Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão: 15.11.2018
Executado por Tech Cell (20-11-2018 18:47:54)
Executando a partir de C:\Users\Tech Cell\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-05-12 11:27:21)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-17454397-3655801466-2647378754-500 - Administrator - Disabled)
Convidado (S-1-5-21-17454397-3655801466-2647378754-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-17454397-3655801466-2647378754-1002 - Limited - Enabled)
Tech Cell (S-1-5-21-17454397-3655801466-2647378754-1000 - Administrator - Enabled) => C:\Users\Tech Cell
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-17454397-3655801466-2647378754-1000\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
3uTools (HKLM-x32\...\3uTools) (Version: 2.29.002 - ShangHai ZhangZheng Network Technology Co., Ltd.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
ActivePerl 5.12.2 Build 1202 (HKLM-x32\...\{EC610A5F-4957-4CA3-8825-D91D5D492086}) (Version: 5.12.1202 - ActiveState)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Atualizações da NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByeiCloud v4.4.1 By Technical Computer Solutions (HKLM-x32\...\{516FEF5B-834B-42B5-839E-5F57C038BC8A}_is1) (Version: 4.4.1 - Technical Computer Solutions)
Camtasia Studio 8 (HKLM-x32\...\{904AC0F0-F69E-467E-A719-B083940F608A}) (Version: 8.5.2.1999 - TechSmith Corporation)
CAT (HKLM-x32\...\{22DC24EB-1A44-4637-920D-F59AFD5E90F8}) (Version: 1.0.0 - Willian C Santana)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Emergency Download Driver (HKLM-x32\...\{9ED72246-E35D-4B03-8369-605E82465A29}) (Version: 1.1.5.1416 - Nokia)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.22.3 - Androxyde)
FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time)
Fuse Drivers x64 (HKLM-x32\...\{06904B2B-5000-4C58-9471-256BA1A303BE}) (Version: 11.34.1 - Nokia)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{E0303B6A-C675-4102-95DA-C013625BFA99}) (Version: 1.00.00001 - Rockstar Games)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - Nome de sua empresa:)
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.10.0 - Intel)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
iTunes (HKLM\...\{932473A4-0F6C-41A1-B62D-F2C9A4F09EE3}) (Version: 12.9.1.4 - Apple Inc.)
Java(TM) SE Development Kit 11.0.1 (64-bit) (HKLM\...\{F4039C0F-E4C1-5905-9E7D-DDA8EDE365BC}) (Version: 11.0.1.0 - Oracle Corporation)
LG Mobile Driver (HKLM-x32\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.2.0 - LG Electronics)
Lumia UEFI Blue Driver (HKLM-x32\...\{5E80E23F-3BB2-4827-A703-EA7E180AA6A9}) (Version: 1.1.5.1416 - Nokia)
MariaDB 10.1 (HKLM-x32\...\{5B6218D8-6DD9-4FAA-9D42-33058BB2C962}) (Version: 10.1.19.0 - MariaDB Corporation Ab) Hidden
MariaDB 10.1 (HKLM-x32\...\MariaDB 10.1) (Version: 10.1.19.0 - MariaDB Corporation Ab)
Mediatek RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.39.173 - MediatekWiFi)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.11001.20108 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Mobistel Cynus F4 Drivers(x64) (HKLM-x32\...\{C3F57607-592D-458F-81AE-349FD05DFA74}) (Version: 1.00 - Mobistel)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mp3tag v2.90a (HKLM-x32\...\Mp3tag) (Version: 2.90a - Florian Heidenreich)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MultiSync Desktop versão 2.1 (HKLM-x32\...\{10063053-8B50-4C50-9986-A4945F4328A4}_is1) (Version: 2.1 - Multilaser)
NOKIA 3806 USB DRIVER Ver:1.5 (HKLM-x32\...\{6AE35C55-F02A-41EE-B694-8F2706FE4819}) (Version: 2.00.0000 - NOKIA)
Nokia Care Suite PST 5 (HKLM-x32\...\{6DD01BF0-18A3-4608-BBB1-AE6C956EDCC2}) (Version: 5.4.119.1432 - Nokia)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.1 - Duodian Technology Co. Ltd.)
NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Driver de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
OS Plus 5.0 - Cubo Sistemas (HKLM-x32\...\{2C0D9EE9-BCC5-4041-A9FA-EE67EFF9BE55}_is1) (Version: - Cubo Sistemas)
Pacote de Driver do Windows - Android (WUDFRd) WPD (04/07/2013 5.2.5326.4762) (HKLM\...\11A0B871BAD4BD9A57E59C3635218E2427AA2C62) (Version: 04/07/2013 5.2.5326.4762 - Android)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2013 7.0.0000.00001) (HKLM\...\DD35777ACC26D30A3585F9724356AF8111A6F38C) (Version: 08/27/2013 7.0.0000.00001 - Google, Inc.)
Pacote de Driver do Windows - libusb-win32 (libusb0) USB (01/18/2012 1.2.6.0) (HKLM\...\E7818806C41577F170D21B994A5D37A97B7FA478) (Version: 01/18/2012 1.2.6.0 - libusb-win32)
Pacote de Driver do Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Pacote de Driver do Windows - USB Devices (usbUDisc) USB (01/24/2014 1.0.0.1) (HKLM\...\B2A7D664285C0D269794E0F21D756D5138D1FB29) (Version: 01/24/2014 1.0.0.1 - USB Devices)
Painel de controle da NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{9590C850-8A55-43DB-A413-DFF6E5636570}) (Version: 10.30.0.0 - Nokia)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Python 2.7.15 (64-bit) (HKLM\...\{16CD92A4-0152-4CB7-8FD6-9788D3363617}) (Version: 2.7.15150 - Python Software Foundation)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SFT Dongle (HKLM\...\{5F6A2304-2D76-4F72-A378-40795CE9B48E}) (Version: 3.1.4 - Gsm_X_Team)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{49F7DD82-FC83-48BF-86C6-CFE6E1E233E1}) (Version: 7.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{1FA68E27-2951-42E8-9F57-1A7F6581B4FD}) (Version: 7.1 - Apple Inc.)
UltraISO Premium V9.65 (HKLM-x32\...\UltraISO_is1) (Version: - )
Uni-Android 7.01 (HKLM-x32\...\Uni-Android 7.01) (Version: 7.01 - www.uni-android.com)
USB Serial Port Driver (x64) (HKLM-x32\...\{53012BD2-D1A3-4530-9AE2-B0C503B5C1C2}) (Version: 2013.30.0.313 - Nokia)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.64 - VSO Software)
Wampserver64 3.1.4 (HKLM\...\{wampserver64}_is1) (Version: 3.1.4 - Dominique Ottello aka Otomatic)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM-x32\...\{C97989C1-551F-4F41-A069-2A49567FD36B}) (Version: 1.1.6.1416 - Nokia)
WinUSB Drivers ext (HKLM-x32\...\{A0B1E1BF-BEF5-4748-800B-E54ED9CDF8CE}) (Version: 1.1.10.1426 - Nokia)
Wise Program Uninstaller 2.2.5 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.2.5 - WiseCleaner.com, Inc.)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Nenhum Arquivo
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-03-18] ()
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Nenhum Arquivo
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Nenhum Arquivo
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Nenhum Arquivo
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {06D2CECE-9A42-440F-A589-CCDB15FB03ED} - System32\Tasks\AdobeGCInvoker-1.0-TechCell-PC-Tech Cell => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {0BDF67FC-9B4E-4F27-9864-DA9C59E7D01C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {10FE4F36-3758-40D0-B5A8-E0F6AD627AF9} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {169D78BD-8C22-47D4-98C4-C6C9FBABC58F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {18A2D21E-1AB1-4693-9FDA-FAC7FF614AA1} - System32\Tasks\{1A8BC1A4-63E3-4AE5-BA6C-615D4ABDCFD6} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {1BB5598D-A9B5-44E4-936A-C83296FE7911} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {313229F8-9990-448D-B06C-76633A989C76} - System32\Tasks\{556B973A-2053-4857-A080-C7B2E5EBAC0B} => C:\Windows\system32\pcalua.exe -a "D:\Havij Pro v1.16\Havij v1.16.exe" -d "D:\Havij Pro v1.16"
Task: {377773A8-588A-4B66-8898-A79D270ADD12} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-17] (Microsoft Corporation)
Task: {493AAD54-FD82-426F-97C0-9B0093D50B9F} - System32\Tasks\{9D42CCA1-BBDD-4067-AD17-CB8FCB995265} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe"
Task: {497233A8-592D-42DF-BCE7-99E15B102326} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {5A35297D-0592-413A-BCD7-B3CD74ECAD73} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-17] (Microsoft Corporation)
Task: {69D8CDB8-745F-4D57-85E6-10A77E6A29AC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-02] (Microsoft Corporation)
Task: {6B5E1E45-2E08-46D6-BD9B-0BCFBCB5D470} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-15] (Google Inc.)
Task: {6D2EFD7A-B652-4D65-B639-1340D2E547FA} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Users\TECHCE~1\AppData\Local\Temp\is-45K87.tmp\corefixer.exe <==== ATENÇÃO
Task: {6DD06EE9-0786-479E-B81B-FF2931E8DE36} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {761B0F3C-333C-42A3-BD35-63B4EBF20743} - System32\Tasks\svchost => c:\windows\resources\svchost.exe [2018-11-18] () <==== ATENÇÃO
Task: {7F774ADF-7DDF-4977-B94C-26A539F366B9} - System32\Tasks\{6189B7FC-E7EC-2DC4-EF2C-E13D12C6D1E7} => C:\Program Files (x86)\enGYEaY.exe <==== ATENÇÃO
Task: {8F60E03B-0926-487D-B9AE-C3F0AD8B077E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {936DEB3E-D25C-4CB0-932E-91FC28D60170} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-02] (Microsoft Corporation)
Task: {A2EA9FBB-8537-4504-B387-31CD408C2CE4} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {BBDE2E6A-D578-48B4-83DF-9180493C1F62} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {C6927E2B-54C1-47DB-A186-5B3C2D05C77E} - System32\Tasks\{C92056A5-9CCB-4F46-B204-F99D0EC61643} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\foldershare\uninstaller.exe" -d "C:\Program Files (x86)\foldershare"
Task: {DE9CF451-CF12-4E2E-A51C-174A64D10CF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-15] (Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\Users\Tech Cell\Desktop\Telecine Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hdgbobgiklhnjkoldkgdidinjfemhdel
ShortcutWithArgument: C:\Users\Tech Cell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Telecine Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hdgbobgiklhnjkoldkgdidinjfemhdel
==================== Módulos Carregados (Whitelisted) ==============
2018-05-15 22:28 - 2016-11-14 09:15 - 000135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-10-21 02:17 - 2018-10-21 02:17 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-10-21 02:17 - 2018-10-21 02:17 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-02-27 21:08 - 2018-02-27 21:08 - 000614856 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2018-03-18 21:40 - 2018-03-18 21:40 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2016-11-04 12:01 - 2016-11-04 12:01 - 011762120 _____ () C:\Program Files (x86)\MariaDB10.1\bin\mysqld.exe
2018-05-15 23:31 - 2016-11-14 10:30 - 000367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 003611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2013-10-17 15:27 - 2013-10-17 15:27 - 000166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2018-05-15 23:31 - 2016-11-14 10:30 - 001988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 002665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 001840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2018-11-15 13:38 - 2018-11-08 20:14 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libglesv2.dll
2018-11-15 13:38 - 2018-11-08 20:14 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libegl.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-16 20:34 - 2015-03-16 20:34 - 000151552 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Locale\pt_br\PDFMaker\PDFMOfficeAddin.PTB
2018-05-21 16:51 - 2018-10-19 08:00 - 000304720 _____ () C:\Program Files (x86)\Microsoft Office\Root\Office16\IEAWSDC.DLL
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2018-08-02 10:01 - 2018-11-10 10:54 - 004194586 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 mydownloaddomain.com
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-17454397-3655801466-2647378754-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tech Cell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
Se uma entrada for incluída na fixlist, será removida.
MSCONFIG\Services: AIPS => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\startupfolder: C:^Users^Tech Cell^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Enviar para o OneNote.lnk => C:\Windows\pss\Enviar para o OneNote.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Tech Cell^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Shortcut to Primary output from Start (Active).lnk => C:\Windows\pss\Shortcut to Primary output from Start (Active).lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Microsoft System Diagnostic.exe => C:\ProgramData\Microsoft System Diagnostic.exe
MSCONFIG\startupreg: Nox => D:\Program Files\Nox\bin\Nox.exe
MSCONFIG\startupreg: PSwitch => C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
MSCONFIG\startupreg: wermgr => C:\ProgramData\Microsoft\Windows\WER\wermgr.exe
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{224A7F2D-E3E4-49B9-A7C4-E1E6C717055E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{83B9A51F-D4B5-4D84-A83A-9B70F43F1997}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DAAD5545-4163-4ADC-BC23-85B1700224D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FA00BE1A-69A7-4F25-8AF5-FBCD3978B80C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{DE3A40EA-1999-4332-B452-865690D0D201}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FE7A0E7E-62C7-43CB-B1FC-85C9D722FCEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2BDC6F4-C1B3-4EF7-965D-7F07A087C0AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F327935C-2516-4A49-BC7C-FAEFDA1C423C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{B9D6BCE1-E2F7-455A-B11D-82A8C1B2F8D2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{EC5F218D-C805-4203-A17A-FE095499369E}] => (Allow) LPort=1542
FirewallRules: [{232D45A4-8711-4B34-B2B9-266A7350B415}] => (Allow) LPort=1542
FirewallRules: [{239A3D09-A778-4796-AD3D-7A480B779A34}] => (Allow) LPort=53
FirewallRules: [{C2967515-0F90-462F-9BED-7EC79C585FBF}] => (Allow) LPort=53
FirewallRules: [{E23DF820-BCE3-4BF2-8A52-543A09890543}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{4FEC858E-1A88-499B-83FC-85C326858909}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{583269A7-0788-4023-BD9B-C3E211A59771}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{B31C3684-4C00-4CB1-A6FC-56E0DED17706}] => (Allow) LPort=1688
FirewallRules: [TCP Query User{CF16EB98-F421-4DE3-AC51-DC0D4E3C0196}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [UDP Query User{E160B08E-7F0C-4077-A21E-D6B68769304A}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [{DA24D647-5DD6-44A0-A2FB-1B82E8BB9E3F}] => (Allow) LPort=7359
FirewallRules: [{0E194C9E-DE33-40C8-BE16-5380164F8B6C}] => (Allow) LPort=8096
FirewallRules: [{10E08C70-71AD-40A9-A04E-ED40B96CC9DD}] => (Allow) LPort=8920
FirewallRules: [{27A19011-D622-4AEF-AAC6-6E3DD3CF7791}] => (Allow) LPort=8317
FirewallRules: [TCP Query User{A6957FFE-89EF-4202-8D8E-C7C838EDD33C}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{587502B0-0B15-4E3F-B1E5-4206E319C769}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{F381E3D3-0460-476A-99DD-D959E61D6BB5}C:\program files (x86)\common files\nokia\fuse\fuse.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuse.exe
FirewallRules: [UDP Query User{D9FB7E6F-6653-431E-8992-F84BA51A572F}C:\program files (x86)\common files\nokia\fuse\fuse.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuse.exe
FirewallRules: [TCP Query User{76DBA0C1-A278-427F-AA83-184E39FF117B}C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe
FirewallRules: [UDP Query User{7B71FE7F-3923-47C3-ACD7-5E1EF4EDA7D7}C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe
FirewallRules: [TCP Query User{20BA2FCC-292B-4B37-BDD7-BB1E74BD84E6}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{B806A9A2-9F5B-4114-B322-5F0F4F0CA8F3}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{B4F6ACC3-2551-4426-A302-163EE2A665DA}] => (Allow) C:\Users\Tech Cell\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{91783EE9-4BD1-4240-9E6E-8BF9764E3CE6}] => (Allow) C:\Users\Tech Cell\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{F75F3B0A-F435-49BA-9226-0517FD153924}C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe
FirewallRules: [UDP Query User{E3B90B93-0F72-48BC-8B44-FA837A7B34BA}C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe
FirewallRules: [{9299C3C7-0414-4EB1-A68E-37F6FDF0C2D4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{E4ED47BA-4EFD-4886-8CAB-F7394D927249}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [TCP Query User{E51D2B39-96C6-45E8-8518-F32EDA57A03C}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{D0150C75-8216-416F-85DF-728C03053557}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{1A4F181C-F727-4B8D-AF2D-B946D0F8E1DC}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{959EE1CE-5203-4475-8D8C-67FAE078FEA1}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{DF2D1568-8E80-4DF3-97F4-52E21664DFF4}] => (Allow) C:\Program Files (x86)\MariaDB10.1\bin\mysqld.exe
FirewallRules: [{6C0AA5C6-60C3-4CDB-AFEC-A0E1DFF8C784}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7596551A-72C4-4AB1-AF63-367FC826B8BE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{45BCA901-7376-4B8E-B884-41D5678F5E62}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{2769E5C2-A890-4F59-AF50-1C4D927A2B75}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{823D82C7-DFFC-46B3-8F9E-1D9F24FBEF68}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{C558E04E-836E-48E6-A34B-3EB64A8B7CC4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{4AD2EF96-DCA3-4672-B7C1-32942857529E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D9268D82-48C0-400B-9CC9-81EAF69DC5BE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{92749C83-D834-4E0B-863B-713ADF923287}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{22C28E13-7526-4AF0-A87A-60545A0010E9}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7F72EB47-7F42-41E9-B73C-6F6E6131847A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1C29CE4B-368C-488D-9D2C-D7228D350089}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{B5526C3D-C61A-4BF0-AA40-239E601DD468}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{FDDCEA18-DDA0-4B02-881C-3EDB58A91125}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{37FA0767-CBF6-4592-A5A1-735B167D2520}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{886A2007-8E7B-40B2-8D7D-FDC9D759ED3D}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A1302963-445C-40D1-B6AF-6FECF4F30B27}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{33200ABE-3227-49A5-BA7A-4533210FAC8A}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{3E4EA06F-2FE6-4B64-B5D9-9B32F13F4E6A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D0D1183E-2DD5-4546-B82C-01AC97466317}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5CB35CC3-1446-467A-80B3-2D7321EFCCC7}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{599BE89C-62B0-4789-96BC-5485D0ECB7AF}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{FE0A38B1-95FD-49D9-B493-5AA0AF23D6A2}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2B3776E7-08D8-46CE-8609-AA261F871CD5}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C9DF582F-FD6E-45A6-9082-009D1C266F9F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{47F7B20D-B3F0-4E07-8E11-B09657FF87A2}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{057CEFF0-CAE5-422C-A2F3-5918DB90E0C1}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{08BA4819-0003-45E6-97A3-FA4E0BACE196}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{575CF8AA-2F5E-4BA1-A776-6EEC71B2E3E3}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5D041B8D-7673-41F2-824A-E865900CB0E2}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{538EE26F-E21B-434B-8E66-52B71B85EF93}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A11F570E-2CAA-4008-8FCD-9B9E8DD0A588}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{3D831D9F-2EEC-408E-B9D1-1C5BC8601C38}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{819E7AC4-6D4A-4B76-B853-6EDDC24C9759}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A73400D4-5BA6-46B7-AD7E-40711A926434}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7B97CE9E-DCE1-4229-B690-832F6C6E6736}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{FA81E83C-7E20-4C70-B1F4-98B081747A04}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{79DDD2E2-B618-46F6-83CF-3B92D87E4509}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D0395927-5403-4E89-A0AF-4E8416ABF03A}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{DDC13EAA-14EC-4F80-A169-B52D33401669}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{9A595A99-ADAE-462A-93DD-4EEC4F025341}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{22667864-3831-4F29-84BB-7F003ACEFEA4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{1D257430-FD1B-459C-BA3F-423736CCBE86}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{CAC230F9-54BC-4BF4-AB34-CB3F2FEFEAD7}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E5E3F296-1E06-482D-88D4-0A550991666F}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C1D59394-474B-42E2-BE22-5A4AF092A521}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1B8FD4B9-8C87-47B1-8DB3-8451E1327788}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{91E18B0B-9BD5-43FC-9D0D-083A913A9B7D}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{705FF619-13A8-486B-B008-11F782479A75}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{F81CB6AD-3DF8-44EA-ACC3-853F1F71F0DE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{BDBD2F12-5C25-4A61-980A-08247BCD0E38}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C575128E-0F91-45DF-A861-54ABB2A1EE4C}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{63ADF5F2-BDC7-46B2-A60B-93100061ED82}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{4A6078AA-78F6-4F4D-90F8-4A79AA482E69}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A2D2A82A-0BD5-409F-8903-D7868782FA48}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{B8B8B1DB-FD77-40DB-8113-8B3C9B9BA12E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2E7471EB-14A1-46FE-BB1B-BA8229BDA031}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{865B1308-3BE9-47AB-B69F-4381FE9474C7}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E73A0A02-9C16-4415-9985-12A53580AF9A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{DCEB1007-1C86-4489-B561-73088145E778}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{BDDE4911-1393-4454-A93A-B2EC0CE24A66}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5D398A62-7D24-487E-B81E-CE4F44B2A9CA}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{F2443D82-F36B-4F92-8441-B15B944CE9F9}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{64AE3C6A-126E-44DB-BC66-5C53350F8E15}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7E39625C-179A-4A50-8B8C-7B3F939A2E44}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D85BD824-72B4-4026-827B-CA4DA0311FFD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{1BFCB4B0-7081-42E4-AA2F-EA9A60F07D91}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{114D75CC-3BA4-42EC-9391-C837FC962D2F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2B809A65-C9EC-4B7F-904D-71E64412F100}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{23D28C2E-6B3F-40ED-BE53-F9E27590D43E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D3BAB176-1BB6-4FA6-A230-63CAB9C8DF80}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2AFF85E0-C77C-46A8-898B-D2D21ECE4C46}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{0B5EA9E2-F037-4B4D-BB49-9401D4A1EF46}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{62E3EB87-1A3D-413E-8275-3B5302A1359F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{0A3103E7-7BBC-46C2-A7A7-02CF96919965}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A87B9F83-EB4B-4A4E-96A8-344522EA33AF}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{961ECD0E-85A4-4C15-9976-B32552235F42}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7D1B0F03-8979-4F25-9E2F-A79F1B3E2539}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{33BB0D04-5D5C-4FB0-857A-53C483D79098}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E54CB1A4-3581-4B30-AFBD-ECD1F88A3167}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{069761A4-5BD2-459A-A8C5-498961968CB4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{8DD3051E-BFBC-48B8-8577-93801C5A5590}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{79CD2C52-1137-44C3-BFB7-9FD7B9632B87}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{CD22D13B-7C10-4491-A7C3-D9F8D1993632}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{735499D9-4E35-4FAA-B4FB-4BAD47626E04}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{820F97FF-544C-4416-81FD-7761E8968643}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{99ADA453-F900-4D13-8F88-D50A85E90903}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{F1C3B718-8E20-43BB-A36D-F4AA9D106A7D}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{72758ECF-E1E9-48A3-964C-A6F6AEAF5057}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1ECA4905-BAC6-4332-B6E4-14673CC2A47C}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2DE0F442-ABA8-42DC-90EE-B2E0D64C66F9}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{3599BDC8-2478-42A3-8766-A9F443790A57}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{565E5062-09A9-464C-8E9F-F097899ACFA5}] => (Allow) D:\Program Files\Nox\bin\Nox.exe
FirewallRules: [{5912EFC1-BC96-4869-9E20-7936322E63E1}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{F7D8E9D1-3DAA-4A22-B421-3995E6F34E0A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A8270725-74DD-4F67-8446-FB0E34EF93A1}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{C1BD19AA-1C46-421D-8F12-116352289671}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A22C4E8A-2DD4-4527-A5CF-D5BFD88D39E4}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{19C8DDFE-95DB-4D9B-8A42-5EBF8E05E184}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{978A9088-9093-441E-97E7-9569DB0CD827}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{699025D2-5D42-42AD-97EA-C2C6CEB3A406}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{AA228CD7-F76B-47DD-AE0B-510842A2A440}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{C95A47FE-32C1-4DE0-8AFC-7A7B32133BA7}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{3F584956-DA58-4283-9E78-5FC930C830E8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{41FFFEF0-1A59-4614-B730-1E5F2E6742A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{959FF83C-DCD6-47BB-81AB-013223535EC7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4B9D0313-37C6-4E78-82E7-21C7FEB174A7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3ECFDB80-2F65-42EA-879E-BDD173E5101C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84B74FEE-5A02-402F-B7D3-D4D2362C89C1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{91D2C92B-78F5-4AE0-9713-E2388F229B50}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe
FirewallRules: [{0FD39F25-7162-4036-8C17-C1D4081ABEF6}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe
FirewallRules: [{272111F3-CF9A-402B-AC17-EF2F493A0E46}] => (Allow) LPort=80
FirewallRules: [{8DBE06EB-B716-4E6E-A504-AF7C017D967A}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
FirewallRules: [{8911C46B-449C-4561-AB67-F9AAEDBD8ABE}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
==================== Pontos de Restauração =========================
16-11-2018 21:07:24 Installed iTunes
17-11-2018 01:36:02 Installed Java(TM) SE Development Kit 11.0.1 (64-bit)
17-11-2018 02:28:51 Removed PL-2303 USB-to-Serial
17-11-2018 12:03:02 Installed SFT Dongle
17-11-2018 21:46:16 Removed SDFormatter.
19-11-2018 13:43:34 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: NetGroup Packet Filter Driver
Description: NetGroup Packet Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: npf
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Sony so0107 ADB Interface Driver
Description: Sony so0107 ADB Interface Driver
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Sony
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/20/2018 04:55:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 02:00:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 01:56:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 01:28:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 01:18:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/19/2018 07:40:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/19/2018 02:41:59 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Um problema impediu que os dados do Programa de Aperfeiçoamento da Experiência do Usuário fossem enviados para a Microsoft, (Erro 80004005).
Error: (11/19/2018 01:35:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Erros de Sistema:
=============
Error: (11/20/2018 05:58:31 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:58:31 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (11/20/2018 05:26:28 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:26:28 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (11/20/2018 05:10:27 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:10:27 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (11/20/2018 05:02:26 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:02:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Windows Defender:
===================================
Date: 2018-11-09 21:10:11.005
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{BC955227-F663-44E4-A588-F01566828E80}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:TechCell-PC\Tech Cell
Date: 2018-10-19 05:50:04.559
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{4558AF17-2F14-4E4E-804A-F3C2B31306CA}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:TechCell-PC\Tech Cell
Date: 2018-10-19 05:48:16.283
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{65D97CDD-081E-4A5B-9CBA-8AB221C4209E}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:TechCell-PC\Tech Cell
Date: 2018-06-22 23:03:07.852
Description:
Windows Defender detectou spyware ou outro software possivelmente indesejado.
Para obter mais informações, consulte:
http://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Prorat&threatid=4129
Nome:Backdoor:Win32/Prorat
ID:4129
Severidade:Grave
Categoria:Backdoor
Caminho Encontrado:containerfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProConnective.exe;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#2;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#9;filelocalcopy:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{D4B061E6-29DA-4BA1-8DC3-70A3948EF421}-Prorat-2.1.zip;webfile:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{D4B061E6-29DA-4BA1-8DC3-70A3948EF421}-Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip;webfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip
Tipo de Detecção:Concreto
Origem da Detecção:Downloads e anexos
Status:Desconhecido
Usuário:TechCell-PC\Tech Cell
Nome do Processo:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Date: 2018-06-22 23:03:07.851
Description:
Windows Defender detectou spyware ou outro software possivelmente indesejado.
Para obter mais informações, consulte:
http://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/Small&threatid=15508
Nome:TrojanDownloader:Win32/Small
ID:15508
Severidade:Grave
Categoria:Trojan Downloader
Caminho Encontrado:containerfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#12;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#12->(VFS:wservice.exe);file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#13;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#13->(VFS:wservice.exe);filelocalcopy:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{FA844AAC-C969-48F0-ADCE-B11EC4240510}-Prorat-2.1.zip;webfile:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{FA844AAC-C969-48F0-ADCE-B11EC4240510}-Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip;webfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip
Tipo de Detecção:Heurística
Origem da Detecção:Downloads e anexos
Status:Desconhecido
Usuário:TechCell-PC\Tech Cell
Nome do Processo:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Date: 2018-07-06 23:40:48.975
Description:
Windows Defender encontrou um erro ao tentar carregar assinaturas e tentará reverter ao conjunto de assinaturas válidas.
Tentativas de Assinaturas:Atual
Código de Erro:0x80070002
Descrição do erro:O sistema não pode encontrar o arquivo especificado.
Versão da assinatura:0.0.0.0
Versão do mecanismo:0.0.0.0
Date: 2018-06-30 14:00:13.474
Description:
O recurso de proteção de tempo real Windows Defender encontrou um erro e falhou.
Recurso:Ao Acessar
Código de Erro:0x80501002
Descrição do erro:O programa não pode localizar arquivos de definição que ajudam a detectar software indesejado. Verifique se há atualizações de arquivos de definição e tente novamente. Para obter informações sobre como instalar atualizações, consulte Ajuda e Suporte.
Razão:O Monitoramento em Tempo Real parou de funcionar por um motivo desconhecido. Reinicie o serviço para recuperar.
==================== Informações da Memória ===========================
Processador: Intel(R) Celeron(R) CPU E3200 @ 2.40GHz
Percentagem de memória em uso: 76%
RAM física total: 2047.24 MB
RAM física disponível: 476.39 MB
Virtual Total: 4094.48 MB
Virtual disponível: 1666.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:180.8 GB) (Free:77.8 GB) NTFS
Drive d: (HD_TECHCELL) (Fixed) (Total:117.19 GB) (Free:84.36 GB) NTFS
\\?\Volume{3195a19f-55d6-11e8-8025-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: C5097221)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=180.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================
Executado por Tech Cell (20-11-2018 18:47:54)
Executando a partir de C:\Users\Tech Cell\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-05-12 11:27:21)
Modo da Inicialização: Normal
==========================================================
==================== Contas: =============================
Administrador (S-1-5-21-17454397-3655801466-2647378754-500 - Administrator - Disabled)
Convidado (S-1-5-21-17454397-3655801466-2647378754-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-17454397-3655801466-2647378754-1002 - Limited - Enabled)
Tech Cell (S-1-5-21-17454397-3655801466-2647378754-1000 - Administrator - Enabled) => C:\Users\Tech Cell
==================== Central de Segurança ========================
(Se uma entrada for incluída na fixlist, será removida.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas Instalados ======================
(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-17454397-3655801466-2647378754-1000\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
3uTools (HKLM-x32\...\3uTools) (Version: 2.29.002 - ShangHai ZhangZheng Network Technology Co., Ltd.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
ActivePerl 5.12.2 Build 1202 (HKLM-x32\...\{EC610A5F-4957-4CA3-8825-D91D5D492086}) (Version: 5.12.1202 - ActiveState)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Atualizações da NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByeiCloud v4.4.1 By Technical Computer Solutions (HKLM-x32\...\{516FEF5B-834B-42B5-839E-5F57C038BC8A}_is1) (Version: 4.4.1 - Technical Computer Solutions)
Camtasia Studio 8 (HKLM-x32\...\{904AC0F0-F69E-467E-A719-B083940F608A}) (Version: 8.5.2.1999 - TechSmith Corporation)
CAT (HKLM-x32\...\{22DC24EB-1A44-4637-920D-F59AFD5E90F8}) (Version: 1.0.0 - Willian C Santana)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Emergency Download Driver (HKLM-x32\...\{9ED72246-E35D-4B03-8369-605E82465A29}) (Version: 1.1.5.1416 - Nokia)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.22.3 - Androxyde)
FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time)
Fuse Drivers x64 (HKLM-x32\...\{06904B2B-5000-4C58-9471-256BA1A303BE}) (Version: 11.34.1 - Nokia)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{E0303B6A-C675-4102-95DA-C013625BFA99}) (Version: 1.00.00001 - Rockstar Games)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - Nome de sua empresa:)
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.10.0 - Intel)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
iTunes (HKLM\...\{932473A4-0F6C-41A1-B62D-F2C9A4F09EE3}) (Version: 12.9.1.4 - Apple Inc.)
Java(TM) SE Development Kit 11.0.1 (64-bit) (HKLM\...\{F4039C0F-E4C1-5905-9E7D-DDA8EDE365BC}) (Version: 11.0.1.0 - Oracle Corporation)
LG Mobile Driver (HKLM-x32\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.2.0 - LG Electronics)
Lumia UEFI Blue Driver (HKLM-x32\...\{5E80E23F-3BB2-4827-A703-EA7E180AA6A9}) (Version: 1.1.5.1416 - Nokia)
MariaDB 10.1 (HKLM-x32\...\{5B6218D8-6DD9-4FAA-9D42-33058BB2C962}) (Version: 10.1.19.0 - MariaDB Corporation Ab) Hidden
MariaDB 10.1 (HKLM-x32\...\MariaDB 10.1) (Version: 10.1.19.0 - MariaDB Corporation Ab)
Mediatek RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.39.173 - MediatekWiFi)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (Português (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.11001.20108 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Mobistel Cynus F4 Drivers(x64) (HKLM-x32\...\{C3F57607-592D-458F-81AE-349FD05DFA74}) (Version: 1.00 - Mobistel)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mp3tag v2.90a (HKLM-x32\...\Mp3tag) (Version: 2.90a - Florian Heidenreich)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MultiSync Desktop versão 2.1 (HKLM-x32\...\{10063053-8B50-4C50-9986-A4945F4328A4}_is1) (Version: 2.1 - Multilaser)
NOKIA 3806 USB DRIVER Ver:1.5 (HKLM-x32\...\{6AE35C55-F02A-41EE-B694-8F2706FE4819}) (Version: 2.00.0000 - NOKIA)
Nokia Care Suite PST 5 (HKLM-x32\...\{6DD01BF0-18A3-4608-BBB1-AE6C956EDCC2}) (Version: 5.4.119.1432 - Nokia)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.1 - Duodian Technology Co. Ltd.)
NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Driver de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
OS Plus 5.0 - Cubo Sistemas (HKLM-x32\...\{2C0D9EE9-BCC5-4041-A9FA-EE67EFF9BE55}_is1) (Version: - Cubo Sistemas)
Pacote de Driver do Windows - Android (WUDFRd) WPD (04/07/2013 5.2.5326.4762) (HKLM\...\11A0B871BAD4BD9A57E59C3635218E2427AA2C62) (Version: 04/07/2013 5.2.5326.4762 - Android)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2013 7.0.0000.00001) (HKLM\...\DD35777ACC26D30A3585F9724356AF8111A6F38C) (Version: 08/27/2013 7.0.0000.00001 - Google, Inc.)
Pacote de Driver do Windows - libusb-win32 (libusb0) USB (01/18/2012 1.2.6.0) (HKLM\...\E7818806C41577F170D21B994A5D37A97B7FA478) (Version: 01/18/2012 1.2.6.0 - libusb-win32)
Pacote de Driver do Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Pacote de Driver do Windows - USB Devices (usbUDisc) USB (01/24/2014 1.0.0.1) (HKLM\...\B2A7D664285C0D269794E0F21D756D5138D1FB29) (Version: 01/24/2014 1.0.0.1 - USB Devices)
Painel de controle da NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{9590C850-8A55-43DB-A413-DFF6E5636570}) (Version: 10.30.0.0 - Nokia)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Python 2.7.15 (64-bit) (HKLM\...\{16CD92A4-0152-4CB7-8FD6-9788D3363617}) (Version: 2.7.15150 - Python Software Foundation)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SFT Dongle (HKLM\...\{5F6A2304-2D76-4F72-A378-40795CE9B48E}) (Version: 3.1.4 - Gsm_X_Team)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{49F7DD82-FC83-48BF-86C6-CFE6E1E233E1}) (Version: 7.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{1FA68E27-2951-42E8-9F57-1A7F6581B4FD}) (Version: 7.1 - Apple Inc.)
UltraISO Premium V9.65 (HKLM-x32\...\UltraISO_is1) (Version: - )
Uni-Android 7.01 (HKLM-x32\...\Uni-Android 7.01) (Version: 7.01 - www.uni-android.com)
USB Serial Port Driver (x64) (HKLM-x32\...\{53012BD2-D1A3-4530-9AE2-B0C503B5C1C2}) (Version: 2013.30.0.313 - Nokia)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.64 - VSO Software)
Wampserver64 3.1.4 (HKLM\...\{wampserver64}_is1) (Version: 3.1.4 - Dominique Ottello aka Otomatic)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM-x32\...\{C97989C1-551F-4F41-A069-2A49567FD36B}) (Version: 1.1.6.1416 - Nokia)
WinUSB Drivers ext (HKLM-x32\...\{A0B1E1BF-BEF5-4748-800B-E54ED9CDF8CE}) (Version: 1.1.10.1426 - Nokia)
Wise Program Uninstaller 2.2.5 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.2.5 - WiseCleaner.com, Inc.)
==================== Exame Personalizado CLSID (Whitelisted): ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Nenhum Arquivo
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-03-18] ()
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Nenhum Arquivo
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Nenhum Arquivo
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Nenhum Arquivo
==================== Tarefas Agendadas (Whitelisted) =============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Task: {06D2CECE-9A42-440F-A589-CCDB15FB03ED} - System32\Tasks\AdobeGCInvoker-1.0-TechCell-PC-Tech Cell => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {0BDF67FC-9B4E-4F27-9864-DA9C59E7D01C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {10FE4F36-3758-40D0-B5A8-E0F6AD627AF9} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {169D78BD-8C22-47D4-98C4-C6C9FBABC58F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {18A2D21E-1AB1-4693-9FDA-FAC7FF614AA1} - System32\Tasks\{1A8BC1A4-63E3-4AE5-BA6C-615D4ABDCFD6} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {1BB5598D-A9B5-44E4-936A-C83296FE7911} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {313229F8-9990-448D-B06C-76633A989C76} - System32\Tasks\{556B973A-2053-4857-A080-C7B2E5EBAC0B} => C:\Windows\system32\pcalua.exe -a "D:\Havij Pro v1.16\Havij v1.16.exe" -d "D:\Havij Pro v1.16"
Task: {377773A8-588A-4B66-8898-A79D270ADD12} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-17] (Microsoft Corporation)
Task: {493AAD54-FD82-426F-97C0-9B0093D50B9F} - System32\Tasks\{9D42CCA1-BBDD-4067-AD17-CB8FCB995265} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe"
Task: {497233A8-592D-42DF-BCE7-99E15B102326} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {5A35297D-0592-413A-BCD7-B3CD74ECAD73} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-17] (Microsoft Corporation)
Task: {69D8CDB8-745F-4D57-85E6-10A77E6A29AC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-02] (Microsoft Corporation)
Task: {6B5E1E45-2E08-46D6-BD9B-0BCFBCB5D470} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-15] (Google Inc.)
Task: {6D2EFD7A-B652-4D65-B639-1340D2E547FA} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Users\TECHCE~1\AppData\Local\Temp\is-45K87.tmp\corefixer.exe <==== ATENÇÃO
Task: {6DD06EE9-0786-479E-B81B-FF2931E8DE36} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {761B0F3C-333C-42A3-BD35-63B4EBF20743} - System32\Tasks\svchost => c:\windows\resources\svchost.exe [2018-11-18] () <==== ATENÇÃO
Task: {7F774ADF-7DDF-4977-B94C-26A539F366B9} - System32\Tasks\{6189B7FC-E7EC-2DC4-EF2C-E13D12C6D1E7} => C:\Program Files (x86)\enGYEaY.exe <==== ATENÇÃO
Task: {8F60E03B-0926-487D-B9AE-C3F0AD8B077E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {936DEB3E-D25C-4CB0-932E-91FC28D60170} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-02] (Microsoft Corporation)
Task: {A2EA9FBB-8537-4504-B387-31CD408C2CE4} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {BBDE2E6A-D578-48B4-83DF-9180493C1F62} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {C6927E2B-54C1-47DB-A186-5B3C2D05C77E} - System32\Tasks\{C92056A5-9CCB-4F46-B204-F99D0EC61643} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\foldershare\uninstaller.exe" -d "C:\Program Files (x86)\foldershare"
Task: {DE9CF451-CF12-4E2E-A51C-174A64D10CF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-15] (Google Inc.)
(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)
==================== Atalhos & WMI ========================
(As entradas podem ser listadas para serem restauradas ou removidas.)
ShortcutWithArgument: C:\Users\Tech Cell\Desktop\Telecine Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hdgbobgiklhnjkoldkgdidinjfemhdel
ShortcutWithArgument: C:\Users\Tech Cell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Telecine Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hdgbobgiklhnjkoldkgdidinjfemhdel
==================== Módulos Carregados (Whitelisted) ==============
2018-05-15 22:28 - 2016-11-14 09:15 - 000135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-10-21 02:17 - 2018-10-21 02:17 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-10-21 02:17 - 2018-10-21 02:17 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-02-27 21:08 - 2018-02-27 21:08 - 000614856 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2018-03-18 21:40 - 2018-03-18 21:40 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2016-11-04 12:01 - 2016-11-04 12:01 - 011762120 _____ () C:\Program Files (x86)\MariaDB10.1\bin\mysqld.exe
2018-05-15 23:31 - 2016-11-14 10:30 - 000367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 003611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2013-10-17 15:27 - 2013-10-17 15:27 - 000166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2018-05-15 23:31 - 2016-11-14 10:30 - 001988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 002665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 001840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2018-11-15 13:38 - 2018-11-08 20:14 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libglesv2.dll
2018-11-15 13:38 - 2018-11-08 20:14 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libegl.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-16 20:34 - 2015-03-16 20:34 - 000151552 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Locale\pt_br\PDFMaker\PDFMOfficeAddin.PTB
2018-05-21 16:51 - 2018-10-19 08:00 - 000304720 _____ () C:\Program Files (x86)\Microsoft Office\Root\Office16\IEAWSDC.DLL
==================== Alternate Data Streams (Whitelisted) =========
(Se uma entrada for incluída na fixlist, somente o ADS será removido.)
==================== Modo de Segurança (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)
==================== Associação (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)
==================== Internet Explorer confiável/restrito ===============
(Se uma entrada for incluída na fixlist, será removida do Registro.)
==================== Hosts Conteúdo: ==========================
(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)
2018-08-02 10:01 - 2018-11-10 10:54 - 004194586 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 mydownloaddomain.com
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com
==================== Outras Áreas ============================
(Atualmente não há nenhuma correção automática para esta seção.)
HKU\S-1-5-21-17454397-3655801466-2647378754-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tech Cell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está habilitado.
==================== MSCONFIG/TASK MANAGER ítens desabilitados ==
Se uma entrada for incluída na fixlist, será removida.
MSCONFIG\Services: AIPS => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\startupfolder: C:^Users^Tech Cell^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Enviar para o OneNote.lnk => C:\Windows\pss\Enviar para o OneNote.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Tech Cell^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Shortcut to Primary output from Start (Active).lnk => C:\Windows\pss\Shortcut to Primary output from Start (Active).lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Microsoft System Diagnostic.exe => C:\ProgramData\Microsoft System Diagnostic.exe
MSCONFIG\startupreg: Nox => D:\Program Files\Nox\bin\Nox.exe
MSCONFIG\startupreg: PSwitch => C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
MSCONFIG\startupreg: wermgr => C:\ProgramData\Microsoft\Windows\WER\wermgr.exe
==================== Regras do Firewall (Whitelisted) ===============
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
FirewallRules: [{224A7F2D-E3E4-49B9-A7C4-E1E6C717055E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{83B9A51F-D4B5-4D84-A83A-9B70F43F1997}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DAAD5545-4163-4ADC-BC23-85B1700224D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FA00BE1A-69A7-4F25-8AF5-FBCD3978B80C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{DE3A40EA-1999-4332-B452-865690D0D201}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FE7A0E7E-62C7-43CB-B1FC-85C9D722FCEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2BDC6F4-C1B3-4EF7-965D-7F07A087C0AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F327935C-2516-4A49-BC7C-FAEFDA1C423C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{B9D6BCE1-E2F7-455A-B11D-82A8C1B2F8D2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{EC5F218D-C805-4203-A17A-FE095499369E}] => (Allow) LPort=1542
FirewallRules: [{232D45A4-8711-4B34-B2B9-266A7350B415}] => (Allow) LPort=1542
FirewallRules: [{239A3D09-A778-4796-AD3D-7A480B779A34}] => (Allow) LPort=53
FirewallRules: [{C2967515-0F90-462F-9BED-7EC79C585FBF}] => (Allow) LPort=53
FirewallRules: [{E23DF820-BCE3-4BF2-8A52-543A09890543}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{4FEC858E-1A88-499B-83FC-85C326858909}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{583269A7-0788-4023-BD9B-C3E211A59771}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{B31C3684-4C00-4CB1-A6FC-56E0DED17706}] => (Allow) LPort=1688
FirewallRules: [TCP Query User{CF16EB98-F421-4DE3-AC51-DC0D4E3C0196}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [UDP Query User{E160B08E-7F0C-4077-A21E-D6B68769304A}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [{DA24D647-5DD6-44A0-A2FB-1B82E8BB9E3F}] => (Allow) LPort=7359
FirewallRules: [{0E194C9E-DE33-40C8-BE16-5380164F8B6C}] => (Allow) LPort=8096
FirewallRules: [{10E08C70-71AD-40A9-A04E-ED40B96CC9DD}] => (Allow) LPort=8920
FirewallRules: [{27A19011-D622-4AEF-AAC6-6E3DD3CF7791}] => (Allow) LPort=8317
FirewallRules: [TCP Query User{A6957FFE-89EF-4202-8D8E-C7C838EDD33C}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{587502B0-0B15-4E3F-B1E5-4206E319C769}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{F381E3D3-0460-476A-99DD-D959E61D6BB5}C:\program files (x86)\common files\nokia\fuse\fuse.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuse.exe
FirewallRules: [UDP Query User{D9FB7E6F-6653-431E-8992-F84BA51A572F}C:\program files (x86)\common files\nokia\fuse\fuse.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuse.exe
FirewallRules: [TCP Query User{76DBA0C1-A278-427F-AA83-184E39FF117B}C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe
FirewallRules: [UDP Query User{7B71FE7F-3923-47C3-ACD7-5E1EF4EDA7D7}C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe
FirewallRules: [TCP Query User{20BA2FCC-292B-4B37-BDD7-BB1E74BD84E6}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{B806A9A2-9F5B-4114-B322-5F0F4F0CA8F3}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{B4F6ACC3-2551-4426-A302-163EE2A665DA}] => (Allow) C:\Users\Tech Cell\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{91783EE9-4BD1-4240-9E6E-8BF9764E3CE6}] => (Allow) C:\Users\Tech Cell\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{F75F3B0A-F435-49BA-9226-0517FD153924}C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe
FirewallRules: [UDP Query User{E3B90B93-0F72-48BC-8B44-FA837A7B34BA}C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe
FirewallRules: [{9299C3C7-0414-4EB1-A68E-37F6FDF0C2D4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{E4ED47BA-4EFD-4886-8CAB-F7394D927249}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [TCP Query User{E51D2B39-96C6-45E8-8518-F32EDA57A03C}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{D0150C75-8216-416F-85DF-728C03053557}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{1A4F181C-F727-4B8D-AF2D-B946D0F8E1DC}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{959EE1CE-5203-4475-8D8C-67FAE078FEA1}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{DF2D1568-8E80-4DF3-97F4-52E21664DFF4}] => (Allow) C:\Program Files (x86)\MariaDB10.1\bin\mysqld.exe
FirewallRules: [{6C0AA5C6-60C3-4CDB-AFEC-A0E1DFF8C784}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7596551A-72C4-4AB1-AF63-367FC826B8BE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{45BCA901-7376-4B8E-B884-41D5678F5E62}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{2769E5C2-A890-4F59-AF50-1C4D927A2B75}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{823D82C7-DFFC-46B3-8F9E-1D9F24FBEF68}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{C558E04E-836E-48E6-A34B-3EB64A8B7CC4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{4AD2EF96-DCA3-4672-B7C1-32942857529E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D9268D82-48C0-400B-9CC9-81EAF69DC5BE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{92749C83-D834-4E0B-863B-713ADF923287}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{22C28E13-7526-4AF0-A87A-60545A0010E9}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7F72EB47-7F42-41E9-B73C-6F6E6131847A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1C29CE4B-368C-488D-9D2C-D7228D350089}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{B5526C3D-C61A-4BF0-AA40-239E601DD468}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{FDDCEA18-DDA0-4B02-881C-3EDB58A91125}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{37FA0767-CBF6-4592-A5A1-735B167D2520}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{886A2007-8E7B-40B2-8D7D-FDC9D759ED3D}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A1302963-445C-40D1-B6AF-6FECF4F30B27}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{33200ABE-3227-49A5-BA7A-4533210FAC8A}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{3E4EA06F-2FE6-4B64-B5D9-9B32F13F4E6A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D0D1183E-2DD5-4546-B82C-01AC97466317}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5CB35CC3-1446-467A-80B3-2D7321EFCCC7}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{599BE89C-62B0-4789-96BC-5485D0ECB7AF}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{FE0A38B1-95FD-49D9-B493-5AA0AF23D6A2}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2B3776E7-08D8-46CE-8609-AA261F871CD5}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C9DF582F-FD6E-45A6-9082-009D1C266F9F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{47F7B20D-B3F0-4E07-8E11-B09657FF87A2}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{057CEFF0-CAE5-422C-A2F3-5918DB90E0C1}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{08BA4819-0003-45E6-97A3-FA4E0BACE196}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{575CF8AA-2F5E-4BA1-A776-6EEC71B2E3E3}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5D041B8D-7673-41F2-824A-E865900CB0E2}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{538EE26F-E21B-434B-8E66-52B71B85EF93}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A11F570E-2CAA-4008-8FCD-9B9E8DD0A588}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{3D831D9F-2EEC-408E-B9D1-1C5BC8601C38}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{819E7AC4-6D4A-4B76-B853-6EDDC24C9759}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A73400D4-5BA6-46B7-AD7E-40711A926434}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7B97CE9E-DCE1-4229-B690-832F6C6E6736}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{FA81E83C-7E20-4C70-B1F4-98B081747A04}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{79DDD2E2-B618-46F6-83CF-3B92D87E4509}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D0395927-5403-4E89-A0AF-4E8416ABF03A}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{DDC13EAA-14EC-4F80-A169-B52D33401669}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{9A595A99-ADAE-462A-93DD-4EEC4F025341}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{22667864-3831-4F29-84BB-7F003ACEFEA4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{1D257430-FD1B-459C-BA3F-423736CCBE86}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{CAC230F9-54BC-4BF4-AB34-CB3F2FEFEAD7}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E5E3F296-1E06-482D-88D4-0A550991666F}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C1D59394-474B-42E2-BE22-5A4AF092A521}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1B8FD4B9-8C87-47B1-8DB3-8451E1327788}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{91E18B0B-9BD5-43FC-9D0D-083A913A9B7D}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{705FF619-13A8-486B-B008-11F782479A75}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{F81CB6AD-3DF8-44EA-ACC3-853F1F71F0DE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{BDBD2F12-5C25-4A61-980A-08247BCD0E38}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C575128E-0F91-45DF-A861-54ABB2A1EE4C}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{63ADF5F2-BDC7-46B2-A60B-93100061ED82}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{4A6078AA-78F6-4F4D-90F8-4A79AA482E69}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A2D2A82A-0BD5-409F-8903-D7868782FA48}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{B8B8B1DB-FD77-40DB-8113-8B3C9B9BA12E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2E7471EB-14A1-46FE-BB1B-BA8229BDA031}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{865B1308-3BE9-47AB-B69F-4381FE9474C7}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E73A0A02-9C16-4415-9985-12A53580AF9A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{DCEB1007-1C86-4489-B561-73088145E778}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{BDDE4911-1393-4454-A93A-B2EC0CE24A66}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5D398A62-7D24-487E-B81E-CE4F44B2A9CA}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{F2443D82-F36B-4F92-8441-B15B944CE9F9}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{64AE3C6A-126E-44DB-BC66-5C53350F8E15}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7E39625C-179A-4A50-8B8C-7B3F939A2E44}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D85BD824-72B4-4026-827B-CA4DA0311FFD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{1BFCB4B0-7081-42E4-AA2F-EA9A60F07D91}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{114D75CC-3BA4-42EC-9391-C837FC962D2F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2B809A65-C9EC-4B7F-904D-71E64412F100}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{23D28C2E-6B3F-40ED-BE53-F9E27590D43E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D3BAB176-1BB6-4FA6-A230-63CAB9C8DF80}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2AFF85E0-C77C-46A8-898B-D2D21ECE4C46}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{0B5EA9E2-F037-4B4D-BB49-9401D4A1EF46}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{62E3EB87-1A3D-413E-8275-3B5302A1359F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{0A3103E7-7BBC-46C2-A7A7-02CF96919965}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A87B9F83-EB4B-4A4E-96A8-344522EA33AF}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{961ECD0E-85A4-4C15-9976-B32552235F42}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7D1B0F03-8979-4F25-9E2F-A79F1B3E2539}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{33BB0D04-5D5C-4FB0-857A-53C483D79098}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E54CB1A4-3581-4B30-AFBD-ECD1F88A3167}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{069761A4-5BD2-459A-A8C5-498961968CB4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{8DD3051E-BFBC-48B8-8577-93801C5A5590}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{79CD2C52-1137-44C3-BFB7-9FD7B9632B87}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{CD22D13B-7C10-4491-A7C3-D9F8D1993632}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{735499D9-4E35-4FAA-B4FB-4BAD47626E04}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{820F97FF-544C-4416-81FD-7761E8968643}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{99ADA453-F900-4D13-8F88-D50A85E90903}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{F1C3B718-8E20-43BB-A36D-F4AA9D106A7D}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{72758ECF-E1E9-48A3-964C-A6F6AEAF5057}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1ECA4905-BAC6-4332-B6E4-14673CC2A47C}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2DE0F442-ABA8-42DC-90EE-B2E0D64C66F9}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{3599BDC8-2478-42A3-8766-A9F443790A57}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{565E5062-09A9-464C-8E9F-F097899ACFA5}] => (Allow) D:\Program Files\Nox\bin\Nox.exe
FirewallRules: [{5912EFC1-BC96-4869-9E20-7936322E63E1}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{F7D8E9D1-3DAA-4A22-B421-3995E6F34E0A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A8270725-74DD-4F67-8446-FB0E34EF93A1}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{C1BD19AA-1C46-421D-8F12-116352289671}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A22C4E8A-2DD4-4527-A5CF-D5BFD88D39E4}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{19C8DDFE-95DB-4D9B-8A42-5EBF8E05E184}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{978A9088-9093-441E-97E7-9569DB0CD827}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{699025D2-5D42-42AD-97EA-C2C6CEB3A406}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{AA228CD7-F76B-47DD-AE0B-510842A2A440}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{C95A47FE-32C1-4DE0-8AFC-7A7B32133BA7}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{3F584956-DA58-4283-9E78-5FC930C830E8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{41FFFEF0-1A59-4614-B730-1E5F2E6742A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{959FF83C-DCD6-47BB-81AB-013223535EC7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4B9D0313-37C6-4E78-82E7-21C7FEB174A7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3ECFDB80-2F65-42EA-879E-BDD173E5101C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84B74FEE-5A02-402F-B7D3-D4D2362C89C1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{91D2C92B-78F5-4AE0-9713-E2388F229B50}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe
FirewallRules: [{0FD39F25-7162-4036-8C17-C1D4081ABEF6}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe
FirewallRules: [{272111F3-CF9A-402B-AC17-EF2F493A0E46}] => (Allow) LPort=80
FirewallRules: [{8DBE06EB-B716-4E6E-A504-AF7C017D967A}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
FirewallRules: [{8911C46B-449C-4561-AB67-F9AAEDBD8ABE}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
==================== Pontos de Restauração =========================
16-11-2018 21:07:24 Installed iTunes
17-11-2018 01:36:02 Installed Java(TM) SE Development Kit 11.0.1 (64-bit)
17-11-2018 02:28:51 Removed PL-2303 USB-to-Serial
17-11-2018 12:03:02 Installed SFT Dongle
17-11-2018 21:46:16 Removed SDFormatter.
19-11-2018 13:43:34 Windows Update
==================== Dispositivos Apresentando Falhas No Gerenciador =============
Name: NetGroup Packet Filter Driver
Description: NetGroup Packet Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: npf
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Sony so0107 ADB Interface Driver
Description: Sony so0107 ADB Interface Driver
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Sony
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erros no Log de eventos: =========================
Erros em Aplicativos:
==================
Error: (11/20/2018 04:55:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 02:00:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 01:56:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 01:28:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/20/2018 01:18:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/19/2018 07:40:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/19/2018 02:41:59 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Um problema impediu que os dados do Programa de Aperfeiçoamento da Experiência do Usuário fossem enviados para a Microsoft, (Erro 80004005).
Error: (11/19/2018 01:35:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Erros de Sistema:
=============
Error: (11/20/2018 05:58:31 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:58:31 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (11/20/2018 05:26:28 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:26:28 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (11/20/2018 05:10:27 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:10:27 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Error: (11/20/2018 05:02:26 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.
Error: (11/20/2018 05:02:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.
Windows Defender:
===================================
Date: 2018-11-09 21:10:11.005
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{BC955227-F663-44E4-A588-F01566828E80}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:TechCell-PC\Tech Cell
Date: 2018-10-19 05:50:04.559
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{4558AF17-2F14-4E4E-804A-F3C2B31306CA}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:TechCell-PC\Tech Cell
Date: 2018-10-19 05:48:16.283
Description:
Digitalização de Windows Defender interrompida antes da conclusão.
ID da Digitalização:{65D97CDD-081E-4A5B-9CBA-8AB221C4209E}
Tipo da Digitalização:Anti-spyware
Parâmetros da Digitalização:Verificação Rápida
Usuário:TechCell-PC\Tech Cell
Date: 2018-06-22 23:03:07.852
Description:
Windows Defender detectou spyware ou outro software possivelmente indesejado.
Para obter mais informações, consulte:
http://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Prorat&threatid=4129
Nome:Backdoor:Win32/Prorat
ID:4129
Severidade:Grave
Categoria:Backdoor
Caminho Encontrado:containerfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProConnective.exe;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#2;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#9;filelocalcopy:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{D4B061E6-29DA-4BA1-8DC3-70A3948EF421}-Prorat-2.1.zip;webfile:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{D4B061E6-29DA-4BA1-8DC3-70A3948EF421}-Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip;webfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip
Tipo de Detecção:Concreto
Origem da Detecção:Downloads e anexos
Status:Desconhecido
Usuário:TechCell-PC\Tech Cell
Nome do Processo:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Date: 2018-06-22 23:03:07.851
Description:
Windows Defender detectou spyware ou outro software possivelmente indesejado.
Para obter mais informações, consulte:
http://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/Small&threatid=15508
Nome:TrojanDownloader:Win32/Small
ID:15508
Severidade:Grave
Categoria:Trojan Downloader
Caminho Encontrado:containerfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#12;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#12->(VFS:wservice.exe);file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#13;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#13->(VFS:wservice.exe);filelocalcopy:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{FA844AAC-C969-48F0-ADCE-B11EC4240510}-Prorat-2.1.zip;webfile:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{FA844AAC-C969-48F0-ADCE-B11EC4240510}-Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip;webfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip
Tipo de Detecção:Heurística
Origem da Detecção:Downloads e anexos
Status:Desconhecido
Usuário:TechCell-PC\Tech Cell
Nome do Processo:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Date: 2018-07-06 23:40:48.975
Description:
Windows Defender encontrou um erro ao tentar carregar assinaturas e tentará reverter ao conjunto de assinaturas válidas.
Tentativas de Assinaturas:Atual
Código de Erro:0x80070002
Descrição do erro:O sistema não pode encontrar o arquivo especificado.
Versão da assinatura:0.0.0.0
Versão do mecanismo:0.0.0.0
Date: 2018-06-30 14:00:13.474
Description:
O recurso de proteção de tempo real Windows Defender encontrou um erro e falhou.
Recurso:Ao Acessar
Código de Erro:0x80501002
Descrição do erro:O programa não pode localizar arquivos de definição que ajudam a detectar software indesejado. Verifique se há atualizações de arquivos de definição e tente novamente. Para obter informações sobre como instalar atualizações, consulte Ajuda e Suporte.
Razão:O Monitoramento em Tempo Real parou de funcionar por um motivo desconhecido. Reinicie o serviço para recuperar.
==================== Informações da Memória ===========================
Processador: Intel(R) Celeron(R) CPU E3200 @ 2.40GHz
Percentagem de memória em uso: 76%
RAM física total: 2047.24 MB
RAM física disponível: 476.39 MB
Virtual Total: 4094.48 MB
Virtual disponível: 1666.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:180.8 GB) (Free:77.8 GB) NTFS
Drive d: (HD_TECHCELL) (Fixed) (Total:117.19 GB) (Free:84.36 GB) NTFS
\\?\Volume{3195a19f-55d6-11e8-8025-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Tabela de Partições ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: C5097221)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=180.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS)
==================== Fim de Addition.txt ============================