Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 26-12-2017
Executado por lf_vi (27-12-2017 21:45:14)
Executando a partir de C:\Users\lf_vi\Desktop
Windows 10 Pro Versão 1709 16299.125 (X64) (2017-11-22 00:08:00)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-806562948-4108574866-1196990160-500 - Administrator - Disabled)
Convidado (S-1-5-21-806562948-4108574866-1196990160-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-806562948-4108574866-1196990160-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-806562948-4108574866-1196990160-1003 - Limited - Enabled)
lf_vi (S-1-5-21-806562948-4108574866-1196990160-1001 - Administrator - Enabled) => C:\Users\lf_vi
WDAGUtilityAccount (S-1-5-21-806562948-4108574866-1196990160-504 - Limited - Disabled)

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\uTorrent) (Version: 3.5.0.44294 - BitTorrent Inc.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform)
Corel Graphics - Windows Shell Extension (HKLM\...\_{C7C5C180-248D-4CF4-8636-4568DE8EDC3B}) (Version: 19.1.0.419 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{C7C5C180-248D-4CF4-8636-4568DE8EDC3B}) (Version: 19.1.419 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (HKLM\...\{58EA2241-5840-4C95-A5A5-82FD2F037D72}) (Version: 19.1.419 - Corel Corporation) Hidden
Corel Update Manager (HKLM\...\{9E1EE683-0C7B-46E7-83EC-1F5A1D8F2296}) (Version: 2.4.245 - Corel corporation) Hidden
CorelDRAW Graphics Suite 2017 - BR (x64) (HKLM\...\{8ABF5677-0748-4A42-A7DF-81F13027A18F}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Capture (x64) (HKLM\...\{AC9BB7B7-A763-43C5-9830-F3B78FDB051D}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Common (x64) (HKLM\...\{B8C51F00-63AE-4327-A533-375CB7B6BF26}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Connect (x64) (HKLM\...\{BD0F92AD-DFDB-4BC5-BAA5-FB27892F9483}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Custom Data (x64) (HKLM\...\{E7975CC5-05E4-45E3-AFD3-234809F694A0}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Draw (x64) (HKLM\...\{A16C7EEB-69CB-42A1-AD10-0E19A133D957}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Filters (x64) (HKLM\...\{EEC42BAD-9517-450D-AF99-FA3C16D0377C}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Font Manager (x64) (HKLM\...\{D276DE88-654E-4738-A736-6E18D12F0C34}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - IPM Content BR (x64) (HKLM\...\{DAC504BE-DAFD-4EDF-9138-0419E57D7BB1}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - IPM T (x64) (HKLM\...\{904B10A6-0D9C-4645-9C61-504FA92B9220}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - PHOTO-PAINT (x64) (HKLM\...\{B2D66383-4F98-4108-B6A3-F9CF8715875C}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Redist (x64) (HKLM\...\{47865C60-4ED8-4678-B23F-C2D1C2DDC09C}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Setup Files (x64) (HKLM\...\{07B49D5C-2AB6-4D40-8A9B-BEDA6021A7C7}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - VBA (x64) (HKLM\...\{5330DEB9-A612-4679-ACC1-D3D9C6190824}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - VideoBrowser (x64) (HKLM\...\{C451F155-26B7-48F2-8A8F-9428B4D479D2}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Workspaces (x64) (HKLM\...\{F3EFAF0E-DF3C-4384-8A0F-90D79FEFD7F5}) (Version: 19.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 - Writing Tools (x64) (HKLM\...\{E38357D4-1B80-400F-A6D7-B4D5DD83D979}) (Version: 19.1 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite 2017 (64-Bit) (HKLM\...\_{07B49D5C-2AB6-4D40-8A9B-BEDA6021A7C7}) (Version: 19.1.0.419 - Corel Corporation)
CorelDRAW Graphics Suite 2017 (HKLM\...\{79C52519-B717-45C2-8845-E55419A8E685}) (Version: 19.1 - Corel Corporation) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Dic Michaelis - UOL (HKLM-x32\...\WDIC) (Version:  - )
Driver Easy 5.5.5 (HKLM\...\DriverEasy_is1) (Version: 5.5.5 - Easeware)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Estudo de aprimoramento de produto para HP Deskjet 4640 series (HKLM\...\{EFE02098-EF3C-4302-A6E5-81EB9BF9EB38}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
Fix Print 3.7 (HKLM-x32\...\{91C9FA89-44F6-4D7A-A006-25816412CCCC}_is1) (Version:  - Nova Consultoria)
FormatFactory 4.1.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.1.0.0 - Free Time)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.108 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HP Deskjet 4640 series Ajuda (HKLM-x32\...\{21B407AE-2BA8-436B-A9B5-648D53BEA9BF}) (Version: 31.0.0 - Hewlett Packard)
HP Deskjet 4640 series Software básico do dispositivo (HKLM\...\{F36620D4-66D3-49D7-B40B-7AFA8D1E6439}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kaspersky Internet Security (HKLM-x32\...\{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab)
K-Lite Mega Codec Pack 13.4.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.4.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Linksys Connect (HKLM-x32\...\Linksys Connect) (Version: 1.5.13225.3 - Linksys LLC)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.8730.2127 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minecraft (HKLM-x32\...\Minecraft) (Version: 1.8.8 - Minecraft)
Minecraft1.7.10 (HKLM-x32\...\Minecraft1.7.10) (Version:  - )
Mozilla Firefox 57.0.2 (x64 pt-BR) (HKLM\...\Mozilla Firefox 57.0.2 (x64 pt-BR)) (Version: 57.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.)
SmartShare (HKLM-x32\...\{BAB337AE-DD9E-45C3-BED6-0EE4732AEC60}) (Version: 2.3.1511.1201 - LG Electronics Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
VDownloader 4.5.2880 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version:  - Vitzo Limited)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.43 - VSO Software)
Warsaw 2.0.3.2 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 2.0.3.2 - GAS Tecnologia)
WhatsApp (HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\WhatsApp) (Version: 0.2.7315 - WhatsApp)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-806562948-4108574866-1196990160-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2017-09-20] (AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2017-09-20] (AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2017-09-20] (AO Kaspersky Lab)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-05] (Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2017-09-20] (AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {14EE6BF6-31FF-425C-9476-98EAE64731C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-20] (Google Inc.)
Task: {28F387C6-1CE5-490C-A39C-4CE51BB4983D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-12-19] (Microsoft Corporation)
Task: {311AF7EA-8380-4955-AAAC-73E4EE969F9A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-07] (Microsoft Corporation)
Task: {354535F6-5694-4240-B2C5-32FF4BC34A51} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe [2014-12-05] (LG Electronics Inc.)
Task: {4348A615-0D91-4C0E-8813-44763F4D89A9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-12-01] (Piriform Ltd)
Task: {4B094678-8C06-49F5-AAFD-4C9C49669F71} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-12-19] (Microsoft Corporation)
Task: {5D76BB03-FED5-491C-BACD-B76AFA9E23EA} - System32\Tasks\HPCustParticipation HP Deskjet 4640 series => C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.)
Task: {65E345E7-19E8-46E4-89A6-4FC2D399B8AA} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-08-18] ()
Task: {660BC7C1-AB47-4E53-89BD-E025DCD2893D} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {71F83CB8-094F-4541-8B20-A7FF9C321C34} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-13] (Adobe Systems Incorporated)
Task: {A25855F3-481B-4442-949E-E91F9D2C7015} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-20] (Google Inc.)
Task: {AE3535B7-ADBE-4A2E-A848-26607CE27EAA} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2017-11-10] (Easeware)
Task: {CD0A46BF-710D-4119-8DC0-A45CB7201B92} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-12-19] (Microsoft Corporation)
Task: {E390B2FF-1643-429B-B1FA-4BBC529DF7CE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-12-19] (Microsoft Corporation)
Task: {EA988EB8-9272-4582-BBDF-D44D9E8C315E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {F16D9CEB-487D-4242-8DCF-397AC831CAA4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-12-01] (Piriform Ltd)
Task: {F28E03A3-57DC-4B9B-A2F3-B1F41244986C} - System32\Tasks\S-1-5-21-806562948-4108574866-1196990160-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {F52B439B-79F5-4554-9E31-31556A19350E} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Windows\TEMP\is-2O32O.tmp\corefixer.exe <==== ATENÇÃO
Task: {F6A73FDE-EBFF-4B46-A486-693D5322EBB5} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-07] (Microsoft Corporation)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe

==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


==================== Módulos Carregados (Whitelisted) ==============

2017-09-29 10:41 - 2017-09-29 10:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-12-12 18:24 - 2017-11-26 09:23 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-12-12 18:24 - 2017-11-26 09:01 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-12-12 06:26 - 2017-12-12 06:27 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-12-12 06:26 - 2017-12-12 06:27 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-12-12 06:26 - 2017-12-12 06:28 - 024735744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-12-12 06:26 - 2017-12-12 06:27 - 002551808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\skypert.dll
2017-12-12 06:26 - 2017-12-12 06:26 - 000671744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2017-10-22 12:08 - 2015-07-28 18:26 - 001266712 _____ () C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe
2017-12-20 06:23 - 2017-12-13 23:49 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\libglesv2.dll
2017-12-20 06:23 - 2017-12-13 23:49 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.108\libegl.dll
2017-09-20 14:33 - 2017-09-20 14:33 - 000836968 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\kpcengine.2.3.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\pt_br\AcroTray.ptb
2017-10-22 12:08 - 2013-12-06 22:06 - 000642016 _____ () C:\Program Files (x86)\LG Software\LG Smart Share\DMS\sqlite3.dll
2017-10-22 12:08 - 2015-07-28 18:02 - 000903168 _____ () C:\Program Files (x86)\LG Software\LG Smart Share\DMR\LibMediaRenderer.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\bb.com.br -> aapj.bb.com.br
IE trusted site: HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\gastecnologia.com.br -> cloud.gastecnologia.com.br

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2017-03-18 18:03 - 2017-03-18 18:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-806562948-4108574866-1196990160-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lf_vi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 177.10.248.18 - 177.10.248.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "VDownloader"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "VDownloader"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "VDownloader"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-806562948-4108574866-1196990160-1001\...\StartupApproved\Run: => "Steam"

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{DA46992C-CD9E-4277-8AF9-41D40F1445FA}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe
FirewallRules: [{0F03C3D3-87A3-4004-ACF0-1CFBDCEFC328}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe
FirewallRules: [{DB12BCDE-04DF-4C6D-A5E8-028B00E044B8}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe
FirewallRules: [{44152BB2-F3A2-4E55-9C02-4278B0C401C9}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe
FirewallRules: [{255F20BF-C882-411C-B6F6-B61E2D88EC7E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1A20D46A-8AED-42AA-8509-98EA54475852}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D8D6DB2F-EC86-47D6-BEB3-7ECC23832C84}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{647C8EC2-D72B-44CF-B943-4B580DA4E78D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B94608E7-D85B-4C57-A14F-0010F38F6B78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E225EE29-34F7-4EDE-B598-AB2E40B3E6D5}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite 2017\Programs64\CorelPP.exe
FirewallRules: [{396A79C6-846B-4C01-8EA1-60CAB59A4DEA}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite 2017\Programs64\CorelDrw.exe
FirewallRules: [{D9114ECF-5639-4076-99E2-3A2E480CCAA9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{B65F1946-0560-4AA8-9992-0BA59E409596}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{17C00FA7-77E8-4253-A231-838D0F91CCCB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{700764A5-154D-4BCA-BC41-075DCD99A524}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{060CB0C1-BD3D-4AD4-ABBA-8F2EC4834F3C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{69B52275-88DE-408D-A11D-D39DE8FE34DE}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{F62D9C21-0508-4D18-ABC0-BC405EC3D65E}] => (Allow) LPort=5357
FirewallRules: [{8DEA0FA7-10F6-425A-B870-3D55DCF8BC37}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\DeviceSetup.exe
FirewallRules: [{AE0B90D6-B38F-43D5-BA9B-C212EDB15F4A}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\SendAFax.exe
FirewallRules: [{F359D8F7-4E44-442C-912F-A26D2B32EA6E}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\DigitalWizards.exe
FirewallRules: [{93AB451E-5A2B-412F-AA12-B3F07CE1F90D}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\FaxApplications.exe
FirewallRules: [{32D081D0-15B4-44F7-AC0D-7FD379597405}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{EDF8F05E-4915-4D20-BD91-CD092E8B1F92}] => (Allow) C:\Users\lf_vi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{48F96DE0-FB55-4A19-AA9C-1E843D1C6C86}] => (Allow) C:\Users\lf_vi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{14FB74AC-3727-43C5-8B9D-7AC50E654D35}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{518211F0-A304-4CD7-91E9-421ED485C4DC}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{B9AAA92E-BAEC-4761-A04F-21025C72D887}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{99A65EAF-6922-4B64-85B9-0577DD19B777}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{F92622CA-8399-4096-9231-4D6B9708C5B8}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
FirewallRules: [{EC3AA91D-9C83-470D-94F9-FEB0CF9208BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D864F517-60B0-48B7-88D3-D31A892FACD3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{36D33E33-DC9E-42E5-8382-7206C6730CE7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{D62D39CF-B4BA-4397-A43B-068EF95BE0CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{CE6F5CE1-55F4-454B-B48C-01DB8A9AA562}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{1C640B21-299B-46FE-ABD5-957B5C7A189D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{3C670DC5-BB21-4D4E-8A9F-11022444EE34}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{62611A6B-0E2A-40BE-887D-D632AB155E84}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{CF873B12-19F8-445B-967B-330595AD9DCA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{9D9A26C1-B5D1-447C-85F7-B3C3015425E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{C17616B0-E9FF-4659-90B2-3E73C9212840}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.70.388.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe

==================== Pontos de Restauração =========================

17-12-2017 17:13:39 Windows Update
21-12-2017 21:18:49 Installed Minecraft
22-12-2017 11:05:55 Removed LogMeIn Hamachi

==================== Dispositivos Apresentando Falhas No Gerenciador =============


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (12/26/2017 06:03:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: firefox.exe, versão: 57.0.2.6549, carimbo de data/hora: 0x5a2846ff
Nome do módulo com falha: wslbscrwh64.dll, versão: 1.0.0.321, carimbo de data/hora: 0x59316484
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000020202
ID do processo com falha: 0x189c
Hora de início do aplicativo com falha: 0x01d37e8d0945c37d
Caminho do aplicativo com falha: C:\Program Files\Mozilla Firefox\firefox.exe
Caminho do módulo com falha: C:\Program Files\Diebold\Warsaw\wslbscrwh64.dll
ID do Relatório: 10acb826-a904-4718-a649-583d4643da59
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (12/22/2017 11:05:27 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW.  hr = 0x8007001f, Um dispositivo conectado ao sistema não está funcionando.
.


Operação:
   Executando Operação Assíncrona

Contexto:
   Estado Atual: DoSnapshotSet

Error: (12/22/2017 11:03:06 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW.  hr = 0x8007001f, Um dispositivo conectado ao sistema não está funcionando.
.


Operação:
   Executando Operação Assíncrona

Contexto:
   Estado Atual: DoSnapshotSet

Error: (12/22/2017 11:01:10 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW.  hr = 0x8007001f, Um dispositivo conectado ao sistema não está funcionando.
.


Operação:
   Executando Operação Assíncrona

Contexto:
   Estado Atual: DoSnapshotSet

Error: (12/22/2017 11:00:30 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback.  hr =  0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
   Obtendo Dados do Gravador

Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {75ab546f-a0b2-4f1b-bf74-255803f1d726}

Error: (12/12/2017 06:11:20 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina QueryFullProcessImageNameW.  hr = 0x8007001f, Um dispositivo conectado ao sistema não está funcionando.
.


Operação:
   Executando Operação Assíncrona

Contexto:
   Estado Atual: DoSnapshotSet

Error: (12/12/2017 06:10:43 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback.  hr =  0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
   Obtendo Dados do Gravador

Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {bddf1f7b-e0fb-4a62-89da-463e99996148}

Error: (12/07/2017 01:48:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: rads_user_kernel.exe, versão: 0.0.0.0, carimbo de data/hora: 0x4e65c1ac
Nome do módulo com falha: rads_user_kernel.exe, versão: 0.0.0.0, carimbo de data/hora: 0x4e65c1ac
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000b8554
ID do processo com falha: 0x28b4
Hora de início do aplicativo com falha: 0x01d36f7b3a814809
Caminho do aplicativo com falha: C:\Users\lf_vi\Carlos\Jogos Para PC\League of Legends\RADS\system\rads_user_kernel.exe
Caminho do módulo com falha: C:\Users\lf_vi\Carlos\Jogos Para PC\League of Legends\RADS\system\rads_user_kernel.exe
ID do Relatório: 2f677f5c-1d70-4ec5-9d17-193a3ede58f5
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:

Error: (12/03/2017 07:26:31 PM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {41FD88F7-F295-4D39-91AC-A85F3149A05B} foi rejeitada

Error: (12/03/2017 07:26:31 PM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {95CABCC9-BC57-4C12-B8DF-BA193232AA01} foi rejeitada


Erros de Sistema:
=============
Error: (12/27/2017 09:31:34 PM) (Source: DCOM) (EventID: 10016) (User: LUIZVILARINHO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário LUIZVILARINHO\lf_vi SID (S-1-5-21-806562948-4108574866-1196990160-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (12/27/2017 09:15:34 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORIDADE NT)
Description: 3221225684Ocorrência de erro fatal em processamento de dados de restauração.

Error: (12/27/2017 09:16:00 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 20:39:42 do dia ‎27/‎12/‎2017 não era esperado.

Error: (12/27/2017 08:45:16 PM) (Source: DCOM) (EventID: 10016) (User: LUIZVILARINHO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário LUIZVILARINHO\lf_vi SID (S-1-5-21-806562948-4108574866-1196990160-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (12/27/2017 08:44:49 PM) (Source: DCOM) (EventID: 10016) (User: LUIZVILARINHO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário LUIZVILARINHO\lf_vi SID (S-1-5-21-806562948-4108574866-1196990160-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (12/27/2017 08:35:09 PM) (Source: DCOM) (EventID: 10016) (User: LUIZVILARINHO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário LUIZVILARINHO\lf_vi SID (S-1-5-21-806562948-4108574866-1196990160-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (12/27/2017 08:33:51 PM) (Source: DCOM) (EventID: 10016) (User: LUIZVILARINHO)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário LUIZVILARINHO\lf_vi SID (S-1-5-21-806562948-4108574866-1196990160-1001) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.

Error: (12/27/2017 08:33:01 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: O desligamento do sistema que ocorreu às 17:34:32 do dia ‎27/‎12/‎2017 não era esperado.

Error: (12/27/2017 08:32:33 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORIDADE NT)
Description: 3221225684Ocorrência de erro fatal em processamento de dados de restauração.

Error: (12/27/2017 06:11:23 PM) (Source: DCOM) (EventID: 10001) (User: LUIZVILARINHO)
Description: Não é possível iniciar o servidor DCOM: Microsoft.Windows.ContentDeliveryManager_10.0.16299.15_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca como Não Disponível/Não Disponível. O erro:
"31"
Aconteceu ao iniciar este comando:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca


CodeIntegrity:
===================================
  Date: 2017-12-26 18:00:32.282
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

  Date: 2017-12-26 17:14:12.027
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

  Date: 2017-12-25 16:56:01.048
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

  Date: 2017-12-25 16:56:00.926
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

  Date: 2017-12-25 16:55:46.589
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

  Date: 2017-12-25 16:55:46.111
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbdhm64.dll that did not meet the Store signing level requirements.

  Date: 2017-12-25 15:54:14.581
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

  Date: 2017-12-23 19:50:33.361
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

  Date: 2017-12-23 00:23:11.978
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.

  Date: 2017-12-22 13:41:30.771
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Diebold\Warsaw\wslbscrwh64.dll that did not meet the Microsoft signing level requirements.


==================== Informações da Memória =========================== 

Processador: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz
Percentagem de memória em uso: 29%
RAM física total: 11956.88 MB
RAM física disponível: 8457.75 MB
Virtual Total: 13748.88 MB
Virtual disponível: 10159.6 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.56 GB) (Free:507.03 GB) NTFS
Drive f: (DADOS) (Fixed) (Total:1863.01 GB) (Free:962.88 GB) NTFS ==>[sistema com componentes de inicialização (obtido através de drive)]

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6CA0DD2D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=469 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 5908D613)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================