Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Brand New Computer SUPER SLOW : Bloatware


  • Please log in to reply

#1
drvirtual

drvirtual

    New Member

  • Member
  • Pip
  • 7 posts

Dear experts,

 

I bought a brand new computer VAIO and it´s almost unusable. Extremely slow to load everything. PLEASE HELP!

 

Reports below....

 

Thank you in advance for your kind assistance! Much appreciated

 

Andre

 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 15-07-2019 01
Executado por prici (administrador) em DESKTOP-EGQ45H9 (VAIO VJF155F11X-B0811B) (27-07-2019 12:32:44)
Executando a partir de C:\Users\prici\Desktop
Perfis Carregados: prici (Perfis Disponíveis: prici)
Platform: Windows 10 Home Single Language Versão 1803 17134.471 (X64) Idioma: Português (Brasil)
Navegador padrão: Chrome
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processos (Whitelisted) =================
 
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
 
() [Arquivo não assinado] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Arquivo não assinado] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19051.16210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [Arquivo não assinado] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\77.4.131\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\77.4.131\QtWebEngineProcess.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\HPWA\iBTAudioMon.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\HPWA\iBTAudioSrv.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_8a9535cd18c90bc3\igfxCUIService.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_8a9535cd18c90bc3\igfxEM.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_8a9535cd18c90bc3\IntelCpHDCPSvc.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_8a9535cd18c90bc3\IntelCpHeciSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel® Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\prici\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Microsoft Corporation) [Arquivo não assinado] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.464_none_eaf315ac1d6e512f\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MpCmdRun.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MpCmdRun.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(Positivo Informática SA -> ) C:\Windows\System32\ServiceRegisterProduct.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
 
==================== Registro (Whitelisted) ===========================
 
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
 
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16695816 2016-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5782336 2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-26] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iBTAudioMon.lnk [2017-05-25]
ShortcutTarget: iBTAudioMon.lnk -> C:\Program Files (x86)\Intel\HPWA\iBTAudioMon.exe (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
 
==================== Tarefas Agendadas (Whitelisted) =============
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
Task: {2CE3FBE4-679F-4689-A5C6-305AC2B8F48D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-06-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2FD7935B-E073-4B7D-86D7-159E273D41EF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {47FC1DF0-0AA1-4C5B-8121-580AF2AB9B73} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4BB608DF-BDB8-4BA8-B092-BBB266052063} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {53EC3156-F7F2-4FA1-BF3D-C6660A848439} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6389D1C2-5494-4481-8412-7BDBB07E2B4D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-06-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {71EE857A-713F-4CBD-B809-A604FC450C6C} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1012344 2017-05-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {88CDE832-E6E8-4D91-BA65-C336BB455888} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" foi desbloqueado. <==== ATENÇÃO
Task: {9656FBB3-A611-4BCE-9A6D-A5BDEE27DDB8} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1012344 2017-05-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {9B2CA258-5709-4345-81A1-9E96FA24A92C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2E8591A-A358-44C8-9122-14709F898DFB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C707151C-19B6-4BA1-8BBD-16B764877F9A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {DDECC212-B68D-47AA-BD94-7127DB2460A2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152112 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7EAF593-F963-422B-BC0D-73D5134518B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152112 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {F57BBB09-2FE4-4CAB-A585-9EB1149D4343} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FCF3AFAC-ECFB-4067-950B-8811578E9267} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-13] (Google Inc -> Google Inc.)
Task: {FDC0E83E-301F-4EDE-A605-E66954B30144} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-26] (Intel® Trusted Connect Service -> Intel® Corporation)
Task: {FE338498-6335-4425-9F40-AF937F798885} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-13] (Google Inc -> Google Inc.)
 
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
 
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
 
==================== Internet (Whitelisted) ====================
 
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
 
Tcpip\Parameters: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{1b71fa65-8fe6-4471-9536-646661cbc22a}: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{afc761bb-9f74-48dd-a2e1-c9c970fb85ff}: [DhcpNameServer] 192.168.15.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://oem17win10.msn.com/?pc=NMTE
HKU\S-1-5-21-2522026663-2332735836-2616300434-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://oem17win10.msn.com/?pc=NMTE
HKU\S-1-5-21-2522026663-2332735836-2616300434-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://oem17win10.msn.com/?pc=NMTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
 
FireFox:
========
FF DefaultProfile: w5gojw8x.default
FF ProfilePath: C:\Users\prici\AppData\Roaming\Mozilla\Firefox\Profiles\w5gojw8x.default [2018-06-09]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN -> VideoLAN)
 
Chrome: 
=======
CHR Profile: C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default [2019-07-27]
CHR Extension: (Apresentações) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-09]
CHR Extension: (Documentos) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-09]
CHR Extension: (Google Drive) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-13]
CHR Extension: (YouTube) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-13]
CHR Extension: (Planilhas) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-09]
CHR Extension: (Documentos Google off-line) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-11]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-25]
CHR Extension: (Chrome Media Router) - C:\Users\prici\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-27]
 
==================== Serviços (Whitelisted) ====================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11413600 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-06-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-06-13] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 iBTAudioSrv; C:\Program Files (x86)\Intel\HPWA\iBTAudioSrv.exe [572872 2014-05-28] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [515768 2017-04-13] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel® Trusted Connect Service -> Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [177440 2016-09-15] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2017-03-21] (Intel Corporation-Wireless Connectivity Solutions -> )
U2 ServiceRegisterProduct; C:\Windows\System32\ServiceRegisterProduct.exe [19432 2015-07-16] (Positivo Informática SA -> )
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [279128 2017-11-03] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3750304 2017-03-21] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
R3 AirplaneModeHid; C:\WINDOWS\system32\DRIVERS\AirplaneModeHid.sys [33496 2015-07-17] (Insyde Software Corp. -> Insyde Corporation)
S3 ibtavflt; C:\WINDOWS\System32\drivers\ibtavflt.sys [42952 2014-05-28] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R3 ibtsdp; C:\WINDOWS\system32\DRIVERS\ibtsdp.sys [40904 2014-05-28] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [244744 2017-04-13] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7689728 2018-04-11] (Microsoft Windows -> Intel Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2017-05-30] (PAIPTAC  Driver -> )
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [779232 2016-08-04] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [42072 2016-11-15] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [72792 2017-11-03] (Synaptics Incorporated -> Synaptics Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-07-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-07-27] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-27] (Microsoft Windows -> Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
 
==================== Um mês (criados) ========
 
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
 
2019-07-27 12:32 - 2019-07-27 12:35 - 000024343 _____ C:\Users\prici\Desktop\FRST.txt
2019-07-27 12:31 - 2019-07-27 12:32 - 000000000 ____D C:\FRST
2019-07-27 12:29 - 2019-07-27 12:29 - 002095104 _____ (Farbar) C:\Users\prici\Desktop\FRST64.exe
2019-07-27 12:28 - 2019-07-27 12:29 - 002095104 _____ (Farbar) C:\Users\prici\Downloads\FRST64.exe
2019-07-25 23:10 - 2019-07-25 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-07-25 23:08 - 2019-07-25 23:08 - 000000000 ____D C:\Program Files\UNP
2019-07-25 22:56 - 2019-07-25 22:56 - 006922240 _____ C:\Program Files (x86)\GUTA3D7.tmp
2019-07-25 22:56 - 2019-07-25 22:56 - 000000000 ____D C:\Program Files (x86)\GUMA3C6.tmp
2019-07-16 18:25 - 2019-07-16 18:25 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-07-16 18:25 - 2019-07-16 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-07-16 18:25 - 2019-07-16 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-07-16 18:25 - 2019-07-16 18:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
 
==================== Um mês (modificados) ========
 
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
 
2019-07-27 12:35 - 2018-04-11 20:38 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2019-07-27 12:35 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-27 12:34 - 2018-04-11 20:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-27 12:25 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-27 12:25 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-27 12:17 - 2018-02-03 10:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-07-27 12:11 - 2018-05-25 02:39 - 001651086 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-27 12:11 - 2018-04-12 13:41 - 000714996 _____ C:\WINDOWS\system32\prfh0416.dat
2019-07-27 12:11 - 2018-04-12 13:41 - 000140870 _____ C:\WINDOWS\system32\prfc0416.dat
2019-07-27 12:11 - 2018-04-11 20:36 - 000000000 ____D C:\WINDOWS\INF
2019-07-27 12:06 - 2018-05-25 02:28 - 000000000 ____D C:\Users\prici
2019-07-27 12:06 - 2017-06-12 22:30 - 000000000 __SHD C:\Users\prici\IntelGraphicsProfiles
2019-07-27 12:05 - 2018-05-25 03:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-27 12:05 - 2018-05-25 02:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-07-27 12:05 - 2017-06-13 19:47 - 000001050 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-07-27 12:05 - 2017-06-13 19:47 - 000001046 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-07-27 12:05 - 2017-06-13 19:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-07-26 11:32 - 2018-06-21 23:01 - 000000000 ____D C:\Users\Todos os Usuários\Packages
2019-07-26 11:32 - 2018-06-21 23:01 - 000000000 ____D C:\ProgramData\Packages
2019-07-26 11:25 - 2017-06-13 19:18 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-26 11:25 - 2017-06-13 19:18 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-07-26 11:05 - 2018-05-25 03:08 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-07-26 11:05 - 2018-05-25 03:08 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-07-26 11:04 - 2018-04-11 20:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-07-26 11:02 - 2017-05-25 17:12 - 000000000 ____D C:\Program Files\Microsoft Office
2019-07-26 10:59 - 2018-05-25 03:08 - 000004110 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-07-26 10:59 - 2018-05-25 03:08 - 000003878 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-07-25 23:49 - 2018-03-14 01:17 - 000000000 ____D C:\Users\prici\AppData\Local\Packages
2019-07-25 23:25 - 2017-06-13 20:10 - 000000000 ___RD C:\Users\prici\Dropbox
2019-07-25 23:07 - 2017-12-07 22:00 - 000741432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-07-25 23:05 - 2018-05-25 03:08 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2522026663-2332735836-2616300434-1003
2019-07-25 23:05 - 2018-05-25 02:28 - 000002380 _____ C:\Users\prici\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-07-25 23:05 - 2017-06-12 22:35 - 000000000 ___RD C:\Users\prici\OneDrive
2019-07-25 22:59 - 2018-04-11 18:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
 
==================== Arquivos na raiz de alguns diretórios ================
 
2019-07-25 22:56 - 2019-07-25 22:56 - 006922240 _____ () C:\Program Files (x86)\GUTA3D7.tmp
 
==================== SigCheck ===============================
 
(Não há correção automática para arquivos que não passaram na verificação.)
 
==================== Fim de FRST.txt ============================
 
 
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 15-07-2019 01
Executado por prici (27-07-2019 12:37:29)
Executando a partir de C:\Users\prici\Desktop
Windows 10 Home Single Language Versão 1803 17134.471 (X64) (2018-05-25 06:12:43)
Modo da Inicialização: Normal
==========================================================
 
 
==================== Contas: =============================
 
Administrador (S-1-5-21-2522026663-2332735836-2616300434-500 - Administrator - Disabled)
Convidado (S-1-5-21-2522026663-2332735836-2616300434-501 - Limited - Disabled)
DefaultAccount (S-1-5-21-2522026663-2332735836-2616300434-503 - Limited - Disabled)
prici (S-1-5-21-2522026663-2332735836-2616300434-1003 - Administrator - Enabled) => C:\Users\prici
WDAGUtilityAccount (S-1-5-21-2522026663-2332735836-2616300434-504 - Limited - Disabled)
 
==================== Central de Segurança ========================
 
(Se uma entrada for incluída na fixlist, será removida.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Programas Instalados ======================
 
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
 
Airplane Mode Hid Installer (HKLM-x32\...\{5E5B067F-52A4-447E-A3F1-D6DD10565E73}) (Version: 5.0.0.2 - )
Assistente de Atualização do Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22395 - Microsoft Corporation)
Áudio Intel® Wireless Bluetooth® (HKLM-x32\...\{5DBE4F91-4168-4ECA-B4D3-2ED6386839CE}) (Version: 17.0.1422.01 - Intel Corporation)
Dropbox (HKLM-x32\...\Dropbox) (Version: 77.4.131 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.142 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.4.0.3 - Insyde Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4590 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel® Wireless Bluetooth® (HKLM-x32\...\{05BD09F0-C113-4854-889A-0FE0FF3B9EB3}) (Version: 19.11.1639.0649 - Intel Corporation)
Microsoft Office Home and Student 2016 - pt-br (HKLM\...\HomeStudentRetail - pt-br) (Version: 16.0.11727.20244 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2522026663-2332735836-2616300434-1003\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 60.0.1 (x64 pt-BR) (HKLM\...\Mozilla Firefox 60.0.1 (x64 pt-BR)) (Version: 60.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0416-1000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Pacote de Driver do Windows - Insyde (AirplaneModeHid) HIDClass  (07/14/2015 1.4.0.3) (HKLM\...\F6EE2AD6575789BFA9536FE4637A2E06B7F2DD0F) (Version: 07/14/2015 1.4.0.3 - Insyde)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.21292 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.)
Software de dispositivo do Chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel® Corporation) Hidden
Software Intel® PROSet/Wireless (HKLM-x32\...\{03929cf1-3ae4-4765-b8b3-32b8e2e26a8d}) (Version: 19.60.0 - Intel Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.121 - Synaptics Incorporated)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78313 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B8B01E04-5393-4902-98E6-0E2787F03C80}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.3 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
 
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.143.600.0_x86__kgqvnymyfvs32 [2019-07-25] (king.com)
Editor de Vídeos -> C:\Program Files\WindowsApps\Microsoft.MovieMoments_6.3.9654.20464_x64__8wekyb3d8bbwe [2017-05-25] (Microsoft Corporation)
Email e Calendário -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe [2019-07-26] (Microsoft Corporation) [MS Ad]
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.31.0_x64__kejf07qmg0jnm [2019-07-25] (Keeper Security Inc)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.1.0.6_x86__h6adky7gbf63m [2019-07-26] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-25] (Microsoft Corporation) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_1.8.1812.301_x86__8wekyb3d8bbwe [2019-07-26] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.7.4300.0_x86__8wekyb3d8bbwe [2018-05-16] (Microsoft Studios) [MS Ad]
Microsoft Notícias -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-07-25] (Microsoft Studios) [MS Ad]
MSN Clima -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-25] (Microsoft Corporation) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.9.0_x64__nfy108tqq3p12 [2018-06-09] (Thumbmunkeys Ltd) [MS Ad]
Royal Revolt 2 -> C:\Program Files\WindowsApps\flaregamesGmbH.RoyalRevolt2_5.1.0.0_x86__g0q0z3kw54rap [2019-07-26] (flaregames GmbH)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
 
==================== Exame Personalizado CLSID (Whitelisted): ==========================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
CustomCLSID: HKU\S-1-5-21-2522026663-2332735836-2616300434-1003_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\prici\Dropbox [2017-06-13 20:10]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_8a9535cd18c90bc3\igfxDTCM.dll [2018-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
 
==================== Atalhos & WMI ========================
 
(As entradas podem ser listadas para serem restauradas ou removidas.)
 
 
==================== Módulos Carregados (Whitelisted) ==============
 
 
==================== Alternate Data Streams (Whitelisted) =========
 
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
 
 
==================== Modo de Segurança (Whitelisted) ===================
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
 
==================== Associação (Whitelisted) ===============
 
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
 
 
==================== Internet Explorer confiável/restrito ===============
 
(Se uma entrada for incluída na fixlist, será removida do Registro.)
 
 
==================== Hosts Conteúdo: ===============================
 
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
 
2017-03-18 18:03 - 2017-03-18 18:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
 
==================== Outras Áreas ============================
 
(Atualmente não há nenhuma correção automática para esta seção.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2522026663-2332735836-2616300434-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\Vaio.jpg
DNS Servers: 209.18.47.62 - 209.18.47.61
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall do Windows está habilitado.
 
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
 
Se uma entrada for incluída na fixlist, será removida.
 
 
==================== Regras do Firewall (Whitelisted) ===============
 
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
 
FirewallRules: [{7F3EC59D-419D-4212-B0E5-DC41AFB2F1D5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{940865AF-2277-489E-BADA-EE40403D0BF7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{214154A8-3085-4D3E-ADA8-B3E5F23A4090}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2B6DB669-F8B0-4388-8F6C-43A39B0EB817}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2929DD9C-301A-4EED-9F2E-5A677390508D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD1AF642-C8E0-4AC1-8C8A-CEDB0AA2447D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9C180826-775D-4A97-914B-9A23AC0B3AE7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{157460D1-DAF9-4C13-ABB4-8ED23308B7FF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{E45154BA-9B0E-4DB6-9289-959A1AA0253D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 
==================== Pontos de Restauração =========================
 
04-12-2018 01:02:52 Instalador de Módulos do Windows
05-12-2018 23:04:14 Instalador de Módulos do Windows
07-12-2018 01:02:50 Instalador de Módulos do Windows
08-12-2018 20:50:13 Instalador de Módulos do Windows
09-12-2018 23:13:47 Instalador de Módulos do Windows
 
==================== Dispositivos Apresentando Falhas No Gerenciador =============
 
 
==================== Erros no Log de eventos: =========================
 
Erros em Aplicativos:
==================
Error: (07/27/2019 12:36:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: Explorer.EXE, versão: 10.0.17134.165, carimbo de data/hora: 0x4031a9f8
Nome do módulo com falha: igfxCPL.cpl, versão: 0.0.0.0, carimbo de data/hora: 0x5ba3fada
Código de exceção: 0xc0000409
Deslocamento da falha: 0x000000000000ae30
ID do processo com falha: 0x1b1c
Hora de início do aplicativo com falha: 0x01d5448ce48f0a4a
Caminho do aplicativo com falha: C:\WINDOWS\Explorer.EXE
Caminho do módulo com falha: C:\WINDOWS\system32\igfxCPL.cpl
ID do Relatório: feebd72b-dbd6-4cd2-9e65-47d820a553a7
Nome completo do pacote com falha: 
ID do aplicativo relativo ao pacote com falha:
 
Error: (07/26/2019 11:06:28 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa SkypeApp.exe versão 8.36.0.52 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle Segurança e Manutenção.
 
ID do Processo: 2324
 
Hora de Início: 01d5435d1c342e9d
 
Hora de Término: 4294967295
 
Caminho do Aplicativo: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
 
ID do Relatório: f6e8b9fc-2700-4928-9f21-f8dc986d6f7c
 
Nome completo do pacote com falha: Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c
 
ID do aplicativo relativo ao pacote com falha: App
 
Error: (07/26/2019 10:58:12 AM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {41FD88F7-F295-4D39-91AC-A85F3149A05B} foi rejeitada
 
Error: (07/26/2019 10:58:12 AM) (Source: COM) (EventID: 10031) (User: )
Description: Uma verificação de política de unmarshaling foi executada ao realizar unmarshaling em um objeto de marshaling personalizado, e a classe {41FD88F7-F295-4D39-91AC-A85F3149A05B} foi rejeitada
 
Error: (07/25/2019 11:22:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: SkypeApp.exe, versão: 8.36.0.52, carimbo de data/hora: 0x5c101808
Nome do módulo com falha: twinapi.appcore.dll, versão: 10.0.17134.137, carimbo de data/hora: 0xb5d50228
Código de exceção: 0xc000027b
Deslocamento da falha: 0x000000000009cad5
ID do processo com falha: 0x2294
Hora de início do aplicativo com falha: 0x01d543565b746809
Caminho do aplicativo com falha: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\twinapi.appcore.dll
ID do Relatório: aaee52de-f83b-4240-b338-c54528645a55
Nome completo do pacote com falha: Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c
ID do aplicativo relativo ao pacote com falha: App
 
Error: (07/25/2019 11:10:31 PM) (Source: MsiInstaller) (EventID: 1021) (User: DESKTOP-EGQ45H9)
Description: Produto: Google Update Helper - A atualização '{1CAD0644-2CF1-4EA6-B512-0F59D9EAB13C}' não pôde ser removida. Código de erro 1647. O Windows Installer pode criar logs para ajudar a solucionar problemas na instalação de pacotes de software. Use o link a seguir para obter informações sobre ativação do suporte a registro em log: http://go.microsoft....k/?LinkId=23127
 
Error: (07/25/2019 11:10:02 PM) (Source: DbxSvc) (EventID: 293) (User: )
Description: Failed to validate client process executable is signed: C:\Program Files (x86)\Dropbox\Client_77.4.131\Dropbox.exe
 
Error: (07/25/2019 11:10:02 PM) (Source: DbxSvc) (EventID: 282) (User: )
Description: Certificate mismatch for file: C:\Program Files (x86)\Dropbox\Client_77.4.131\Dropbox.exe
 
 
Erros de Sistema:
=============
Error: (07/27/2019 12:26:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:25:14 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGQ45H9)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário DESKTOP-EGQ45H9\prici SID (S-1-5-21-2522026663-2332735836-2616300434-1003) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:16:33 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:11:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Iniciar para o aplicativo de Servidor COM com CLSID 
Windows.SecurityCenter.WscBrokerManager
 e APPID 
Não Disponível
 ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:11:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário AUTORIDADE NT\SERVIÇO LOCAL SID (S-1-5-19) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:09:49 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGQ45H9)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 e APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 ao usuário DESKTOP-EGQ45H9\prici SID (S-1-5-21-2522026663-2332735836-2616300434-1003) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:09:21 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGQ45H9)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário DESKTOP-EGQ45H9\prici SID (S-1-5-21-2522026663-2332735836-2616300434-1003) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
Error: (07/27/2019 12:08:33 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGQ45H9)
Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 e APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 ao usuário DESKTOP-EGQ45H9\prici SID (S-1-5-21-2522026663-2332735836-2616300434-1003) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes.
 
 
Windows Defender:
===================================
Date: 2019-07-26 10:57:37.174
Description: 
O exame do Windows Defender Antivirus foi interrompido antes da conclusão.
ID do Exame: {C7E1AD4C-4B7A-4B97-9BBF-CA61AEEE6E3E}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
 
Date: 2018-12-14 21:55:54.272
Description: 
O exame do Windows Defender Antivirus foi interrompido antes da conclusão.
ID do Exame: {5F7BA8B6-9950-4E23-98C6-63D9873AFB16}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
 
Date: 2018-12-14 20:17:47.058
Description: 
O exame do Windows Defender Antivirus foi interrompido antes da conclusão.
ID do Exame: {D96D36CC-B849-454B-9682-8C3315E41AD4}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
 
Date: 2018-12-10 00:26:12.075
Description: 
O exame do Windows Defender Antivirus foi interrompido antes da conclusão.
ID do Exame: {E9FE64E3-56CE-482B-9246-C34F44B67253}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
 
Date: 2018-12-08 22:17:35.628
Description: 
O exame do Windows Defender Antivirus foi interrompido antes da conclusão.
ID do Exame: {3C338648-D98E-406C-8119-5090D67F60BC}
Tipo de Exame: Antimalware
Parâmetros do Exame: Verificação Rápida
Usuário: AUTORIDADE NT\SISTEMA
 
Date: 2018-12-02 16:53:21.837
Description: 
O recurso de Proteção em Tempo Real do Windows Defender Antivirus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x80004005
Descrição do erro: Erro não especificado 
Motivo: O driver de filtro ignorou o exame de itens e está no modo de passagem. Isso pode ter acontecido por causa de condições de poucos recursos.
 
Date: 2018-11-27 20:23:31.291
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.281.943.0
Origem da Atualização: Servidor do Microsoft Update
Tipo de Assinatura: Antivírus
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.15400.5
Código de erro: 0x80240016
Descrição do erro: Erro inesperado ao verificar atualizações. Para obter informações sobre como instalar ou solucionar problemas de atualizações, consulte Ajuda e Suporte. 
 
Date: 2018-11-01 22:57:51.265
Description: 
O Windows Defender Antivirus encontrou um erro ao atualizar assinaturas.
Versão da Nova Assinatura: 
Versão da Assinatura Anterior: 1.277.1102.0
Origem da Atualização: Servidor do Microsoft Update
Tipo de Assinatura: Antivírus
Tipo de Atualização: Completa
Usuário: AUTORIDADE NT\SISTEMA
Versão do Mecanismo Atual: 
Versão do Mecanismo Anterior: 1.1.15400.4
Código de erro: 0x80070643
Descrição do erro: Erro fatal durante a instalação. 
 
Date: 2018-10-10 06:16:23.559
Description: 
O recurso de Proteção em Tempo Real do Windows Defender Antivirus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x80004005
Descrição do erro: Erro não especificado 
Motivo: O driver de filtro ignorou o exame de itens e está no modo de passagem. Isso pode ter acontecido por causa de condições de poucos recursos.
 
Date: 2018-09-21 21:03:13.793
Description: 
O recurso de Proteção em Tempo Real do Windows Defender Antivirus encontrou um erro e falhou.
Recurso: Em Tempo de Acesso
Código do Erro: 0x80004005
Descrição do erro: Erro não especificado 
Motivo: O driver de filtro ignorou o exame de itens e está no modo de passagem. Isso pode ter acontecido por causa de condições de poucos recursos.
 
==================== Informações da Memória =========================== 
 
BIOS: Positivo Informatica SA 5.12 03/28/2017
Motherboard: Positivo Informatica SA N250JU
Processador: Intel® Core™ i5-7200U CPU @ 2.50GHz
Percentagem de memória em uso: 77%
RAM física total: 3985.74 MB
RAM física disponível: 913.18 MB
Virtual Total: 4945.74 MB
Virtual disponível: 1219.33 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:930.6 GB) (Free:857.78 GB) NTFS
 
\\?\Volume{3988f461-13b5-43e2-a466-8fdf6ac70534}\ () (Fixed) (Total:0.8 GB) (Free:0.37 GB) NTFS
\\?\Volume{730e1744-0c3b-4a8e-a8c6-c053003bf388}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32
 
==================== MBR & Tabela de Partições ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 098AEBDC)
 
Partition: GPT.
 
==================== Fim de Addition.txt ============================

 


  • 0

Advertisements


#2
drvirtual

drvirtual

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

Not sure if I posted this correctly. Hope I did. Thanks again!


  • 0

#3
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,938 posts
  • MVP

If you did not install Dropbox (and pay for it) I would uninstall it.  Are you using (and paying for) Microsoft Office?

 

Download, Save and Run by Right click and Run As Admin the

McAfee Removal Tool:

 

https://www.bleeping...s-removal-tool/

 

Get Process Explorer

https://live.sysinte...com/procexp.exe

Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.



Get the free version of Speccy:

http://www.filehippo...ownload_speccy/ 

(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving),
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.

First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.


  • 0

#4
drvirtual

drvirtual

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

Hello RKinner! Thank you for your assistance! I indeed appreciate it.

 

I followed all instructions. Here follows logs in pasted text and attachment as requested.

 

Ready for your next instructions.

 

Thank you!

 

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 92.98 52 K 8 K 0
procexp64.exe 2.66 35.192 K 69.652 K 10088 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
WmiPrvSE.exe 0.85 6.220 K 13.652 K 5360 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
Interrupts 0.67 0 K 0 K n/a Hardware Interrupts and DPCs
SynTPEnh.exe 0.67 9.536 K 19.796 K 3360 Synaptics TouchPad 64-bit Enhancements Synaptics Incorporated (Verified) Synaptics Incorporated
MsMpEng.exe 0.63 146.216 K 127.920 K 3736 Antimalware Service Executable Microsoft Corporation (Verified) Microsoft Windows Publisher
System 0.34 192 K 720 K 4
dwm.exe 0.30 33.932 K 54.100 K 1108 Gerenciador de Janelas da Área de Trabalho Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.22 8.740 K 16.804 K 3608 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
csrss.exe 0.14 2.444 K 4.876 K 752 Processo do tempo de Execução do Servidor do Cliente Microsoft Corporation (Verified) Microsoft Windows Publisher
explorer.exe 0.09 39.468 K 100.864 K 6684 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.09 53.292 K 61.756 K 1684 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
Dropbox.exe 0.09 146.092 K 179.044 K 8360 Dropbox Dropbox, Inc. (Verified) Dropbox, Inc
chrome.exe 0.06 60.564 K 89.692 K 8064 Google Chrome Google LLC (Verified) Google LLC
svchost.exe 0.05 30.152 K 35.920 K 9532 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
ctfmon.exe 0.05 3.840 K 12.404 K 5980 Carregador CTF Microsoft Corporation (Verified) Microsoft Windows
WmiApSrv.exe 0.02 1.712 K 7.656 K 2616 Adaptador Reverso de Desempenho WMI Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 0.02 49.644 K 100.812 K 10168 Google Chrome Google LLC (Verified) Google LLC
svchost.exe 0.01 7.272 K 12.512 K 856 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
TeamViewer_Service.exe 0.01 4.944 K 14.004 K 3508 TeamViewer 12 TeamViewer GmbH (Verified) TeamViewer GmbH
OneDrive.exe 0.01 24.220 K 66.320 K 9064 Microsoft OneDrive Microsoft Corporation (Verified) Microsoft Corporation
lsass.exe 0.01 6.552 K 14.908 K 836 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe < 0.01 16.868 K 32.564 K 5172 Google Chrome Google LLC (Verified) Google LLC
svchost.exe < 0.01 12.596 K 27.564 K 384 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 10.420 K 17.840 K 1416 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 10.864 K 21.824 K 8544 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 4.088 K 14.260 K 3040 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 5.272 K 13.924 K 1632 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe < 0.01 22.992 K 39.576 K 8652 Google Chrome Google LLC (Verified) Google LLC
EvtEng.exe < 0.01 4.528 K 11.572 K 3460 Intel® PROSet/Wireless Event Log Service Intel® Corporation (Verified) Intel Corporation-Wireless Connectivity Solutions
ZeroConfigService.exe 4.536 K 13.812 K 3500 Intel® PROSet/Wireless Zero Configure Service Intel® Corporation (Verified) Intel Corporation-Wireless Connectivity Solutions
WmiPrvSE.exe 29.228 K 34.524 K 3292 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
wlanext.exe 5.056 K 13.240 K 3424 Windows Wireless LAN 802.11 Extensibility Framework Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 2.400 K 7.284 K 924 Aplicativo de Logon do Windows Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1.640 K 5.308 K 740 Aplicativo de Inicialização do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
Video.UI.exe Suspended 21.000 K 43.372 K 8684 (Nenhuma assinatura presente no requerente)
unsecapp.exe 1.600 K 6.352 K 6280 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
unsecapp.exe 1.520 K 6.084 K 4736 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
taskhostw.exe 5.820 K 14.416 K 5696 Processo de Host para Tarefas do Windows Microsoft Corporation (Verified) Microsoft Windows
SynTPHelper.exe 1.084 K 3.964 K 6920 Synaptics Pointing Device Helper Synaptics Incorporated (Verified) Synaptics Incorporated
SynTPEnhService.exe 2.588 K 7.984 K 3492 64-bit Synaptics Pointing Enhance Service Synaptics Incorporated (Verified) Synaptics Incorporated
svchost.exe 4.064 K 11.228 K 2552 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.356 K 8.960 K 2436 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5.536 K 22.076 K 6076 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4.616 K 19.456 K 3552 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.480 K 8.880 K 8276 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 7.524 K 27.732 K 9448 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.472 K 10.700 K 3108 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5.028 K 11.184 K 2316 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.224 K 7.440 K 2544 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.648 K 6.860 K 1048 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.740 K 9.816 K 1652 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 17.032 K 18.596 K 1424 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.412 K 6.696 K 2104 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.260 K 6.736 K 3068 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5.716 K 13.332 K 2516 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.436 K 8.072 K 3900 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6.708 K 14.220 K 1660 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9.780 K 24.368 K 3440 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.908 K 19.668 K 1332 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 10.048 K 16.956 K 3452 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.124 K 7.228 K 1460 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.540 K 13.124 K 7696 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.248 K 11.380 K 2404 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.828 K 8.680 K 2700 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.352 K 13.112 K 1852 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.140 K 10.888 K 1452 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4.236 K 11.356 K 4008 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.792 K 5.684 K 5940 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5.196 K 10.628 K 2800 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4.528 K 15.816 K 6476 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.628 K 8.796 K 1432 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9.036 K 32.552 K 5196 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.868 K 5.732 K 2560 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.548 K 10.276 K 4204 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.388 K 10.144 K 3432 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9.188 K 18.328 K 9124 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.220 K 8.612 K 1280 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.096 K 7.928 K 1800 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.904 K 6.812 K 2248 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.144 K 8.464 K 10072 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4.500 K 7.896 K 2016 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.004 K 3.284 K 76 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.996 K 6.516 K 1212 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.804 K 6.004 K 1468 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.440 K 5.076 K 1704 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.076 K 6.980 K 2008 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.832 K 6.300 K 2028 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.812 K 5.772 K 2088 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.652 K 5.296 K 2096 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.636 K 6.856 K 2752 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.172 K 9.396 K 2964 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2.060 K 7.152 K 3232 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.700 K 5.680 K 3628 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.352 K 4.784 K 3636 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.396 K 4.780 K 4152 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.444 K 4.800 K 5584 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.892 K 7.484 K 5976 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.488 K 5.572 K 6824 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3.620 K 7.512 K 6928 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.604 K 5.676 K 9080 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1.624 K 6.720 K 8392 Processo de Host para Serviços do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
spoolsv.exe 5.812 K 12.716 K 3144 Aplicativo de subsistema de spooler Microsoft Corporation (Verified) Microsoft Windows
smss.exe 564 K 1.056 K 412 Gerenciador de Sessão do Windows Microsoft Corporation (Verified) Microsoft Windows Publisher
smartscreen.exe 18.196 K 29.356 K 7996 Windows Defender SmartScreen Microsoft Corporation (Verified) Microsoft Windows
SkypeBackgroundHost.exe Suspended 2.008 K 11.572 K 7288 Microsoft Skype Microsoft Corporation (Nenhuma assinatura presente no requerente) Microsoft Corporation
SkypeApp.exe Suspended 170.492 K 34.236 K 8164 SkypeApp Microsoft Corporation (Nenhuma assinatura presente no requerente) Microsoft Corporation
sihost.exe 6.324 K 22.832 K 6032 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
ShellExperienceHost.exe Suspended 22.316 K 67.004 K 6872 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SgrmBroker.exe 1.844 K 3.524 K 7844 Serviço System Guard Runtime Monitor Broker Microsoft Corporation (Verified) Microsoft Windows Publisher
SettingSyncHost.exe 6.008 K 7.052 K 4068 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
services.exe 5.264 K 9.156 K 816 Aplicativo de serviços e controle Microsoft Corporation (Verified) Microsoft Windows Publisher
ServiceRegisterProduct.exe 11.964 K 14.060 K 3576 ServiceRegisterProduct (Verified) Positivo Informática SA
sedsvc.exe 2.600 K 9.668 K 8252 sedsvc Microsoft Corporation (Verified) Microsoft Windows
SecurityHealthService.exe 3.252 K 12.868 K 3564 Windows Security Health Service Microsoft Corporation (Verified) Microsoft Windows Publisher
SearchUI.exe Suspended 50.996 K 70.780 K 7240 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe 17.308 K 21.692 K 6436 Indexador do Microsoft Windows Search Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 3.412 K 16.288 K 7820 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 5.120 K 15.760 K 7580 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 1.432 K 5.636 K 7308 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 4.124 K 21.260 K 8704 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2.196 K 9.000 K 5876 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RegSrvc.exe 2.044 K 7.952 K 3480 Intel® PROSet/Wireless Registry Service Intel® Corporation (Verified) Intel Corporation-Wireless Connectivity Solutions
Registry 6.592 K 24.544 K 96
RAVCpl64.exe 4.052 K 13.096 K 8872 Gerenciador de áudio HD Realtek Realtek Semiconductor (Verified) Realtek Semiconductor Corp.
QtWebEngineProcess.exe 43.568 K 60.336 K 7608 Qt Qtwebengineprocess The Qt Company Ltd. (Verified) Dropbox, Inc
QtWebEngineProcess.exe 38.408 K 51.428 K 1832 Qt Qtwebengineprocess The Qt Company Ltd. (Verified) Dropbox, Inc
procexp.exe 3.104 K 10.788 K 8040 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
OfficeClickToRun.exe 13.852 K 26.608 K 3744 Microsoft Office Click-to-Run (SxS) Microsoft Corporation (Verified) Microsoft Corporation
NisSrv.exe 4.704 K 9.952 K 5916 Microsoft Network Realtime Inspection Service Microsoft Corporation (Verified) Microsoft Windows Publisher
MSASCuiL.exe 2.016 K 9.144 K 8820 Windows Defender notification icon Microsoft Corporation (Verified) Microsoft Windows
Memory Compression 224 K 36.940 K 1896
LMS.exe 3.944 K 12.540 K 10148 Intel® Local Management Service Intel Corporation (Verified) Intel Corporation - Embedded Subsystems and IP Blocks Group
jhi_service.exe 1.520 K 6.476 K 10064 Intel® Dynamic Application Loader Host Interface Intel Corporation (Verified) Intel Corporation - Embedded Subsystems and IP Blocks Group
IntelCpHeciSvc.exe 1.540 K 5.744 K 4160 IntelCpHeciSvc Executable Intel Corporation (Verified) Intel® pGFX
IntelCpHDCPSvc.exe 1.548 K 6.204 K 3408 Intel HD Graphics Drivers for Windows® Intel Corporation (Verified) Intel® pGFX
igfxEM.exe 6.624 K 24.436 K 5192 igfxEM Module Intel Corporation (Verified) Intel® pGFX
igfxCUIService.exe 1.940 K 7.300 K 1920 igfxCUIService Module Intel Corporation (Verified) Intel® pGFX
ibtsiva.exe 1.240 K 3.788 K 3644 Intel® Wireless Bluetooth® iBtSiva Service Intel Corporation (Verified) Intel® Wireless Connectivity Solutions
iBTAudioSrv.exe 1.960 K 6.240 K 3472 Intel® Wireless Bluetooth® Audio Service Intel Corporation (Verified) Intel Corporation-Mobile Wireless Group
iBTAudioMon.exe 1.452 K 6.040 K 9100 Intel® Wireless Bluetooth® Audio Monitor Intel Corporation (Verified) Intel Corporation-Mobile Wireless Group
IAStorIcon.exe 20.780 K 39.476 K 9284 IAStorIcon Intel Corporation (Verified) Intel® Rapid Storage Technology
IAStorDataMgrSvc.exe 30.776 K 55.116 K 9988 IAStorDataSvc Intel Corporation (Verified) Intel® Rapid Storage Technology
GoogleUpdate.exe 2.352 K 256 K 1508 Google Installer Google Inc. (Verified) Google Inc
GoogleCrashHandler64.exe 1.700 K 424 K 9712 Google Crash Handler Google LLC (Verified) Google Inc
GoogleCrashHandler.exe 1.712 K 480 K 9684 Google Crash Handler Google LLC (Verified) Google Inc
fontdrvhost.exe 7.756 K 13.764 K 616 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
fontdrvhost.exe 1.652 K 3.452 K 600 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
DropboxUpdate.exe 2.180 K 324 K 5724 Dropbox Update Dropbox, Inc. (Verified) Dropbox, Inc
Dropbox.exe 2.688 K 10.628 K 8712 Dropbox Dropbox, Inc. (Verified) Dropbox, Inc
Dropbox.exe 2.012 K 7.736 K 8556 Dropbox Dropbox, Inc. (Verified) Dropbox, Inc
dllhost.exe 1.552 K 6.564 K 848 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 3.088 K 10.100 K 2996 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
DbxSvc.exe 2.636 K 5.144 K 3524 Dropbox Service Dropbox, Inc. (Verified) Dropbox, Inc
dasHost.exe 1.456 K 4.576 K 2192 Device Association Framework Provider Host Microsoft Corporation (Verified) Microsoft Windows
csrss.exe 1.900 K 4.260 K 652 Processo do tempo de Execução do Servidor do Cliente Microsoft Corporation (Verified) Microsoft Windows Publisher
conhost.exe 5.376 K 7.552 K 3620 Host da Janela do Console Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 72.532 K 76.144 K 9744 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 23.124 K 39.200 K 10172 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 21.148 K 37.684 K 6660 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 12.980 K 22.136 K 1392 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 2.068 K 7.364 K 1564 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 1.972 K 8.040 K 6832 Google Chrome Google LLC (Verified) Google LLC
audiodg.exe 9.300 K 14.764 K 3264 Isolamento de Gráfico de Dispositivo de Áudio do Windows Microsoft Corporation (Verified) Microsoft Windows
 

Attached Files


  • 0

#5
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,938 posts
  • MVP

PC doesn't show any bloatware.  Where are you  located?  Your PC speaks Portuguese but your DNS server is in Colorado Springs.

 

You may be seeing a lot of interference on the WiFi.  There are at least three strong signals on Channel 1:

 

Wi-Fi (PrincessFloripa) 88 <==your connection

Wi-Fi (MySpectrumWiFic8-2G) 71
                  
Wi-Fi (KingLorenzzo) 76

 

May be more than three but I got tired of looking through the list.

 

Hopefully you have control of your router.  Get:

 

Download inssider

http://www.techspot....6-inssider.html
Double click to install it. Then run it by right click and Run As Admin.

It will show you a graph in the bottom right that has your signal in blue and competing signals in orange and yellow.  It may also recommend a different channel which might have less interference.

Moving to a different channel (by logging on to your router) can drastically improve performance.

 

We can also check with Latency Monitor:

Go to

http://www.resplendence.com/downloads

Scroll down to

System Monitoring Tools

and then find

LatencyMon 6.70 (or it may be a higher number if they update)

Click on Download free home edition

Save it then right click and Run As Admin.  It will install and then start the program.  
It will tell you to click on the Start button but there isn't one.  
Instead click on the green arrowhead (looks like a Play button).   Let it run for at least 20 seconds.  Then hit the red box to stop it.

Edit, Copy Report text to Clipboard then move to a REPLY and Ctrl + v to paste the text into a reply. 

 


  • 0

#6
drvirtual

drvirtual

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

Hey RKinner! Thanks again for the reply and instructions.

 

I forgot to answer some of your previous questions. 

 

Yes, I did download Dropbox and use it legitimately. 

 

Yes, Microsoft office came with the computer and is authentic.

 

I bought the computer in Brazil (my wife is Brazilian), however, we live in Florida. Not sure why the Colorado Springs IP.....

 

Here is the log as you requested.

 

Ready for your next reply.

 

Thank you again!

 

_________________________________________________________________________________________________________
CONCLUSION
_________________________________________________________________________________________________________
Your system appears to be suitable for handling real-time audio and other tasks without dropouts. 
LatencyMon has been analyzing your system for  0:02:47  (h:mm:ss) on all processors.
 
 
_________________________________________________________________________________________________________
SYSTEM INFORMATION
_________________________________________________________________________________________________________
Computer name:                                        DESKTOP-EGQ45H9
OS version:                                           Windows 10 , 10.0, version 1803, build: 17134 (x64)
Hardware:                                             VJF155F11X-B0811B, VAIO, Positivo Informatica SA    , N250JU
CPU:                                                  GenuineIntel Intel® Core™ i5-7200U CPU @ 2.50GHz
Logical processors:                                   4
Processor groups:                                     1
RAM:                                                  3985 MB total
 
 
_________________________________________________________________________________________________________
CPU SPEED
_________________________________________________________________________________________________________
Reported CPU speed:                                   2712 MHz
 
Note: reported execution times may be calculated based on a fixed reported CPU speed. Disable variable speed settings like Intel Speed Step and AMD Cool N Quiet in the BIOS setup for more accurate results.
 
 
_________________________________________________________________________________________________________
MEASURED INTERRUPT TO USER PROCESS LATENCIES
_________________________________________________________________________________________________________
The interrupt to process latency reflects the measured interval that a usermode process needed to respond to a hardware request from the moment the interrupt service routine started execution. This includes the scheduling and execution of a DPC routine, the signaling of an event and the waking up of a usermode thread from an idle wait state in response to that event.
 
Highest measured interrupt to process latency (µs):   679,646659
Average measured interrupt to process latency (µs):   8,185977
 
Highest measured interrupt to DPC latency (µs):       550,136213
Average measured interrupt to DPC latency (µs):       2,423738
 
 
_________________________________________________________________________________________________________
 REPORTED ISRs
_________________________________________________________________________________________________________
Interrupt service routines are routines installed by the OS and device drivers that execute in response to a hardware interrupt signal.
 
Highest ISR routine execution time (µs):              347,331858
Driver with highest ISR routine execution time:       Wdf01000.sys - Tempo de Execução da Estrutura de Driver em Modo Kernel, Microsoft Corporation
 
Highest reported total ISR routine time (%):          0,227599
Driver with highest ISR total time:                   Wdf01000.sys - Tempo de Execução da Estrutura de Driver em Modo Kernel, Microsoft Corporation
 
Total time spent in ISRs (%)                          0,230879
 
ISR count (execution time <250 µs):                   24224
ISR count (execution time 250-500 µs):                0
ISR count (execution time 500-999 µs):                5
ISR count (execution time 1000-1999 µs):              0
ISR count (execution time 2000-3999 µs):              0
ISR count (execution time >=4000 µs):                 0
 
 
_________________________________________________________________________________________________________
REPORTED DPCs
_________________________________________________________________________________________________________
DPC routines are part of the interrupt servicing dispatch mechanism and disable the possibility for a process to utilize the CPU while it is interrupted until the DPC has finished execution.
 
Highest DPC routine execution time (µs):              740,572271
Driver with highest DPC routine execution time:       ndis.sys - NDIS (Especificação de Interface de Driver de Rede), Microsoft Corporation
 
Highest reported total DPC routine time (%):          0,197677
Driver with highest DPC total execution time:         Wdf01000.sys - Tempo de Execução da Estrutura de Driver em Modo Kernel, Microsoft Corporation
 
Total time spent in DPCs (%)                          0,415758
 
DPC count (execution time <250 µs):                   332275
DPC count (execution time 250-500 µs):                0
DPC count (execution time 500-999 µs):                344
DPC count (execution time 1000-1999 µs):              0
DPC count (execution time 2000-3999 µs):              0
DPC count (execution time >=4000 µs):                 0
 
 
_________________________________________________________________________________________________________
 REPORTED HARD PAGEFAULTS
_________________________________________________________________________________________________________
Hard pagefaults are events that get triggered by making use of virtual memory that is not resident in RAM but backed by a memory mapped file on disk. The process of resolving the hard pagefault requires reading in the memory from disk while the process is interrupted and blocked from execution.
 
NOTE: some processes were hit by hard pagefaults. If these were programs producing audio, they are likely to interrupt the audio stream resulting in dropouts, clicks and pops. Check the Processes tab to see which programs were hit.
 
Process with highest pagefault count:                 chrome.exe
 
Total number of hard pagefaults                       273
Hard pagefault count of hardest hit process:          219
Number of processes hit:                              15
 
 
_________________________________________________________________________________________________________
 PER CPU DATA
_________________________________________________________________________________________________________
CPU 0 Interrupt cycle time (s):                       7,795394
CPU 0 ISR highest execution time (µs):                347,331858
CPU 0 ISR total execution time (s):                   1,541479
CPU 0 ISR count:                                      24188
CPU 0 DPC highest execution time (µs):                740,572271
CPU 0 DPC total execution time (s):                   2,681535
CPU 0 DPC count:                                      325801
_________________________________________________________________________________________________________
CPU 1 Interrupt cycle time (s):                       3,142450
CPU 1 ISR highest execution time (µs):                53,136799
CPU 1 ISR total execution time (s):                   0,001077
CPU 1 ISR count:                                      41
CPU 1 DPC highest execution time (µs):                367,399336
CPU 1 DPC total execution time (s):                   0,048742
CPU 1 DPC count:                                      2673
_________________________________________________________________________________________________________
CPU 2 Interrupt cycle time (s):                       1,834415
CPU 2 ISR highest execution time (µs):                0,0
CPU 2 ISR total execution time (s):                   0,0
CPU 2 ISR count:                                      0
CPU 2 DPC highest execution time (µs):                240,205015
CPU 2 DPC total execution time (s):                   0,030404
CPU 2 DPC count:                                      2484
_________________________________________________________________________________________________________
CPU 3 Interrupt cycle time (s):                       2,028448
CPU 3 ISR highest execution time (µs):                0,0
CPU 3 ISR total execution time (s):                   0,0
CPU 3 ISR count:                                      0
CPU 3 DPC highest execution time (µs):                360,020649
CPU 3 DPC total execution time (s):                   0,017097
CPU 3 DPC count:                                      1661
_________________________________________________________________________________________________________

  • 0

#7
drvirtual

drvirtual

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

By the way, yes I do have access to my router which is an Arris router from Spectrum.

 

I logged in to the router and if I did it right, 802.11n Specific Settings Channel Bandwidth it says channels available are 20 MHz or 20/40 MHz. It is currently set to 20 MHz. 

 

It also has 2.4 GHz and 5 GHz available. I use both depending on the device...

 

Any suggestions?

 

Thank you!


  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,938 posts
  • MVP

We want to change the channel number not the bandwidth.  Most routers are set to automatically choose the best channel number from the 11 channels on 2.4 to run on but that never seems to work.  They have a way to set the channel manually once you turn off the automatic channel selection.  (Your PC is using 2.4)

 

wifi.JPG

 

This is from a random Arris modem since I don't know your part number.  You can see the Channel option is currently set to Auto.  You can change it to a particular number by clicking on the down arrow next to Auto.

 

If you install

inssider you will see what channels are active in your area and can either pick a channel that has less interference or use the channel that inssider recommends. 

 

I know that Office came with the PC but unless you sign up to pay them each year it expires in a few months.  If you don't use Office then it should be removed.

 

As far as the Colorado DNS goes you can change it to a closer DNS.  Sometimes that will speed up things again.  See:

https://www.howtogee...with-namebench/

 

 


  • 0

#9
drvirtual

drvirtual

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

RKinner, 

 

Thanks again for all the info. I will have a thorough look once I´m back from the road. Appreciate all your help.

 

Best,

 

Andre


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP