Federal do Brasil) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 365 - pt-br (HKLM\...\O365HomePremRetail - pt-br) (Version: 15.0.4937.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Speech Recognition Engine 4.0 (English) (HKLM-x32\...\MSCSR) (Version: - ) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{C05F4139-CB6B-4272-A0BF-861FEB667F27}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 54.0.1 (x64 pt-BR) (HKLM\...\Mozilla Firefox 54.0.1 (x64 pt-BR)) (Version: 54.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla) MX5 (HKLM-x32\...\Maxthon5) (Version: 5.0.3.4000 - Maxthon International Limited) OEM Application Profile (HKLM-x32\...\{70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}) (Version: 1.00.0000 - Nome de sua empresa:) Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4937.1000 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4937.1000 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0416-0000-0000000FF1CE}) (Version: 15.0.4937.1000 - Microsoft Corporation) Hidden Opera Stable 38.0.2220.41 (HKLM-x32\...\Opera 38.0.2220.41) (Version: 38.0.2220.41 - Opera Software) Opera Stable 46.0.2597.39 (HKLM-x32\...\Opera 46.0.2597.39) (Version: 46.0.2597.39 - Opera Software) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PX Profile Update (HKLM-x32\...\{873CCF4A-6FC2-69A5-9AD4-FD37D7FCE6B9}) (Version: 1.00.1. - AMD) Hidden PX Profile Update (HKLM-x32\...\{EF9F2125-9D1B-E14B-492D-B5173D43B772}) (Version: 1.00.1. - AMD) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.308 - Qualcomm Atheros Communications) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.021 - Dell Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.) Saraiva Reader ALPHA_7RC11b169 (HKLM-x32\...\8505-5699-0960-8592) (Version: ALPHA_7RC11b169 - Saraiva e Siciliano S.A.) Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.) Stay Live 2000 (HKLM-x32\...\Stay Live 2000) (Version: Stay Live 2000 - Version 3.2 - Gregory Braun -- Software Design) Typle (HKLM-x32\...\Typle) (Version: - ) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2015-12-07] (SoftThinks SAS) ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2015-12-07] (SoftThinks SAS) ShellIconOverlayIdentifiers: [DBRShellOverlayBackupFile] -> {831CEBDD-6BAF-4432-BE76-9E0989C14AEF} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2015-12-07] (SoftThinks SAS) ShellIconOverlayIdentifiers: [DBRShellOverlayModifiedBackupFile] -> {275E4FD7-21EF-45CF-A836-832E5D2CC1B3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2015-12-07] (SoftThinks SAS) ContextMenuHandlers01: [Advanced SystemCare] -> [CC]{2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> Nenhum Arquivo ContextMenuHandlers01: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Nenhum Arquivo ContextMenuHandlers01: [DefragglerShellExtension] -> [CC]{4380C993-0C43-4E02-9A7A-0D40B6EA7590} => -> Nenhum Arquivo ContextMenuHandlers01: [Mumtaz] -> {51131DA7-1D24-40e5-AE07-5E3750F5DE3C} => -> Nenhum Arquivo ContextMenuHandlers01: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-06-20] (Avira Operations GmbH & Co. KG) ContextMenuHandlers04: [Mumtaz] -> {51131DA7-1D24-40e5-AE07-5E3750F5DE3C} => -> Nenhum Arquivo ContextMenuHandlers05: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-06] (Advanced Micro Devices, Inc.) ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Nenhum Arquivo ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-02-24] (Intel Corporation) ContextMenuHandlers05: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2017-02-24] (Intel Corporation) ContextMenuHandlers06: [Mumtaz] -> {51131DA7-1D24-40e5-AE07-5E3750F5DE3C} => -> Nenhum Arquivo ContextMenuHandlers06: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-06-20] (Avira Operations GmbH & Co. KG) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0F529688-8567-4423-B388-418C557FF326} - System32\Tasks\Maxthon5 Update => C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe [2017-05-25] (Maxthon International ltd.) Task: {15A88999-C11A-4DE9-B90C-945125F42EAD} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink) Task: {2055B3D5-162E-4E1C-9904-F80B39C56044} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-01] (Google Inc.) Task: {28251857-03E3-4E07-A4D3-EF47D765ACDB} - System32\Tasks\HP AR Program Upload - e3910480c1104a5f9e06b12e465e434e8cd0589c267f4a0ab45784b558f41802 => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3F461B16-63DE-43F4-8859-1ED28210AF98} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2017-05-16] (Microsoft Corporation) Task: {41E48E8F-3861-42BA-A2A2-0B89F9E45B34} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation) Task: {46BC0B91-D1D6-4A7F-878F-3D20945A15E6} - System32\Tasks\HP AR Program Upload - 239debcadcac4fe3b0ccf29ed65c8b7e199dce33004d428b9137adf5a67e8714 => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {4CBE4EF0-C9EE-4151-A9ED-08EAEC94A506} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.) Task: {63922179-BE50-4AD9-8F7E-2D077E314215} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-08-04] (Realtek Semiconductor) Task: {69B5D0CF-7E1C-4DAC-B8DA-3769644324FE} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {726D013F-563E-4273-9EA4-709F3AB655B0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-27] (Adobe Systems Incorporated) Task: {73FF87E9-C29D-4F02-9F5E-E57A7DEE16B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-01] (Google Inc.) Task: {7DE077A0-152D-484B-9670-7B7C4E1A29A7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_131_pepper.exe [2017-06-19] (Adobe Systems Incorporated) Task: {83D7CEF7-C7C9-4AF9-B9EC-A2A2E2C97627} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-07-11] (Microsoft Corporation) Task: {92B80E20-9B46-434C-B021-2D2382B05CA2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation) Task: {9DA6A5DC-C9E6-463A-9C11-91E0C47B0BF3} - System32\Tasks\GoogleUpdateTaskMachineCore1cfed826f31a093 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-01] (Google Inc.) Task: {B77FFC3D-8400-491A-A2EF-73A08557A037} - System32\Tasks\HP AR Program Upload - e6a9ca230c4343ad924320a321ca58f5d5ed89daea52409d8d4a4bc096d19cfe => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {BC6F7A8F-3D29-403D-854B-1BB90990DCBE} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-06-11] (Dell Inc.) Task: {BD8C57A5-4776-4D40-9FBE-18D827377266} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.3.0\Scheduler.exe [2017-03-10] (IObit) Task: {C15E1CE6-48A8-488B-8179-72ECCAA13805} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {CD199A11-A0D2-4F5C-88F9-166F3E0C4436} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {DFE7FEDD-FDA5-4D46-A955-E4B8FAB9EFDB} - System32\Tasks\{35B4B1B7-D1D2-4070-8486-AD485E181168} => pcalua.exe -a C:\Users\fabinho\AppData\Local\{1A142C48-3EBC-40F0-5324-6518774C9980}\uninst.exe -c -FN="C:\Users\fabinho\AppData\Local\{1A492CF2-3F1B-4184-542D-665688FF9B68}\Updater.exe"-P=/Uninstall /s /noun /DelSelfDir Task: {E6BF8C8E-1DA8-4E72-B18E-8750F51C5B65} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-05-25] (PC-Doctor, Inc.) Task: {F780641C-F7A4-4AD8-AC87-21697FE79CD1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd) Task: {F8217F45-0973-4112-86D3-0FB2F2D0EDE9} - System32\Tasks\Opera scheduled Autoupdate 1457012358 => C:\Program Files (x86)\Opera\launcher.exe [2017-07-04] (Opera Software) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfed826f31a093.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ==================== Módulos Carregados (Whitelisted) ============== 2014-09-29 13:23 - 2017-01-17 04:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2017-03-18 17:58 - 2017-03-18 17:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-05-03 09:39 - 2016-03-29 21:17 - 05398016 _____ () C:\Program Files (x86)\Enable Viacam\bin\eviacam.exe 2017-03-18 17:59 - 2017-03-20 01:02 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-07-06 11:36 - 2017-07-06 11:37 - 23624704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\Video.UI.exe 2017-07-06 11:36 - 2017-07-06 11:36 - 08850944 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\EntCommon.dll 2017-07-06 11:36 - 2017-07-06 11:37 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-07-06 11:36 - 2017-07-06 11:37 - 10209280 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\EntPlat.dll 2017-06-01 10:41 - 2017-06-01 10:42 - 00020648 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL 2017-06-28 16:58 - 2017-06-23 00:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll 2017-06-28 16:58 - 2017-06-23 00:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll 2014-04-12 18:58 - 2013-03-05 00:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2013-03-05 11:41 - 2013-03-05 11:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2017-05-01 15:27 - 2017-05-01 15:27 - 00133992 _____ () C:\Program Files (x86)\Dell Update\ServiceTagPlusPlus.dll 2017-05-03 09:58 - 2015-02-26 14:20 - 01239552 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_legacy2411.dll 2017-05-03 09:58 - 2015-02-26 14:17 - 00654848 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_objdetect2411.dll 2017-05-03 09:58 - 2015-02-26 14:15 - 02139136 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_core2411.dll 2017-05-03 09:58 - 2015-02-26 14:16 - 00360960 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_video2411.dll 2017-05-03 09:58 - 2015-02-26 14:16 - 01891840 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_imgproc2411.dll 2017-05-03 09:58 - 2015-02-26 14:16 - 00522752 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_flann2411.dll 2017-05-03 09:58 - 2015-02-26 14:16 - 02146816 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_highgui2411.dll 2017-05-03 09:58 - 2015-02-26 14:19 - 00984064 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_calib3d2411.dll 2017-05-03 09:58 - 2015-02-26 14:19 - 00722432 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_features2d2411.dll 2017-05-03 09:58 - 2015-02-26 14:16 - 00507904 _____ () C:\Program Files (x86)\Enable Viacam\bin\opencv_ml2411.dll 2014-08-14 09:43 - 2013-12-11 02:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-07-08 13:50 - 2017-04-18 03:35 - 16808600 _____ () C:\Program Files (x86)\Maxthon5\Core\plugins\pepflashplayer.dll 2017-07-08 13:50 - 2017-04-18 03:35 - 01590048 _____ () C:\Program Files (x86)\Maxthon5\Core\libglesv2.dll 2017-07-08 13:50 - 2017-04-18 03:35 - 00087840 _____ () C:\Program Files (x86)\Maxthon5\Core\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10] AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32] AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1026] AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\google.com -> www.google.com IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\google.com.br -> www.google.com.br IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\itau.b.br -> www.itau.b.br IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\itau.com.br -> hxxps://bankline.itau.com.br IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\itau.com.br -> bankline.itau.com.br IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\itaupersonnalite.com.br -> hxxp://www.itaupersonnalite.com.br IE trusted site: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\itaupersonnalite.com.br -> www.itaupersonnalite.com.br ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 10:25 - 2017-03-01 15:24 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fabinho\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Firewall do Windows está habilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == HKLM\...\StartupApproved\Run: => "SynTPEnh" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "RtHDVBg" HKLM\...\StartupApproved\Run: => "RtHDVBg_PushButton" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "IgfxTray" HKLM\...\StartupApproved\Run: => "Persistence" HKLM\...\StartupApproved\Run: => "QuickSet" HKLM\...\StartupApproved\Run: => "StartCCC" HKLM\...\StartupApproved\Run32: => "StartCCC" HKLM\...\StartupApproved\Run32: => "IMSS" HKLM\...\StartupApproved\Run32: => "RaidCall" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "SynTPEnh" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "SecurityHealth" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\StartupFolder: => "Monitorar alertas de tinta - HP Deskjet 3510 series (Rede).lnk" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\StartupFolder: => "Enable Viacam.lnk" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "HP Deskjet 3510 series (NET)" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_E3D34DBA53A20850740967746461D2F0" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "Uninstall C:\Users\fabinho\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "BitTorrent" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\...\StartupApproved\Run: => "Uninstall C:\Users\fabinho\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [UDP Query User{F5A37D71-5E8D-4D97-A9FF-2FF0F0E24AC7}C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicator.exe] => (Allow) C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicator.exe FirewallRules: [TCP Query User{17E1CB8C-B912-495D-80A7-CB3A0BC9B6BD}C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicator.exe] => (Allow) C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicator.exe FirewallRules: [UDP Query User{4097CBBC-B6EF-4007-819C-5AB60879107D}C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [TCP Query User{9EC6C85C-CD32-47DD-A802-E8A54F5D36B0}C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [{589F55F3-AD38-4346-A6B7-E95C198C97B8}] => (Allow) C:\Users\fabinho\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{30BA317A-8210-4AB1-B1BF-09F272899D6A}] => (Allow) C:\Users\fabinho\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3D6E689F-A630-4107-8108-EA3AC398E1DD}] => (Allow) C:\Users\fabinho\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6141214C-1AE9-40A3-B960-92BC03067834}] => (Allow) C:\Users\fabinho\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1B8BE6C9-BCA2-4828-AA47-698208E36DFF}] => (Allow) C:\Users\fabinho\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8104ADCC-DC0A-41D1-A203-9FF23A3BAFE0}] => (Allow) C:\Users\fabinho\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EFA04A2C-499D-4868-A7C6-CA4C1FCF9ECB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{31090EB9-C760-4B99-A37B-F36F062C2A5A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{131BC81A-AA4B-4EB6-B386-EFA31CFF8822}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{A59A67DD-3605-4B9A-8F40-B0849CDE398C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{15A93C85-3B44-41C0-8FA6-0615EB4DF1FA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{1400CED1-F37E-4218-9F11-FF5A84F39ADE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [UDP Query User{29B475FE-6861-4684-B81E-180A6E3317D1}C:\users\fabinho\appdata\roaming\utorrent\updates\3.4.8_42576.exe] => (Allow) C:\users\fabinho\appdata\roaming\utorrent\updates\3.4.8_42576.exe FirewallRules: [TCP Query User{E7B050CE-6E8D-45D9-A607-3A8D966421B5}C:\users\fabinho\appdata\roaming\utorrent\updates\3.4.8_42576.exe] => (Allow) C:\users\fabinho\appdata\roaming\utorrent\updates\3.4.8_42576.exe FirewallRules: [{E3F0F536-D361-4BFA-96AF-77425B1ADE45}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [{260C8ECB-FF9A-45B8-A171-187339602474}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe FirewallRules: [{3AC99962-0AC7-4838-872A-D15AEB3B3211}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{36F59181-2F77-4554-8196-5B3DF071B9AF}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{BB9F1EAA-68E9-41BD-9E47-DF050256CF1C}] => (Allow) LPort=2869 FirewallRules: [{E80964EB-9FB1-4C02-BF13-A647C18CDB71}] => (Allow) LPort=1900 FirewallRules: [{7161B692-1F41-40D8-A680-87A2154C7B9C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{85C94648-3D0D-49BC-8CB0-F29949E91A2D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{5E58223A-BD41-4DA6-8B1C-6D7A75D33A11}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{04BDD502-25F1-4FE6-ADFD-A6AC62EAC697}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [{76B93DA1-383A-476B-AC73-D9C6809B886A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{3D73FDFF-9969-4468-824D-E7BBC1EFA741}] => (Allow) C:\Program Files (x86)\Opera\46.0.2597.32\opera.exe FirewallRules: [{7A2D4B61-C538-449C-AA8A-229D9820F4A9}] => (Allow) C:\Program Files (x86)\Maxthon5\Bin\MxUp.exe FirewallRules: [{EC83F8F1-A603-415E-952C-4C8C56E7B007}] => (Allow) C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe FirewallRules: [{A9840141-5B0A-4FFE-8186-F1E3BD332A85}] => (Allow) C:\Program Files (x86)\Maxthon5\Bin\MxUp.exe FirewallRules: [{EA744FE7-E66C-499E-8A35-DF96D2084C8D}] => (Allow) C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe FirewallRules: [{26BCAFD7-D689-41EB-8120-EC0BC574171A}] => (Allow) C:\Program Files (x86)\Opera\46.0.2597.39\opera.exe ==================== Pontos de Restauração ========================= 11-07-2017 17:33:57 Windows Update ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (07/13/2017 05:07:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: svchost.exe_DiagTrack, versão: 10.0.15063.0, carimbo de data/hora: 0x02799ef5 Nome do módulo com falha: ntdll.dll, versão: 10.0.15063.447, carimbo de data/hora: 0xa329d3a8 Código de exceção: 0x00000512 Deslocamento da falha: 0x00000000000a5e44 ID do processo com falha: 0x2054 Hora de início do aplicativo com falha: 0x01d2fc02cf3f73e1 Caminho do aplicativo com falha: C:\WINDOWS\System32\svchost.exe Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll ID do Relatório: 6afc6c89-fd4c-4f8e-8fb3-e8dc24443c18 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (07/13/2017 04:42:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Phabio) Description: Falha na ativação do aplicativo Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App com o erro: -2144927142. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Error: (07/13/2017 03:06:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: svchost.exe_DiagTrack, versão: 10.0.15063.0, carimbo de data/hora: 0x02799ef5 Nome do módulo com falha: ntdll.dll, versão: 10.0.15063.447, carimbo de data/hora: 0xa329d3a8 Código de exceção: 0x00000512 Deslocamento da falha: 0x00000000000a5e44 ID do processo com falha: 0xce4 Hora de início do aplicativo com falha: 0x01d2fbde547d7a5d Caminho do aplicativo com falha: C:\WINDOWS\System32\svchost.exe Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll ID do Relatório: 4955ca75-994a-41ef-851b-8e1e916a83df Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (07/13/2017 02:27:08 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: TOASTER.EXE, versão: 2.8.0.31, carimbo de data/hora: 0x5664aae2 Nome do módulo com falha: KERNELBASE.dll, versão: 10.0.15063.483, carimbo de data/hora: 0xc3955624 Código de exceção: 0xe0434352 Deslocamento da falha: 0x000eb802 ID do processo com falha: 0x12c Hora de início do aplicativo com falha: 0x01d2fbdffda479e4 Caminho do aplicativo com falha: C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE Caminho do módulo com falha: C:\WINDOWS\System32\KERNELBASE.dll ID do Relatório: 2c09652d-90cb-4731-bc25-b8d87a0a36d8 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (07/13/2017 02:27:05 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplicativo: TOASTER.EXE Versão do Framework: v4.0.30319 Descrição: O processo foi terminado devido a uma exceção sem tratamento. Informações da Exceção: System.ArgumentException em System.Windows.Rect..ctor(Double, Double, Double, Double) em Toaster.Core.AppBarFunctions.ABSetPos(Toaster.Core.ABEdge, System.Windows.Window) em Toaster.Core.AppBarFunctions+RegisterInfo.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) em System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) em MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) em MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) em System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) em System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) em System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) em MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) em MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) em System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) em System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) em System.Windows.Application.RunDispatcher(System.Object) em System.Windows.Application.RunInternal(System.Windows.Window) em System.Windows.Application.Run(System.Windows.Window) em Toaster.App.Main() Error: (07/13/2017 02:27:05 PM) (Source: TOASTER.EXE) (EventID: 0) (User: ) Description: An Unhandled Exception occured. A Largura e a Altura não devem ser negativas. em System.Windows.Rect..ctor(Double x, Double y, Double width, Double height) em Toaster.Core.AppBarFunctions.ABSetPos(ABEdge edge, Window appbarWindow) em Toaster.Core.AppBarFunctions.RegisterInfo.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled) em System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled) em MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled) em MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o) em System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs) em System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler) Error: (07/13/2017 10:42:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Phabio) Description: O pacote Microsoft.Windows.ShellExperienceHost_10.0.15063.332_neutral_neutral_cw5n1h2txyewy+App foi terminado porque levou muito tempo para ser suspenso. Error: (07/12/2017 10:38:10 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (07/12/2017 07:07:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: svchost.exe_DiagTrack, versão: 10.0.15063.0, carimbo de data/hora: 0x02799ef5 Nome do módulo com falha: ntdll.dll, versão: 10.0.15063.447, carimbo de data/hora: 0xa329d3a8 Código de exceção: 0x00000512 Deslocamento da falha: 0x00000000000a5e44 ID do processo com falha: 0x20d0 Hora de início do aplicativo com falha: 0x01d2fb48f7510fa3 Caminho do aplicativo com falha: C:\WINDOWS\System32\svchost.exe Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\ntdll.dll ID do Relatório: b1f08d81-8dde-4e23-ad65-923932d8a668 Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Error: (07/12/2017 06:32:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Phabio) Description: Falha na ativação do aplicativo Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI com o erro: -2144927142. Veja o log Microsoft-Windows-TWinUI/Operational para obter informações adicionais. Erros de Sistema: ============= Error: (07/13/2017 05:17:24 PM) (Source: Tcpip) (EventID: 4199) (User: ) Description: O sistema detectou um conflito de endereço entre o endereço IP 192.168.1.2 e o sistema que possui o endereço de hardware de rede 1C-56-FE-42-05-5A. Como resultado desse conflito, as operações de rede nesse sistema podem ser interrompidas. Error: (07/13/2017 05:07:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Experiências e Telemetria de Usuário Conectado foi finalizado inesperadamente. Isto aconteceu 2 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço. Error: (07/13/2017 04:45:27 PM) (Source: DCOM) (EventID: 10001) (User: Phabio) Description: Não é possível iniciar o servidor DCOM: Microsoft.Windows.ContentDeliveryManager_10.0.15063.0_neutral_neutral_cw5n1h2txyewy!App.AppXea6epmb5w19sjwy9ckw8md46dm93nhkq.mca como Não Disponível/Não Disponível. O erro: "31" Aconteceu ao iniciar este comando: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca Error: (07/13/2017 03:06:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Experiências e Telemetria de Usuário Conectado foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço. Error: (07/13/2017 10:47:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Windows Presentation Foundation Font Cache 3.0.0.0 devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (07/13/2017 10:47:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço FontCache3.0.0.0. Error: (07/13/2017 10:46:17 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço Avira.ServiceHost. Error: (07/13/2017 10:46:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço SupportAssistAgent devido ao seguinte erro: O serviço não respondeu à requisição de início ou controle em tempo hábil. Error: (07/13/2017 10:46:17 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conexão do serviço SupportAssistAgent. Error: (07/13/2017 10:45:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço CldFlt devido ao seguinte erro: Não há suporte para o pedido. CodeIntegrity: =================================== Date: 2017-07-12 13:15:46.981 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-12 13:15:05.850 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-12 13:14:57.010 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-12 13:13:56.478 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-12 13:13:28.458 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-12 13:13:27.158 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-12 13:13:26.484 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-11 13:29:18.310 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-11 13:28:47.042 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. Date: 2017-07-11 13:28:38.757 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i7-4500U CPU @ 1.80GHz Percentagem de memória em uso: 53% RAM física total: 8072.96 MB RAM física disponível: 3785.63 MB Virtual Total: 16264.96 MB Virtual disponível: 11081.58 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:547.31 GB) (Free:440.43 GB) NTFS Drive e: (ESP) (Fixed) (Total:0.48 GB) (Free:0.46 GB) FAT32 Drive p: (Backup-Geral) (Fixed) (Total:374.18 GB) (Free:281.08 GB) NTFS Drive w: () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS Drive x: (PBR Image) (Fixed) (Total:8.41 GB) (Free:0.71 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 695E4FA0) Partition: GPT. ==================== Fim de Addition.txt ============================