Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 29-09-2017 Executado por patrick joão (29-09-2017 21:37:49) Executando a partir de C:\Users\patrick joão\Desktop Windows 8.1 Single Language (Update) (X64) (2014-01-11 21:48:22) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-3732197090-2549513608-2655625776-500 - Administrator - Disabled) Convidado (S-1-5-21-3732197090-2549513608-2655625776-501 - Limited - Disabled) outros (S-1-5-21-3732197090-2549513608-2655625776-1002 - Limited - Enabled) => C:\Users\outros patrick joão (S-1-5-21-3732197090-2549513608-2655625776-1001 - Administrator - Enabled) => C:\Users\patrick joão ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Reader XI (11.0.16) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.6.156 - Adobe Systems, Inc.) Akamai NetSession Interface (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 375.70 - NVIDIA Corporation) Hidden Atualizações da NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) BrowserDefender (HKLM-x32\...\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}) (Version: - Bit89 Inc) <==== ATENÇÃO Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine) Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd) DARK SOULS™ II: Scholar of the First Sin (HKLM\...\Steam App 335300) (Version: - FromSoftware, Inc) Galeria de Fotos (HKLM-x32\...\{F5248B7E-779A-4FA4-8134-D1933D8680FA}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Gerenciador de Downloads (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\a54e16f5d00985b6) (Version: 0.9.3.115 - Level Up! Gerenciador) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Happy Cloud Client (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\HappyCloud) (Version: 4.54 - Happy Cloud, Inc.) HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard) HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation) Intel® Hardware Accelerated Execution Manager (HKLM\...\{557D160E-2085-4D38-BDA3-1D5D3F74A3A4}) (Version: 6.0.4 - Intel Corporation) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.0.2.49 - IObit) Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation) Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation) Jogos Level Up (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\6d7bdf9c3c2a31f9) (Version: 0.9.4.1 - Level Up) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SkyDrive (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2017 (HKLM-x32\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.5.30308.1 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility) Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC) Movie Maker (HKLM-x32\...\{C32D87E1-6310-4CD5-8D6D-865AFE0E9B4E}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Mozilla Firefox 54.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 pt-BR)) (Version: 54.0.1 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Nero 12 Essentials (HKLM-x32\...\{E46DFAD0-3A6B-46DE-BBC3-F14F0CF71A7E}) (Version: 12.0.01000 - Nero AG) Nero 7 Ultra Edition (HKLM-x32\...\{C6115A28-F277-4E82-B067-84D28BF21046}) (Version: 7.03.1357 - Nero AG) NVIDIA Driver de áudio HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Driver de controle do 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Driver de gráficos 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation) NVIDIA Driver do 3D Vision 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.70 - NVIDIA Corporation) NVIDIA Software do sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) Pacote de Compatibilidade para o sistema Office 2007 (HKLM-x32\...\{90120000-0020-0416-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation) Painel de controle da NVIDIA 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 375.70 - NVIDIA Corporation) Hidden Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios) Pokémon Trading Card Game Online (HKLM-x32\...\{32E002D5-D6C1-487B-94FA-E1F7B38FF324}) (Version: 2.46.0 - The Pokémon Company International) Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0002 - Nero AG) Hidden Project64 version 2.3.0.210 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.0.210 - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.1.12972.141 - raidcall.com.br) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.) Revo Uninstaller Pro 3.1.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.8 - VS Revo Group, Ltd.) RRPG Firecast (HKLM-x32\...\{EB4C3686-A52C-4F40-9D53-F8571CC5FD5D}_is1) (Version: 7 - AlyssonRPG) RuneScape Launcher 1.2.5 (HKLM-x32\...\{BB1810FD-EB25-4A9D-ADDD-3543190D429A}) (Version: 1.2.5 - Jagex Ltd) RuneScape Launcher 2.2.2 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.2 - Jagex Ltd) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Stardew Valley (HKLM\...\Steam App 413150) (Version: - ConcernedApe) Stardew Valley Brasil (HKLM-x32\...\{45435418-8C1A-47E2-A5C5-7C918C8EA7E5}_is1) (Version: 0.107.2 - draivin) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Tales of Zestiria (HKLM\...\Steam App 351970) (Version: - BANDAI NAMCO Studio Inc.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) Twin USB Vibration Gamepad (HKLM-x32\...\{1BBDD6C0-ED6F-43C3-8A9C-84E3249A5615}) (Version: 2007.01.01 - ) UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 2.4.0.0 - Manuel Hoefs (Zottel)) Unity Web Player (HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS) Update for Japanese Microsoft IME Postal Code Dictionary (HKLM-x32\...\{15015752-9990-4516-A2B1-93823281FB8E}) (Version: 15.0.1759 - Microsoft Corporation) Update for Japanese Microsoft IME Standard Dictionary (HKLM-x32\...\{E75B82FD-B6FD-4653-8685-F3A97BDFEA6E}) (Version: 15.0.2013 - Microsoft Corporation) Update for Japanese Microsoft IME Standard Extended Dictionary (HKLM-x32\...\{01E87699-A49D-413A-B75B-7C434FEF979C}) (Version: 15.0.2013 - Microsoft Corporation) Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{45AD9785-5503-4B26-981A-AF62A355ADF2}) (Version: - Microsoft) Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation) Warface (HKLM-x32\...\{094FAADD-5A39-4C64-911A-B4C9AD818484}_is1) (Version: 1.0.178.030 - Level Up! Games) Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation) WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) Wizard101 (HKLM-x32\...\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}) (Version: 1.0.0 - KingsIsle Entertainment, Inc.) ==================== Exame Personalizado CLSID (Whitelisted): ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll => Nenhum Arquivo CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3732197090-2549513608-2655625776-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\patrick joão\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\FileSyncApi64.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-11-08] (AVAST Software) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-11-08] (AVAST Software) ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG) ContextMenuHandlers1-x32: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit) ContextMenuHandlers1-x32: [Proc] -> {C7BB73F2-CAD9-4130-B233-FF1651FD0453} => C:\Users\patrick joão\AppData\Roaming\Macwebtoise\RtMenu64.dll -> Nenhum Arquivo ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-11-08] (AVAST Software) ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll [2017-08-03] () ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit) ContextMenuHandlers4: [Proc] -> {C7BB73F2-CAD9-4130-B233-FF1651FD0453} => C:\Users\patrick joão\AppData\Roaming\Macwebtoise\RtMenu64.dll -> Nenhum Arquivo ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll -> Nenhum Arquivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-27] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-10-25] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-11-08] (AVAST Software) ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit) ContextMenuHandlers6: [Proc] -> {C7BB73F2-CAD9-4130-B233-FF1651FD0453} => C:\Users\patrick joão\AppData\Roaming\Macwebtoise\RtMenu64.dll -> Nenhum Arquivo ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {02E88985-F77C-43FE-87D7-7244A42B24C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-23] (Google Inc.) Task: {05419AF4-5628-4BC3-A2E5-A590070EDC96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-23] (Adobe Systems Incorporated) Task: {0571617D-0745-463A-A5E6-B5810E1A5C14} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe Task: {0DFF5FE9-A69B-4EC7-96C5-C2F960D39E18} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATENÇÃO Task: {1567AAFC-BAA7-45A5-B444-136C5EDFB28B} - System32\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-5 => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-5.exe <==== ATENÇÃO Task: {199E2023-B524-451B-A62F-CFD0610D50F5} - System32\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-3 => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-3.exe <==== ATENÇÃO Task: {229EE47E-B072-4A55-BC92-623AA0A08168} - System32\Tasks\{27FC83EE-38C4-4040-A8EC-7F3311B7DDC2} => C:\Windows\system32\pcalua.exe [] () Task: {2849F13D-1A67-42E2-9B90-453F476166CF} - System32\Tasks\{C1E4F0DA-EDD4-4B78-B16F-EA802AC2A663} => C:\WINDOWS\system32\pcalua.exe [] () Task: {31AF36FA-DBAD-4CB0-A21A-5270C2A604CC} - System32\Tasks\Opera scheduled Autoupdate 1439147184 => C:\Users\outros\AppData\Local\Programs\Opera\launcher.exe Task: {366F1AAF-B855-40DD-B6BB-FBFBF417D8E4} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATENÇÃO Task: {3A2C5204-7694-421E-BE20-59B7B6AA0B8C} - System32\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-2 => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-2.exe <==== ATENÇÃO Task: {3E5F3878-865D-4B4A-94BA-20912649DBB7} - System32\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-6 => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-6.exe <==== ATENÇÃO Task: {446997C4-9E49-4800-A1B7-FD98312C9734} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {48456191-C72A-4D3A-B234-3FF03AC08D50} - System32\Tasks\Torntv V9.0-updater => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-updater.exe <==== ATENÇÃO Task: {5115954D-7FB1-470C-BA32-EF45E0374FFE} - System32\Tasks\{760A699A-BEE3-4DE1-BC69-2D5345F8A7D6} => C:\Windows\system32\pcalua.exe [] () Task: {647FA3AD-046A-4E81-A913-060B00ED5148} - System32\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-4 => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-4.exe <==== ATENÇÃO Task: {6550ED6E-F324-4BA3-AA4E-94D7669D7777} - System32\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-7 => C:\Program Files (x86)\MPlayerplus\MPlayerplus-nova.exe <==== ATENÇÃO Task: {6576F9DE-3459-4E8E-88E3-AEBFB48DDC2C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-08] (AVAST Software) Task: {65EFC672-EE1B-4F1E-A68F-2310D6B79F01} - System32\Tasks\BrowserDefendert => C:\Windows\system32\sc.exe [2014-11-08] () <==== ATENÇÃO Task: {68F13B54-849C-4101-8575-B010C2E24661} - System32\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-3 => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-3.exe <==== ATENÇÃO Task: {6B5E1528-6F80-486A-A1B8-30F4B43118E1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-03-02] (Microsoft Corporation) Task: {74E1E4A2-233D-4BAE-9909-88B1A15CD1F1} - \Torntv V9.0-chromeinstaller -> Nenhum Arquivo <==== ATENÇÃO Task: {7858CC45-DDAD-4B4A-874E-F8DED4AAE7B5} - \FF Watcher {BF6D65E5-A203-4925-82DC-C8F6FD699017} -> Nenhum Arquivo <==== ATENÇÃO Task: {7DDC9737-A505-44A1-9BBB-74B607F9587A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {7F0740A4-8D0A-42CB-B8B9-A478661A4646} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {7F0740A4-8D0A-42CB-B8B9-A478661A4646} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\WINDOWS\system32\GWX\GWXDetector.exe [2015-07-02] (Microsoft Corporation) Task: {8B5591D1-5DE5-4674-9681-42A01F577168} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {8B5591D1-5DE5-4674-9681-42A01F577168} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\WINDOWS\system32\GWX\GWXDetector.exe [2015-07-02] (Microsoft Corporation) Task: {8C6E35A9-8205-4B9A-B1B1-710CA4612822} - System32\Tasks\Norton Security Scan for patrick joão => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe Task: {8FD71AD6-D75F-4121-9C29-407A4E9B1EA9} - System32\Tasks\Torntv V9.0-firefoxinstaller => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-firefoxinstaller.exe <==== ATENÇÃO Task: {91C3C2E7-3ED7-47C1-B597-A6214C44F135} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] () Task: {93264FEA-A7DD-47F1-9BA7-345D311B0F8C} - System32\Tasks\RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATENÇÃO Task: {A1E2FFAF-E017-410D-8EB3-3FCEC860E734} - System32\Tasks\Torntv V9.0-enabler => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-enabler.exe <==== ATENÇÃO Task: {A32B626F-604C-43FD-A7A2-CE04923D9DCA} - System32\Tasks\{FD486C79-00F8-4732-A17D-310DA7EE2BB4} => C:\WINDOWS\system32\pcalua.exe [2014-10-28] (Microsoft Corporation) Task: {ADD92FF1-9A23-48FF-A4EC-2A3C5FE9E963} - System32\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-7 => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-7.exe <==== ATENÇÃO Task: {B68D6BBB-5576-48B6-B038-08E4B0A7790B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {C4911074-CEF3-4A4C-9AF9-265446A9315F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-23] (Google Inc.) Task: {C8CA17AD-292E-42FF-BC6A-CBEADB8D0737} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {C9A99E53-D6F0-4F24-B481-298C0E349B4A} - System32\Tasks\Torntv V9.0-codedownloader => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe <==== ATENÇÃO Task: {CCF854A7-C1F3-46AC-AEDA-B02CA20C6CE4} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] () Task: {CE7774E8-5E9C-47D2-99E7-F45A9EB1FB64} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATENÇÃO Task: {D2DD9A25-AC85-4A08-8A3E-2D4C43261294} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\SymErr.exe Task: {D362B07E-ED6C-466D-99DF-6F8B03FCEDE1} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\SymErr.exe Task: {D6E61B1F-9EA2-4F3B-9C9C-1F34332D0019} - System32\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-1-6 => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-1-6.exe <==== ATENÇÃO Task: {DFE42A13-DFF0-45FD-81B9-FC091BDAE3AD} - System32\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-5 => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-5.exe <==== ATENÇÃO Task: {EA80D57B-1A71-4EDD-90CA-F85077864A76} - System32\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-1-7 => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-1-7.exe <==== ATENÇÃO Task: {EBA3981F-821D-4A3E-AE82-CFAE192B2179} - System32\Tasks\{87A3E29E-1C07-456C-92B1-7DDF95E6EA5E} => C:\WINDOWS\system32\pcalua.exe [] () Task: {FD8CA8D6-55B0-489F-B416-0545AF33BFF7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-1-6.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-1-6.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-1-7.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-1-7.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-3.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-3.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-5.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-5.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-5_user.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-5.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-6.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-6.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\3c9a794a-44e0-4882-b060-f62430120cae-7.job => C:\Program Files (x86)\BrowserV16.07\3c9a794a-44e0-4882-b060-f62430120cae-7.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-2.job => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-2.exeǼ/mIran /BYxMwWzYg='MPlayerplus' /coTKHobdB=54246 /DZplfh='001359' /jAgokY='verticals-' /aqsCYInz='0' /QvowIm=DA0FA4D3576A42F789CE7CC0B9262DADIE /LdvCklKu=2c48bb493f9c9b155bd1a28d789faaaa /zMmvTh=1_34_05_12 /riwWGQWc=1400207430 /TcABGD=hxxp:/stats.clientstaticserv.com /tjOHk=hxxp:/errors.clientstaticserv.com /TMbDCIRQD=11111111-1111-1111-1111-110511421146 /dCPROoz=ch /sWlrClT /TWnVgGC /KqoIuK='hxxp:/update.clientstaticserv.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-3.job => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-3.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-4.job => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-4.exe͸/gxnMr /BYxMwWzYg='MPlayerplus' /OnCYBX C:\Program Files (x86)\MPlayerplus\54246.xpi' /coTKHobdB=54246 /DZplfh='001359' /jAgokY='verticals-' /aqsCYInz='0' /QvowIm=DA0FA4D3576A42F789CE7CC0B9262DADIE /LdvCklKu=2c48bb493f9c9b155bd1a28d789faaaa /zMmvTh=1_34_05_12 /GXJXhesx=1.34.5.12 /riwWGQWc=1400207430 /TcABGD=hxxp:/stats.clientstaticserv.com /tjOHk=hxxp:/errors.clientstaticserv.com /DRCRnNaYq=300 /uAgoIVWrU=a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com /rbDDiaRe=0.94 /PZoYRTVtd=aa9719e64232b4695ae9ca89cd7f2aa84ca1279dfbc0d44a897ef19301c922b68com54246 /JgtPO=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/54246.rdf /ofeZNuQd='MPlayerplus' /HZMMarMDh='MediaPlayerEnhance Extension' /JkYPH='Freeven' /dCPROoz=ch /TWnVgGC /TgEEmM /wsCYsgo /KqoIuK='hxxp:/update.clientstaticserv.com/ff_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-5.job => C:\Program Files (x86)\MPlayerplus\b831afd9-f083-41b9-9e89-e4a308fff6ee-5.exeȫ/sgcdrZs /BYxMwWzYg='MPlayerplus' /coTKHobdB=54246 /DZplfh='001359' /jAgokY='verticals-' /aqsCYInz='0' /QvowIm=DA0FA4D3576A42F789CE7CC0B9262DADIE /LdvCklKu=2c48bb493f9c9b155bd1a28d789faaaa /zMmvTh=1_34_05_12 /riwWGQWc=1400207430 /TcABGD=hxxp:/stats.clientstaticserv.com /tjOHk=hxxp:/errors.clientstaticserv.com /Tapnm=hxxp:/ipgeoapi.com/ /lGbhwLimb=hxxp:/update.clientstaticserv.com /NqrNpc=2 /sZgvie=hxxp:/logs.clientstaticserv.com /KqoIuK='hxxp:/update.clientstaticserv.com/updater_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\b831afd9-f083-41b9-9e89-e4a308fff6ee-7.job => C:\Program Files (x86)\MPlayerplus\MPlayerplus-nova.exeǶ/BYxMwWzYg='MPlayerplus' /coTKHobdB=54246 /DZplfh='001359' /jAgokY='verticals-' /aqsCYInz='0' /QvowIm=DA0FA4D3576A42F789CE7CC0B9262DADIE /LdvCklKu=2c48bb493f9c9b155bd1a28d789faaaa /zMmvTh=1_34_05_12 /GXJXhesx=1.34.5.12 /riwWGQWc=1400207430 /TcABGD=hxxp:/stats.clientstaticserv.com /tjOHk=hxxp:/errors.clientstaticserv.com /KQxGan=hxxp:/js.clientstaticserv.com /dCPROoz=ch /NLNIUrr /bxakhW='nova' /KqoIuK='hxxp:/update.clientstaticserv.com/novarun/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\EyYD2Icv3p8nDGonphE1.job => C:\Users\patrick joo\AppData\Roaming\EyYD2Icv3p8nDGonphE1.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\FF Watcher {BF6D65E5-A203-4925-82DC-C8F6FD699017}.job => C:\Program Files\Playzy\PrefHelper.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Norton Security Scan for patrick joão.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe Task: C:\WINDOWS\Tasks\OXuXcmDnUryvQraERDoHBaz.job => C:\Users\patrick joo\AppData\Roaming\OXuXcmDnUryvQraERDoHBaz.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Torntv V9.0-chromeinstaller.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-chromeinstaller.exe <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Torntv V9.0-codedownloader.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exeȮ/reinstallapp /runfrom=task /agentregpath='Torntv V9.0' /appid=51390 /srcid='001062' /subid='0' /zdata='0' /bic=DA0FA4D3576A42F789CE7CC0B9262DADIE /verifier=2c48bb493f9c9b155bd1a28d789faaaa /installerversion=1_34_3_6 /installerfullversion=1.34.3.6 /installationtime=1396119348 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /codedownloaddomain=hxxp:/cr.install-daddy.com /defbro=ch /allusers /autoupdateulr='hxxp:/update.srvstatsdata.com/ie_code_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Torntv V9.0-enabler.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-enabler.exeǾ/enablebho /agentregpath='Torntv V9.0' /appid=51390 /srcid='001062' /subid='0' /zdata='0' /bic=DA0FA4D3576A42F789CE7CC0B9262DADIE /verifier=2c48bb493f9c9b155bd1a28d789faaaa /installerversion=1_34_3_6 /installationtime=1396119348 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /bhoguid=11111111-1111-1111-1111-110511131190 /defbro=ch /allusers /autoupdateulr='hxxp:/update.srvstatsdata.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Torntv V9.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-firefoxinstaller.exeВ/installxpi /agentregpath='Torntv V9.0' /extensionfilepath C:\Program Files (x86)\Torntv V9.0\51390.xpi' /appid=51390 /srcid='001062' /subid='0' /zdata='0' /bic=DA0FA4D3576A42F789CE7CC0B9262DADIE /verifier=2c48bb493f9c9b155bd1a28d789faaaa /installerversion=1_34_3_6 /installerfullversion=1.34.3.6 /installationtime=1396119348 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=5a6bf058-b978-4b84-a2ec-6f5462cfccb2@10120365-d3c0-4ec9-8624-5fac2592d0df.com /extensionversion=0.94 /prefsbranch=a5a6bf058b9784b84a2ec6f5462cfccb210120365d3c04ec986245fac2592d0dfcom51390 /updateurl=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/51390.rdf /extensionname='Torntv V9.0' /extensiondesc='The must-have App extensions for Television fans! Watch free TV channels, live sports and more' /publishername='installdaddy' /defbro=ch /allusers /allprofiles /checkfflist /autoupdateulr='hxxp:/update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO Task: C:\WINDOWS\Tasks\Torntv V9.0-updater.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-updater.exeɑ/runupdater /agentregpath='Torntv V9.0' /appid=51390 /srcid='001062' /subid='0' /zdata='0' /bic=DA0FA4D3576A42F789CE7CC0B9262DADIE /verifier=2c48bb493f9c9b155bd1a28d789faaaa /installerversion=1_34_3_6 /installationtime=1396119348 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /geoserviceurl=hxxp:/ipgeoapi.com/ /updatejsondomain=hxxp:/update.srvstatsdata.com /updaterversion=2 /monetizationdomain=hxxp:/stats.mstatsserv.com /autoupdateulr='hxxp:/update.srvstatsdata.com/updater_agent_updates/{CAMP_ID}/update.jso <==== ATENÇÃO ==================== Atalhos & WMI ======================== (As entradas podem ser listadas para serem restauradas ou removidas.) ShortcutWithArgument: C:\Users\patrick joão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.top8844.com?oem=sv1&uid=S2A8V6P1_ST500DM002-1BD142&tm=1438440253 ShortcutWithArgument: C:\Users\patrick joão\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> www.top8844.com?oem=sv1&uid=S2A8V6P1_ST500DM002-1BD142&tm=1438440253 ShortcutWithArgument: C:\Users\patrick joão\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> www.top8844.com?oem=sv1&uid=S2A8V6P1_ST500DM002-1BD142&tm=1438440253 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.ddtbrasil.top/login.php ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> www.top8844.com?oem=sv1&uid=S2A8V6P1_ST500DM002-1BD142&tm=1438440253 ==================== Módulos Carregados (Whitelisted) ============== 2017-07-18 23:50 - 2017-07-18 23:50 - 003302400 _____ () C:\ProgramData\Windows\System32\Mswapi64.dll 2015-07-12 15:58 - 2015-06-12 07:58 - 000173848 _____ () C:\Users\patrick joão\AppData\Roaming\NetService\netservice.exe 2016-03-01 20:56 - 2016-06-14 22:14 - 000369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2015-12-25 03:07 - 2016-06-14 22:14 - 000289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-10-30 11:57 - 2016-06-14 22:14 - 001148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-03-01 20:56 - 2016-06-14 22:14 - 003613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-09-02 06:13 - 2016-09-02 06:13 - 000076152 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2015-12-17 16:14 - 2015-12-16 06:21 - 004845408 _____ () C:\Users\patrick joão\AppData\Roaming\WinNetSvc\WinNetSvc.exe 2016-03-19 15:45 - 2017-09-13 11:47 - 003879373 _____ () C:\Users\patrick joão\AppData\Roaming\WMPNetworkAcSvc\WMPNetworkAcSvc.exe 2014-11-08 12:07 - 2014-11-08 12:07 - 000388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll 2014-11-08 12:07 - 2014-11-08 12:07 - 005851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll 2016-10-30 11:57 - 2016-06-14 22:14 - 002667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-10-30 11:57 - 2016-06-14 22:14 - 001990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-10-30 11:57 - 2016-06-14 22:14 - 001842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-01-27 20:26 - 2016-06-14 22:14 - 000208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2014-05-01 11:13 - 2017-08-03 09:46 - 000598528 _____ () C:\Users\patrick joão\AppData\Local\MEGAsync\ShellExtX64.dll 2016-10-30 11:57 - 2016-06-14 22:14 - 000035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-10-30 11:57 - 2016-06-14 22:14 - 000921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2017-09-24 21:06 - 2017-09-09 20:44 - 001382416 _____ () C:\ProgramData\KingsIsle Entertainment\Wizard101\PatchClient\BankB\WizardLauncher.exe 2017-09-25 18:14 - 2017-09-21 04:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll 2017-09-25 18:14 - 2017-09-21 04:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll 2017-09-29 15:33 - 2017-09-29 15:33 - 005890424 _____ () C:\Program Files\AVAST Software\Avast\defs\17092902\algo.dll 2017-07-18 23:50 - 2017-07-18 23:50 - 002766336 _____ () C:\ProgramData\Windows\System32\Mswapi32.dll 2014-11-08 12:07 - 2014-11-08 12:07 - 004495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll 2017-09-29 21:07 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2017-09-29 21:07 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2017-09-29 21:07 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2014-04-07 11:31 - 2014-04-07 11:31 - 000172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll 2015-12-17 16:14 - 2015-11-28 06:45 - 000083456 _____ () C:\Users\patrick joão\AppData\Roaming\WinNetSvc\Interface.dll 2016-07-20 23:21 - 2016-07-20 23:21 - 000482304 _____ () C:\Users\patrick joão\AppData\Local\MEGAsync\libsodium.dll 2014-11-08 12:07 - 2014-11-08 12:07 - 038562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-09-29 21:07 - 2017-05-22 11:17 - 000899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll 2017-09-29 21:07 - 2017-05-23 18:57 - 000631584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll 2017-09-29 21:07 - 2017-05-22 11:16 - 000524064 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\sqlite3.dll 2017-09-29 21:07 - 2017-05-22 11:16 - 000130336 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\PluginHelper.dll 2017-09-24 21:06 - 2017-09-09 20:44 - 000077824 _____ () C:\ProgramData\KingsIsle Entertainment\Wizard101\PatchClient\BankB\zlib1.dll ==================== Alternate Data Streams (Whitelisted) ========= (Se uma entrada for incluída na fixlist, somente o ADS será removido.) AlternateDataStreams: C:\WINDOWS\Temp:$DATA [16] AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddreg64.sys:X5ZN8aGvT4 [686] AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10] AlternateDataStreams: C:\ProgramData\Temp:07BF512B [156] AlternateDataStreams: C:\ProgramData\Temp:373E1720 [126] AlternateDataStreams: C:\ProgramData\Temp:6BE50C2B [486] AlternateDataStreams: C:\ProgramData\Temp:862BDB1A [132] AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1 [112] AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10] AlternateDataStreams: C:\Users\Todos os Usuários\Temp:07BF512B [156] AlternateDataStreams: C:\Users\Todos os Usuários\Temp:373E1720 [126] AlternateDataStreams: C:\Users\Todos os Usuários\Temp:6BE50C2B [486] AlternateDataStreams: C:\Users\Todos os Usuários\Temp:862BDB1A [132] AlternateDataStreams: C:\Users\Todos os Usuários\Temp:D1B5B4F1 [112] ==================== Modo de Segurança (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAWFP => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service" ==================== Associação (Whitelisted) =============== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.) ==================== Internet Explorer confiável/restrito =============== (Se uma entrada for incluída na fixlist, será removida do Registro.) ==================== Hosts Conteúdo: =============================== (Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.) 2013-08-22 10:25 - 2015-03-12 23:14 - 000000822 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Outras Áreas ============================ (Atualmente não há nenhuma correção automática para esta seção.) HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\patrick joão\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.15.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: ) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Firewall do Windows está desabilitado. ==================== MSCONFIG/TASK MANAGER ítens desabilitados == MSCONFIG\Services: NAUpdate => 2 MSCONFIG\Services: NCO => 2 MSCONFIG\Services: Wajam Internet Enhancer Service => 2 HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Diebold - Warsaw" HKLM\...\StartupApproved\Run: => "3D BubbleSound" HKLM\...\StartupApproved\Run32: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "RaidCall" HKLM\...\StartupApproved\Run32: => "SweetIM" HKLM\...\StartupApproved\Run32: => "Aeria Ignite" HKLM\...\StartupApproved\Run32: => "ApnTBMon" HKLM\...\StartupApproved\Run32: => "mobilegeni daemon" HKLM\...\StartupApproved\Run32: => "VNT" HKLM\...\StartupApproved\Run32: => "EBY Start" HKLM\...\StartupApproved\Run32: => "Baidu PC Faster 4.0.0.0" HKLM\...\StartupApproved\Run32: => "TAForOE Loader" HKLM\...\StartupApproved\Run32: => "NBKeyScan" HKLM\...\StartupApproved\Run32: => "OLG Start" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "Win32" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "SDP" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "Avirnt" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "ChicaPasswordManager" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "Akamai NetSession Interface" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "EBY Start" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "spdetector3" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "Dxtory Update Checker 2.0" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "UpdateMyDrivers" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_4B15A2811A2161CAB76491F71BCAE1AB" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "gflauncher" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "OLG Start" HKU\S-1-5-21-3732197090-2549513608-2655625776-1001\...\StartupApproved\Run: => "EADM" ==================== Regras do Firewall (Whitelisted) =============== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) FirewallRules: [{A103BFC7-AE98-457A-A745-B4A678D6C1C5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{19EECE19-8F06-4B89-93C7-1C376910D44B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{5FAA89C6-38FE-4477-83EB-613450D9BE04}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{5BAFD500-6807-4C39-9ABC-3EADB40113C9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{0C4C5A1B-077F-4B43-86F1-35E01186319B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{A2710163-EBB5-4D26-B885-E9F6DAABA188}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{286758E6-98AB-4690-B339-A06AE8AB5549}] => (Allow) C:\Users\patrick joão\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{E3C25245-A1B1-40B9-AF71-23421ABDEA7A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{1E5BD0EB-1277-442F-AFCE-5B4045217CE4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{51F42D8E-4DF6-44F9-8A69-1E75622A2BF4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [UDP Query User{66493CD5-5573-4260-AC86-699932F9783E}C:\users\patrick joão\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\patrick joão\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{0AC907E4-E3C5-42CC-B4F1-A1635294187E}C:\users\patrick joão\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\patrick joão\appdata\local\akamai\netsession_win.exe FirewallRules: [{C4BE57B4-DA1A-409D-92A5-462E14954AE9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{84912E8F-729A-440F-8447-33717066F4C7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{2B91C663-A942-4EA6-BF37-F5A11B52AE5B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{F64D79F7-89EA-4D15-A31A-B85C73F14306}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{5884D4D2-18CC-4649-9FF6-98A3D6347D2E}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{0ACB3DF3-6DC4-4B99-9255-DA919D708635}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{C3B2A3DF-13CC-48A6-AFAC-585F4597B286}] => (Allow) C:\Program Files\HP\HP Deskjet 3510 series\Bin\DeviceSetup.exe FirewallRules: [{9AD256F2-DDBF-4674-BA29-C02EC5F82783}] => (Allow) C:\Program Files (x86)\Nero\KM\KwikMedia.exe FirewallRules: [{E222CA23-E028-40A3-A5F9-397F53A25C73}] => (Allow) C:\Program Files (x86)\Nero\KM\KwikMedia.exe FirewallRules: [{2EEAC4F1-E64D-490E-8D74-DA8597BE9654}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe FirewallRules: [{515B1EA5-CF8E-45E6-8C16-E96FA05D4C95}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe FirewallRules: [{5BE20878-E580-479E-BE20-E110D0C8FC7B}] => (Allow) LPort=1900 FirewallRules: [{6C8B1D27-ED69-4108-9EEB-C3243803FBA5}] => (Allow) LPort=2869 FirewallRules: [{BD836FB1-6693-4C27-A935-8AAFC59DE009}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{42CAB189-854C-419B-9A2D-367C548F6D05}] => (Allow) C:\Users\patrick joão\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{414434F4-534F-4F5E-8D89-8DB292AE75B6}] => (Allow) C:\Users\patrick joão\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4717779D-5902-4AB3-80EB-68CED39EB1AE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{10D57C76-9331-4577-BAA2-81CF09D9DCE9}C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{AB4D7522-A6CE-4EF2-B569-28EF81D08705}C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{3D640A2C-07CF-4D1A-B18A-8E86442A2501}C:\program files (x86)\raidcall\raidcall.exe] => (Allow) C:\program files (x86)\raidcall\raidcall.exe FirewallRules: [UDP Query User{3F8BEC0E-C246-4F36-80A5-8D4984BB4BCC}C:\program files (x86)\raidcall\raidcall.exe] => (Allow) C:\program files (x86)\raidcall\raidcall.exe FirewallRules: [TCP Query User{18F88BBD-BC6D-44A2-AB90-4E2447137980}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{662153E1-C55B-40AE-96D2-E417A16A83E8}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{FBDAD147-9B7F-4EE6-AD54-E73F9251C8F2}C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe FirewallRules: [UDP Query User{BB639C1E-A35B-4646-9D84-52B5BFFFF6B8}C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe FirewallRules: [TCP Query User{690DF0D8-9111-4F5B-82ED-F9381F099981}C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{B0A2B592-D544-45A7-8CED-66BBE55F85E9}C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{94FC2755-75BD-40D6-96C0-5AC005464A48}C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{2236FABC-8EF8-4449-A859-49DF6EBD952E}C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{C7969591-92A3-4248-8D66-A3326F9FCC3C}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{9965EA9E-ABAD-422E-8E69-D4AC713B7DB6}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [{7B95B912-9C4C-4BCC-9470-780332743436}] => (Allow) C:\Program Files\Ubisoft\WATCH_DOGS\bin\Watch_Dogs.exe FirewallRules: [{F937DEB4-9156-48EF-ACFA-E3F6FA713B4C}] => (Allow) C:\Program Files\Ubisoft\WATCH_DOGS\bin\Watch_Dogs.exe FirewallRules: [{71D6711C-002D-4FCC-877B-4E0326C25644}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{C16471F2-AAD1-4A36-9D01-7130129AF9D2}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [TCP Query User{E0443104-6D60-4FC2-8FA8-879403C997E9}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{A7CEACCB-8550-4E25-858E-049713073522}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{E496B6B2-F858-431E-91B5-42CD2498009D}] => (Allow) LPort=61798 FirewallRules: [{158670B8-D579-478F-A53A-22BF71791ABA}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{F7C30EF1-322F-4EC1-92AD-E2EEE4479BD1}C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{001E41BF-74A5-493D-9DAB-475FCD3B1932}C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\0od9vkoy.dlt\j1v0e3dk.c5m\leve..tion_4f84b7a5873ddfc9_0000.0009_025a6ac6eaeb9448\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{ABE2BFAF-4D78-4E8D-A338-733B641943DA}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{B831FC6D-AFED-44CD-9BC3-1797C124FA93}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{CF904879-043D-4276-A9BA-61F64D4FAF8C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{FE183ED8-9865-4CA8-9609-12BD77FCCD1A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{B3A58555-371F-41C8-AC54-C7C33875B399}C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe FirewallRules: [UDP Query User{4A3C8A9B-950B-458D-A5A0-BDD80047418D}C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe FirewallRules: [{42CCD767-9D2B-4AAA-942E-8FBA59E076FA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{5CCDAEB5-77EA-4253-A2BE-0837DB24A199}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [TCP Query User{0E4D1D35-25B6-4ED3-A6CF-680F22C91E6F}C:\level up\forsaken\patcher.exe] => (Allow) C:\level up\forsaken\patcher.exe FirewallRules: [UDP Query User{C4D71FA3-2486-46D4-B94B-9D4EEDAA0BDD}C:\level up\forsaken\patcher.exe] => (Allow) C:\level up\forsaken\patcher.exe FirewallRules: [{55728CCE-16AB-4EAE-A70E-5D7C6A6AF91B}] => (Allow) C:\Users\patrick joão\Desktop\aurakingdom_pt_downloader.rar.exe FirewallRules: [{F07C9EDA-2F93-4141-8762-110FCC547579}] => (Allow) C:\Users\patrick joão\Desktop\aurakingdom_pt_downloader.rar.exe FirewallRules: [{58112691-BFB9-4207-919D-6305D464256F}] => (Allow) C:\Users\patrick joão\Desktop\aurakingdom_pt_downloader.rar.exe FirewallRules: [{549670D6-329F-4218-A54A-C76DB7A10A54}] => (Allow) C:\Users\patrick joão\Desktop\aurakingdom_pt_downloader.rar.exe FirewallRules: [{ED10724A-97EC-4FCC-9E6D-E46D15E17FF8}] => (Allow) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe FirewallRules: [{98FA4513-EC62-4B3D-AC47-153758009FF9}] => (Allow) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe FirewallRules: [{3138E08A-9857-49DA-94AB-2F5DAD5DF294}] => (Allow) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe FirewallRules: [{358148C8-8B67-48BC-8DED-A0F83F7F88A0}] => (Allow) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe FirewallRules: [{3EA4E2AE-2E71-4F1E-BF27-A23E2BF3E90E}] => (Allow) C:\AeriaGames\AuraKingdom-PT\game.bin FirewallRules: [{0B10712A-4CC3-4815-9575-6061406170B2}] => (Allow) C:\AeriaGames\AuraKingdom-PT\game.bin FirewallRules: [TCP Query User{6DF1ECC8-DD3C-46F1-A281-59EF07508E0C}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{025B8F68-F7E5-4DE3-85F2-59250D17CC31}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [{B3ECCCDA-F279-4EC7-874D-F9949061EF76}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe FirewallRules: [TCP Query User{FE4B3716-2751-4886-A0B6-B6AF3C939A35}C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe FirewallRules: [UDP Query User{7F0C01F0-8D39-47C5-AAE5-464259DA5C7C}C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe FirewallRules: [{B7CB7AB4-FDFE-474D-800D-CA2191742F7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{AF82455D-58AC-44C8-8DC2-69B0EF7A79BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [TCP Query User{F3ACF537-6125-4073-B1BD-FE60128A8C57}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe FirewallRules: [UDP Query User{2442FA5C-4E0E-49A2-A919-97BD66132841}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe FirewallRules: [{E2ADBE2E-F01F-46EE-8083-F4F189A3B314}] => (Allow) C:\Users\patrick joão\jagexcache\jagexlauncher\bin\JagexLauncher.exe FirewallRules: [{DC654C16-0E01-46FB-BCE7-A358288751E4}] => (Allow) C:\Users\patrick joão\jagexcache\jagexlauncher\bin\JagexLauncher.exe FirewallRules: [{ED4A7790-CC0B-4A16-A8A5-A838CBE4FBC1}] => (Allow) C:\Users\patrick joão\jagexcache\jagexlauncher\bin\JagexLauncher.exe FirewallRules: [{F25CF037-AB32-4845-A4A4-A759E339D021}] => (Allow) C:\Users\patrick joão\jagexcache\jagexlauncher\bin\JagexLauncher.exe FirewallRules: [{08235B74-852C-438B-94C8-EC761DB0AB5E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8CFF0C2D-5FCE-441D-89D7-7C3AAFB1F3FB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{87FCD1BE-1ABF-4F18-8A23-50AADE1EE5E4}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{262F925D-E14E-44CB-A186-9C9845EDB669}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [TCP Query User{A4E67E1C-D64B-4EE0-A6FB-462FAA9BCAF4}C:\program files (x86)\entertainment gunz 2014\theduel.exe] => (Allow) C:\program files (x86)\entertainment gunz 2014\theduel.exe FirewallRules: [UDP Query User{4D0526EE-8E3D-4E26-99C9-9D871E259B7F}C:\program files (x86)\entertainment gunz 2014\theduel.exe] => (Allow) C:\program files (x86)\entertainment gunz 2014\theduel.exe FirewallRules: [{E11ADA5A-9298-4901-93E6-133228D0C11A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{105D054C-6A5C-4D25-803D-5601AED0F026}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{EA75EEE7-6B0D-4F29-9A3F-2FC3D3440A57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{8A1C830B-A124-434E-A933-75DF00DE34EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{68EB1D17-1B76-4314-B059-2D7B3D24F220}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{F9105CF5-917B-41B9-82A0-5A60DF1A6A70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{9D986C80-6C94-4DD3-B522-83B356C4D36B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{E38B75F1-F5BF-40F0-80B3-1209FCDB73CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{7DCF4454-E3B9-4A5D-AC1B-2F0F740EA861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{742327E1-7226-42B7-9992-5447EC66155D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{0DA33349-61E6-475F-9D33-0E996809E42C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{5F0D6B9B-798E-45F2-837B-48BC66132FAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{D0502CE3-7E5C-45A5-972D-0D0F95AE5F23}] => (Allow) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe FirewallRules: [TCP Query User{BBB43E29-5ABA-4FE9-8CB6-81DCEB6056B9}C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe FirewallRules: [UDP Query User{54C90A39-324D-4091-951E-00A185EE1DE4}C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe FirewallRules: [{DDD1E547-E4C8-4A41-9075-274A02A43BAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{3FA2A57A-3682-4D35-90F8-6B296113A501}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{1ABB1144-AB89-40E3-8009-1191F6DBEDAE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{64F57CD2-BDA6-488A-80BF-B0074423D8B8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F2EB0600-F320-4FC5-BC74-4598DD8510DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{6E7B2FAD-3451-4E88-AF69-7D211B236102}C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{18EECD4B-0D8C-4515-9865-399A9685B60A}C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_b7445b2a18252fba\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [TCP Query User{53584140-88A4-4AFD-BE16-06BCB9E9122A}C:\level up\smite\binaries\win32\smite.exe] => (Allow) C:\level up\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{DB304B96-7F86-4C97-A4E6-4689C7F14B4D}C:\level up\smite\binaries\win32\smite.exe] => (Allow) C:\level up\smite\binaries\win32\smite.exe FirewallRules: [TCP Query User{718E7FA6-5FA9-4067-8E34-7C9B815A939A}C:\neople\dfo\dfo.exe] => (Allow) C:\neople\dfo\dfo.exe FirewallRules: [UDP Query User{69939E44-4B52-42B6-BF76-67FB4A22F557}C:\neople\dfo\dfo.exe] => (Allow) C:\neople\dfo\dfo.exe FirewallRules: [{E7C5E420-F151-422A-B188-EAE384BCCB91}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{6C8B78C9-B93F-4F9E-84D1-313E539B1908}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{4408C091-EE19-4DED-ADD9-2C3C23C33556}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [UDP Query User{EC4345B9-C37B-4C05-A4AB-5B596D5FF42B}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [TCP Query User{C2C50105-0512-4CE7-83C4-5DBB40C8B8D5}C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [UDP Query User{3B2D8BEC-8CF5-4C88-8E79-1805745CAC98}C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe] => (Allow) C:\users\patrick joão\appdata\local\apps\2.0\1coa355l.2gl\rkarj9nt.nlr\leve..tion_277729edc54ae6cf_0000.0009_71b34c0c2f322cf3\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe FirewallRules: [{9BD6087B-6601-4FA3-929E-D79EDB25FE50}] => (Allow) C:\Level Up\Elsword\data\x2.exe FirewallRules: [{F241E043-D434-4587-A7D3-32CBB099EF62}] => (Allow) C:\Level Up\Elsword\data\x2.exe FirewallRules: [TCP Query User{9673AA0E-47E3-4B58-881C-78C2F674A51E}C:\users\patrick joão\desktop\citra hd shaders and audio inmortalgames\citra-qt.exe.exe] => (Allow) C:\users\patrick joão\desktop\citra hd shaders and audio inmortalgames\citra-qt.exe.exe FirewallRules: [UDP Query User{D7DB5246-D52E-4FB4-8D7E-6AA451C6D103}C:\users\patrick joão\desktop\citra hd shaders and audio inmortalgames\citra-qt.exe.exe] => (Allow) C:\users\patrick joão\desktop\citra hd shaders and audio inmortalgames\citra-qt.exe.exe FirewallRules: [TCP Query User{5EDFC624-E094-4F93-87BE-231D177EE488}C:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe FirewallRules: [UDP Query User{2D1772B7-59F3-417A-AB9A-9FF7AC9B7A6D}C:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe FirewallRules: [TCP Query User{137E35D9-9F69-4016-BAFF-F6A916DA0832}C:\users\patrick joão\desktop\yu-gi-oh! pro\ygopro-1.033.7-v2-percy\ygopro_vs_ai_debug.exe] => (Allow) C:\users\patrick joão\desktop\yu-gi-oh! pro\ygopro-1.033.7-v2-percy\ygopro_vs_ai_debug.exe FirewallRules: [UDP Query User{F1EB7ACE-B0E0-49A2-8225-F028D09DE881}C:\users\patrick joão\desktop\yu-gi-oh! pro\ygopro-1.033.7-v2-percy\ygopro_vs_ai_debug.exe] => (Allow) C:\users\patrick joão\desktop\yu-gi-oh! pro\ygopro-1.033.7-v2-percy\ygopro_vs_ai_debug.exe FirewallRules: [{D032EA5B-5419-4CE8-8E93-3D0F8112056E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{87B6C14D-F3ED-4114-90B2-73C8AAD15E0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{943AE177-99EB-4932-8313-D9C62130D9E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{99645750-EA05-4A47-9CC1-BD5D9F8B4A09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{D5F433B5-A866-49D7-9910-139328150060}] => (Allow) C:\Program Files (x86)\Grand Chase Chaos\Main.exe FirewallRules: [{3DC1BFB7-249C-413D-BCC5-3C2D4475F41C}] => (Allow) C:\Program Files (x86)\Grand Chase Chaos\Main.exe FirewallRules: [TCP Query User{A9C65EFF-0168-41A9-AEC4-04D4A095302F}C:\program files (x86)\grand chase chaos\main.exe] => (Block) C:\program files (x86)\grand chase chaos\main.exe FirewallRules: [UDP Query User{A9757A44-E2DD-48D0-9676-F89301263C2C}C:\program files (x86)\grand chase chaos\main.exe] => (Block) C:\program files (x86)\grand chase chaos\main.exe FirewallRules: [{FACB8482-20E5-4619-A799-706C1F421A80}] => (Allow) C:\Program Files (x86)\Grand Chase History\main.exe FirewallRules: [{69962CD0-8520-4EF1-8D90-A783D8E0D13B}] => (Allow) C:\Program Files (x86)\Grand Chase History\main.exe FirewallRules: [{211A136A-884C-4FE5-A5B8-F94960E924E0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{F8E1420F-8A23-480E-A8BA-3A8EC0310DAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{70C35D1A-1725-4218-81B5-32D5FD2AF4F3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{C24BD884-0E8C-4677-B9BC-F9287DA5C2C9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{AA3E92A4-063F-4256-A24B-6DFC41287A8A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{CF44B4B4-660C-4AC3-9F23-E5140D113126}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{E524068B-AED7-4628-8D7B-990E5855A1CB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{7964467A-C8D8-45C0-B6D3-849929516828}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{805B28C8-D32D-420C-9F9F-30D05B0CB0EE}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{AAE2D653-1AB7-463B-9B43-0D47012C0498}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [TCP Query User{C5AD674E-0B52-4C3C-AE30-53A6D8C25A32}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [UDP Query User{90FB6781-AC95-443B-ABD5-62E9671C8B4B}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [{743CD4FF-4E71-4AA7-B8B8-4D3B01DC0D72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{2239CC98-D0AC-4528-B780-FAE0F7A1C8D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{8A61F9D6-561B-4B8F-B582-9DD448D37135}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{BB112C6A-F66F-472F-BABE-F83C59E303B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{782BDE02-B0C9-43AD-B4A6-92D6DE2BB334}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{E538D8C7-FDAC-4C81-8F4B-1CA9C93D7B63}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{C7298DCC-5353-4E9F-AA5F-152A213EF6C2}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe FirewallRules: [UDP Query User{7D681BAA-BE57-4C4A-B4A2-FF0E1B753B8F}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe FirewallRules: [TCP Query User{30992101-3B46-43A2-849B-DA9164368C47}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{66FBC49E-D8DE-4D7D-B9E2-795FB319EAE8}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [{14C03A56-F231-4E18-85A3-9DC836B27C3E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{EFBACE14-7E1C-4A69-8B51-35C3A1B26B75}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{0250BF84-7283-4345-B721-70328E6D009E}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe FirewallRules: [UDP Query User{33C4197A-EC32-4BA8-84A4-FE708ADB0A2F}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe FirewallRules: [TCP Query User{CC4FE6CF-D082-46A6-A49F-821A7FF7EE40}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [UDP Query User{B167098F-27DD-43D8-8EE4-BEAE02302608}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [{0A918EF4-1C10-4655-A0A0-C216F1611CEB}] => (Allow) LPort=64665 FirewallRules: [{2D3B68B5-487D-4A1D-A2B0-3CAC7254D850}] => (Allow) LPort=5000 FirewallRules: [{060DBAB3-D556-4115-989A-1214B7D41F81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{4895FA1A-CBF4-4F9D-AAB8-C52F5AE438E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{E8F841D6-E2B8-4A1E-946B-924352601787}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{9B956EFC-FABA-4AA8-90C0-31768E18C599}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [TCP Query User{3F521957-377D-48FE-97C9-0BFFB54666F7}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe FirewallRules: [UDP Query User{21B993C3-E9BC-42E7-8440-2B70C5C5C59D}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe FirewallRules: [TCP Query User{26AF32C0-5E6E-4C83-8A3C-8CF0B729A4F5}C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe FirewallRules: [UDP Query User{3E265259-FB95-4BD5-9E60-6EC048E542E4}C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe FirewallRules: [TCP Query User{CCDEFD0A-9B21-4510-9BC4-20992B1A95B9}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{6C336CEB-EDA2-4324-95EB-6205F0EF307F}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{B84FF105-10CC-44C1-9589-7CD07EC05732}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe FirewallRules: [UDP Query User{57A61A48-102E-474A-B1B7-734C0BDAF215}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe FirewallRules: [{EF94A87D-AF4E-4CC0-98F8-1B2C501C3170}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{4E3CBBA9-AC42-4C97-BCF0-CD2AF7A56351}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [TCP Query User{4F250FBB-3DD0-465F-B717-BBAF56193087}C:\users\patrick joão\desktop\grand chase emotion\main.exe] => (Allow) C:\users\patrick joão\desktop\grand chase emotion\main.exe FirewallRules: [UDP Query User{279EFA54-DD7F-4B58-8EED-71DADF0EE938}C:\users\patrick joão\desktop\grand chase emotion\main.exe] => (Allow) C:\users\patrick joão\desktop\grand chase emotion\main.exe FirewallRules: [TCP Query User{9BCC3B04-BF06-47BC-86DD-125DC4B2064C}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [UDP Query User{2CF78862-3170-4DAD-AAF8-FE3AC918FE1A}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [{6D532B3F-CCA6-4CEF-AC9E-0DF8BCBFDE20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe FirewallRules: [{FAAB31BF-846A-4B78-9910-81CE53B25D5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe FirewallRules: [{21724F60-473A-4F9A-9792-65A4650B80AA}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe FirewallRules: [TCP Query User{0A0C4182-C380-412B-9830-6A773A573FD7}C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe FirewallRules: [UDP Query User{88D8E42B-AA1A-4669-B61A-2F51BD200CB0}C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe] => (Allow) C:\level up! games\warface\2b3f2740-f442-489f-a2cb-8f7153924698\c4671e0070fc31ea2c40e9a15d0dbdb4\aria2c.exe FirewallRules: [{778F4145-F17E-42FF-9265-BF81F1EF6CFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{1F91C948-F698-402C-B233-6637ADD844A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{2F09FEC9-3417-4966-BF60-5BEC89C87123}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Zestiria\Tales of Zestiria.exe FirewallRules: [{3D1A7EBF-D039-40B0-A77E-EB2101AC1F99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Zestiria\Tales of Zestiria.exe FirewallRules: [{24472E2C-1F15-4945-B150-4D026583C22B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [{A8E5AE6E-CE79-4EC3-90FD-6D411423BD5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [TCP Query User{DBAF145F-8662-4DD1-8DD3-98D5BCF65A2E}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe FirewallRules: [UDP Query User{018AD2E2-B544-4E5C-B849-C8364FFDA8B9}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe FirewallRules: [{C1CF225F-F0FD-49D7-A99A-4087B98C6A72}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{73B96048-CD03-4954-AEA2-A8AD0EA9F8DC}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Block) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe FirewallRules: [UDP Query User{BC9EFB24-1609-4734-898A-FBF1E265830B}C:\programdata\microsoft\network\dsq\network\sysnetwk.exe] => (Block) C:\programdata\microsoft\network\dsq\network\sysnetwk.exe ==================== Pontos de Restauração ========================= 19-05-2017 00:54:40 Installed Proteus 8 Professional 24-06-2017 20:01:52 DirectX instalado 25-06-2017 14:53:29 Intel® Driver Update Utility 16-07-2017 03:10:41 Windows Update 18-07-2017 00:09:38 Revo Uninstaller's restore point - Apple Software Update 18-07-2017 00:10:40 Revo Uninstaller's restore point - Apple Software Update 18-07-2017 00:16:33 Removed Nero 7 Ultra Edition. Available with Windows Installer version 1.2 and later. 18-07-2017 00:28:34 Installed Twin USB Vibration Gamepad 19-07-2017 18:42:20 Removed MSXML 4.0 SP3 Parser 19-07-2017 18:45:24 Removido Realtek High Definition Audio Driver 19-07-2017 18:47:24 Removido Motorola Device Manager 19-07-2017 20:19:15 Operação de restauração 20-07-2017 00:47:24 avast! antivirus system restore point 03-08-2017 10:04:20 Revo Uninstaller's restore point - Pokémon Trading Card Game Online 19-08-2017 15:03:15 Installed Blade & Soul 07-09-2017 21:32:21 Removed Blade & Soul 14-09-2017 21:26:20 Removed Blade & Soul 24-09-2017 21:05:21 Installed Wizard101 29-09-2017 19:54:05 Installed Should I Remove It 29-09-2017 21:34:33 Removed Blade & Soul ==================== Dispositivos Apresentando Falhas No Gerenciador ============= ==================== Erros no Log de eventos: ========================= Erros em Aplicativos: ================== Error: (09/29/2017 09:34:33 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erro do serviço de cópias de sombra de volume: erro inesperado ao chamar a rotina ConvertStringSidToSid(S-1-5-21-3732197090-2549513608-2655625776-1006.bak). hr = 0x80070539, A estrutura da identificação de segurança é inválida. . Operação: Evento OnIdentify Obtendo Dados do Gravador Contexto: Contexto de Execução: Shadow Copy Optimization Writer Id de Classe de Gravador: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nome do Gravador: Shadow Copy Optimization Writer ID de Instância de Gravador: {4e639750-81bd-4cba-8cc7-76a1394725fb} Error: (09/29/2017 08:57:36 PM) (Source: MsiInstaller) (EventID: 10005) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 25001. Os aplicativos a seguir deverão estar fechados para continuar a desinstalação: Google Chrome Error: (09/29/2017 08:49:27 PM) (Source: MsiInstaller) (EventID: 11316) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 1316. A conta especificada já existe. Error: (09/29/2017 08:49:08 PM) (Source: MsiInstaller) (EventID: 10005) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 25001. Os aplicativos a seguir deverão estar fechados para continuar a desinstalação: Google Chrome Error: (09/29/2017 08:26:29 PM) (Source: MsiInstaller) (EventID: 11316) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 1316. A conta especificada já existe. Error: (09/29/2017 08:26:13 PM) (Source: MsiInstaller) (EventID: 11316) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 1316. A conta especificada já existe. Error: (09/29/2017 08:02:21 PM) (Source: MsiInstaller) (EventID: 11316) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 1316. A conta especificada já existe. Error: (09/29/2017 08:01:44 PM) (Source: MsiInstaller) (EventID: 11316) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 1316. A conta especificada já existe. Error: (09/29/2017 07:59:55 PM) (Source: MsiInstaller) (EventID: 11316) (User: PC) Description: Produto: KMP Media Toolbar -- Erro 1316. A conta especificada já existe. Error: (09/29/2017 07:56:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome do aplicativo com falha: ShouldIRemoveIt.exe, versão: 1.0.4.36591, carimbo de data/hora: 0x5524822e Nome do módulo com falha: LSASRV.dll, versão: 6.3.9600.18154, carimbo de data/hora: 0x56607837 Código de exceção: 0xc0000005 Deslocamento da falha: 0x000000000004c74a ID do processo com falha: 0x17c8 Hora de início do aplicativo com falha: 0x01d3397613449727 Caminho do aplicativo com falha: C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exe Caminho do módulo com falha: C:\WINDOWS\SYSTEM32\LSASRV.dll ID do Relatório: 7f106f71-a569-11e7-8317-eca86bb2c9ad Nome completo do pacote com falha: ID do aplicativo relativo ao pacote com falha: Erros de Sistema: ============= Error: (09/29/2017 09:19:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Util Clock Hand devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/29/2017 09:18:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/29/2017 09:17:26 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT) Description: As configurações de permissão específico do aplicativo não concedem permissão Local Ativação para o aplicativo de Servidor COM com CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} e APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} ao usuário AUTORIDADE NT\SISTEMA SID (S-1-5-18) do endereço LocalHost (Usando LRPC) que está sendo executado no contêiner de aplicativos Não Disponível SID (Não Disponível). Essa permissão de segurança pode ser modificada com a ferramenta administrativa Serviços de Componentes. Error: (09/28/2017 07:32:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Util Clock Hand devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/28/2017 07:31:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/28/2017 07:31:48 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: O desligamento do sistema que ocorreu às 18:24:11 do dia ‎28/‎09/‎2017 não era esperado. Error: (09/26/2017 10:45:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Net.Tcp Service Handler foi finalizado inesperadamente. Isto aconteceu 2 vez(es). A seguinte ação corretiva será tomada em 10000 milissegundos: Executar o programa de recuperação configurado. Error: (09/26/2017 10:34:32 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço Net.Tcp Service Handler foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 60000 milissegundos: Reiniciar o serviço. Error: (09/26/2017 10:24:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Util Clock Hand devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. Error: (09/26/2017 10:24:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Não foi possível iniciar o serviço Gbp Service devido ao seguinte erro: O sistema não pode encontrar o arquivo especificado. CodeIntegrity: =================================== Date: 2016-04-30 08:55:55.194 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-03 22:35:10.014 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\GbPlugin\gbpinj.dll that did not meet the Microsoft signing level requirements. ==================== Informações da Memória =========================== Processador: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz Percentagem de memória em uso: 49% RAM física total: 8017.07 MB RAM física disponível: 4082.29 MB Virtual Total: 10193.07 MB Virtual disponível: 5812.7 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:455.9 GB) (Free:61.02 GB) NTFS ==================== MBR & Tabela de Partições ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 41288F02) Partition: GPT. ==================== Fim de Addition.txt ============================