Resultado do exame Adicional Farbar Recovery Scan Tool (x64) VersÃ£o: 15.11.2018
Executado por Tech Cell (20-11-2018 18:47:54)
Executando a partir de C:\Users\Tech Cell\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-05-12 11:27:21)
Modo da InicializaÃ§Ã£o: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-17454397-3655801466-2647378754-500 - Administrator - Disabled)
Convidado (S-1-5-21-17454397-3655801466-2647378754-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-17454397-3655801466-2647378754-1002 - Limited - Enabled)
Tech Cell (S-1-5-21-17454397-3655801466-2647378754-1000 - Administrator - Enabled) => C:\Users\Tech Cell

==================== Central de SeguranÃ§a ========================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicaÃ§Ã£o "Oculto" podem ser adicionados Ã  fixlist para desocultÃ¡-los. Os programas adwares devem ser desinstalados manualmente.)

ÂµTorrent (HKU\S-1-5-21-17454397-3655801466-2647378754-1000\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
3uTools (HKLM-x32\...\3uTools) (Version: 2.29.002 - ShangHai ZhangZheng Network Technology Co., Ltd.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
ActivePerl 5.12.2 Build 1202 (HKLM-x32\...\{EC610A5F-4957-4CA3-8825-D91D5D492086}) (Version: 5.12.1202 - ActiveState)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
AtualizaÃ§Ãµes da NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByeiCloud v4.4.1 By Technical Computer Solutions (HKLM-x32\...\{516FEF5B-834B-42B5-839E-5F57C038BC8A}_is1) (Version: 4.4.1 - Technical Computer Solutions)
Camtasia Studio 8 (HKLM-x32\...\{904AC0F0-F69E-467E-A719-B083940F608A}) (Version: 8.5.2.1999 - TechSmith Corporation)
CAT (HKLM-x32\...\{22DC24EB-1A44-4637-920D-F59AFD5E90F8}) (Version: 1.0.0 - Willian C Santana)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Emergency Download Driver (HKLM-x32\...\{9ED72246-E35D-4B03-8369-605E82465A29}) (Version: 1.1.5.1416 - Nokia)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.22.3 - Androxyde)
FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time)
Fuse Drivers x64 (HKLM-x32\...\{06904B2B-5000-4C58-9471-256BA1A303BE}) (Version: 11.34.1 - Nokia)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{E0303B6A-C675-4102-95DA-C013625BFA99}) (Version: 1.00.00001 - Rockstar Games)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - Nome de sua empresa:)
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.10.0 - Intel)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
iTunes (HKLM\...\{932473A4-0F6C-41A1-B62D-F2C9A4F09EE3}) (Version: 12.9.1.4 - Apple Inc.)
Java(TM) SE Development Kit 11.0.1 (64-bit) (HKLM\...\{F4039C0F-E4C1-5905-9E7D-DDA8EDE365BC}) (Version: 11.0.1.0 - Oracle Corporation)
LG Mobile Driver (HKLM-x32\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.2.0 - LG Electronics)
Lumia UEFI Blue Driver (HKLM-x32\...\{5E80E23F-3BB2-4827-A703-EA7E180AA6A9}) (Version: 1.1.5.1416 - Nokia)
MariaDB 10.1 (HKLM-x32\...\{5B6218D8-6DD9-4FAA-9D42-33058BB2C962}) (Version: 10.1.19.0 - MariaDB Corporation Ab) Hidden
MariaDB 10.1 (HKLM-x32\...\MariaDB 10.1) (Version: 10.1.19.0 - MariaDB Corporation Ab)
Mediatek RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.39.173 - MediatekWiFi)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (PortuguÃªs (Brasil)) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - pt-br (HKLM\...\ProPlusRetail - pt-br) (Version: 16.0.11001.20108 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Mobistel Cynus F4 Drivers(x64) (HKLM-x32\...\{C3F57607-592D-458F-81AE-349FD05DFA74}) (Version: 1.00 - Mobistel)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mp3tag v2.90a (HKLM-x32\...\Mp3tag) (Version: 2.90a - Florian Heidenreich)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MultiSync Desktop versÃ£o 2.1 (HKLM-x32\...\{10063053-8B50-4C50-9986-A4945F4328A4}_is1) (Version: 2.1 - Multilaser)
NOKIA 3806 USB DRIVER Ver:1.5 (HKLM-x32\...\{6AE35C55-F02A-41EE-B694-8F2706FE4819}) (Version: 2.00.0000 - NOKIA)
Nokia Care Suite PST 5 (HKLM-x32\...\{6DD01BF0-18A3-4608-BBB1-AE6C956EDCC2}) (Version: 5.4.119.1432 - Nokia)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.1 - Duodian Technology Co. Ltd.)
NVIDIA Driver de controle do 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Driver de grÃ¡ficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0416-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
OS Plus 5.0 - Cubo Sistemas (HKLM-x32\...\{2C0D9EE9-BCC5-4041-A9FA-EE67EFF9BE55}_is1) (Version:  - Cubo Sistemas)
Pacote de Driver do Windows - Android (WUDFRd) WPD  (04/07/2013 5.2.5326.4762) (HKLM\...\11A0B871BAD4BD9A57E59C3635218E2427AA2C62) (Version: 04/07/2013 5.2.5326.4762 - Android)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/27/2013 7.0.0000.00001) (HKLM\...\DD35777ACC26D30A3585F9724356AF8111A6F38C) (Version: 08/27/2013 7.0.0000.00001 - Google, Inc.)
Pacote de Driver do Windows - libusb-win32 (libusb0) USB  (01/18/2012 1.2.6.0) (HKLM\...\E7818806C41577F170D21B994A5D37A97B7FA478) (Version: 01/18/2012 1.2.6.0 - libusb-win32)
Pacote de Driver do Windows - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Pacote de Driver do Windows - USB Devices (usbUDisc) USB  (01/24/2014 1.0.0.1) (HKLM\...\B2A7D664285C0D269794E0F21D756D5138D1FB29) (Version: 01/24/2014 1.0.0.1 - USB Devices)
Painel de controle da NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{9590C850-8A55-43DB-A413-DFF6E5636570}) (Version: 10.30.0.0 - Nokia)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Python 2.7.15 (64-bit) (HKLM\...\{16CD92A4-0152-4CB7-8FD6-9788D3363617}) (Version: 2.7.15150 - Python Software Foundation)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SFT Dongle (HKLM\...\{5F6A2304-2D76-4F72-A378-40795CE9B48E}) (Version: 3.1.4 - Gsm_X_Team)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{49F7DD82-FC83-48BF-86C6-CFE6E1E233E1}) (Version: 7.1 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{1FA68E27-2951-42E8-9F57-1A7F6581B4FD}) (Version: 7.1 - Apple Inc.)
UltraISO Premium V9.65 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Uni-Android 7.01 (HKLM-x32\...\Uni-Android 7.01) (Version: 7.01 - www.uni-android.com)
USB Serial Port Driver (x64) (HKLM-x32\...\{53012BD2-D1A3-4530-9AE2-B0C503B5C1C2}) (Version: 2013.30.0.313 - Nokia)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.64 - VSO Software)
Wampserver64 3.1.4 (HKLM\...\{wampserver64}_is1) (Version: 3.1.4 - Dominique Ottello aka Otomatic)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM-x32\...\{C97989C1-551F-4F41-A069-2A49567FD36B}) (Version: 1.1.6.1416 - Nokia)
WinUSB Drivers ext (HKLM-x32\...\{A0B1E1BF-BEF5-4748-800B-E54ED9CDF8CE}) (Version: 1.1.10.1426 - Nokia)
Wise Program Uninstaller 2.2.5 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.2.5 - WiseCleaner.com, Inc.)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-17454397-3655801466-2647378754-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Nenhum Arquivo
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-03-18] ()
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-09-23] (Florian Heidenreich)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Nenhum Arquivo
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Nenhum Arquivo
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Nenhum Arquivo

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

Task: {06D2CECE-9A42-440F-A589-CCDB15FB03ED} - System32\Tasks\AdobeGCInvoker-1.0-TechCell-PC-Tech Cell => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {0BDF67FC-9B4E-4F27-9864-DA9C59E7D01C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {10FE4F36-3758-40D0-B5A8-E0F6AD627AF9} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {169D78BD-8C22-47D4-98C4-C6C9FBABC58F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {18A2D21E-1AB1-4693-9FDA-FAC7FF614AA1} - System32\Tasks\{1A8BC1A4-63E3-4AE5-BA6C-615D4ABDCFD6} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {1BB5598D-A9B5-44E4-936A-C83296FE7911} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {313229F8-9990-448D-B06C-76633A989C76} - System32\Tasks\{556B973A-2053-4857-A080-C7B2E5EBAC0B} => C:\Windows\system32\pcalua.exe -a "D:\Havij Pro v1.16\Havij v1.16.exe" -d "D:\Havij Pro v1.16"
Task: {377773A8-588A-4B66-8898-A79D270ADD12} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-17] (Microsoft Corporation)
Task: {493AAD54-FD82-426F-97C0-9B0093D50B9F} - System32\Tasks\{9D42CCA1-BBDD-4067-AD17-CB8FCB995265} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe"
Task: {497233A8-592D-42DF-BCE7-99E15B102326} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {5A35297D-0592-413A-BCD7-B3CD74ECAD73} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-17] (Microsoft Corporation)
Task: {69D8CDB8-745F-4D57-85E6-10A77E6A29AC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-02] (Microsoft Corporation)
Task: {6B5E1E45-2E08-46D6-BD9B-0BCFBCB5D470} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-15] (Google Inc.)
Task: {6D2EFD7A-B652-4D65-B639-1340D2E547FA} - System32\Tasks\Rerun Warsaw's CoreFixer => C:\Users\TECHCE~1\AppData\Local\Temp\is-45K87.tmp\corefixer.exe <==== ATENÃÃO
Task: {6DD06EE9-0786-479E-B81B-FF2931E8DE36} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {761B0F3C-333C-42A3-BD35-63B4EBF20743} - System32\Tasks\svchost => c:\windows\resources\svchost.exe [2018-11-18] () <==== ATENÃÃO
Task: {7F774ADF-7DDF-4977-B94C-26A539F366B9} - System32\Tasks\{6189B7FC-E7EC-2DC4-EF2C-E13D12C6D1E7} => C:\Program Files (x86)\enGYEaY.exe <==== ATENÃÃO
Task: {8F60E03B-0926-487D-B9AE-C3F0AD8B077E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {936DEB3E-D25C-4CB0-932E-91FC28D60170} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-02] (Microsoft Corporation)
Task: {A2EA9FBB-8537-4504-B387-31CD408C2CE4} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {BBDE2E6A-D578-48B4-83DF-9180493C1F62} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {C6927E2B-54C1-47DB-A186-5B3C2D05C77E} - System32\Tasks\{C92056A5-9CCB-4F46-B204-F99D0EC61643} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\foldershare\uninstaller.exe" -d "C:\Program Files (x86)\foldershare"
Task: {DE9CF451-CF12-4E2E-A51C-174A64D10CF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-15] (Google Inc.)

(Se uma entrada for incluÃ­da na fixlist, o arquivo da tarefa (.job) serÃ¡ movido. O arquivo que estÃ¡ sendo executado pela tarefa nÃ£o serÃ¡ movido.)


==================== Atalhos & WMI ========================

(As entradas podem ser listadas para serem restauradas ou removidas.)


ShortcutWithArgument: C:\Users\Tech Cell\Desktop\Telecine Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=hdgbobgiklhnjkoldkgdidinjfemhdel
ShortcutWithArgument: C:\Users\Tech Cell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome\Telecine Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=hdgbobgiklhnjkoldkgdidinjfemhdel

==================== MÃ³dulos Carregados (Whitelisted) ==============

2018-05-15 22:28 - 2016-11-14 09:15 - 000135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-10-21 02:17 - 2018-10-21 02:17 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-10-21 02:17 - 2018-10-21 02:17 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-02-27 21:08 - 2018-02-27 21:08 - 000614856 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2018-03-18 21:40 - 2018-03-18 21:40 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2016-11-04 12:01 - 2016-11-04 12:01 - 011762120 _____ () C:\Program Files (x86)\MariaDB10.1\bin\mysqld.exe
2018-05-15 23:31 - 2016-11-14 10:30 - 000367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 003611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2013-10-17 15:27 - 2013-10-17 15:27 - 000166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2018-05-15 23:31 - 2016-11-14 10:30 - 001988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 002665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 001840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2018-11-15 13:38 - 2018-11-08 20:14 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libglesv2.dll
2018-11-15 13:38 - 2018-11-08 20:14 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libegl.dll
2018-05-15 23:31 - 2016-11-14 10:30 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-16 20:34 - 2015-03-16 20:34 - 000151552 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Locale\pt_br\PDFMaker\PDFMOfficeAddin.PTB
2018-05-21 16:51 - 2018-10-19 08:00 - 000304720 _____ () C:\Program Files (x86)\Microsoft Office\Root\Office16\IEAWSDC.DLL

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluÃ­da na fixlist, somente o ADS serÃ¡ removido.)


==================== Modo de SeguranÃ§a (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O valor "AlternateShell" serÃ¡ restaurado.)


==================== AssociaÃ§Ã£o (Whitelisted) ===============

(Se uma entrada for incluÃ­da na fixlist, o Ã­tem no Registro serÃ¡ restaurado para o padrÃ£o ou removido.)


==================== Internet Explorer confiÃ¡vel/restrito ===============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro.)


==================== Hosts ConteÃºdo: ==========================

(Se necessÃ¡rio, a diretiva Hosts: pode ser incluÃ­da na fixlist para redefinir o Hosts.)

2018-08-02 10:01 - 2018-11-10 10:54 - 004194586 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 mydownloaddomain.com
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com

==================== Outras Ãreas ============================

(Atualmente nÃ£o hÃ¡ nenhuma correÃ§Ã£o automÃ¡tica para esta seÃ§Ã£o.)

HKU\S-1-5-21-17454397-3655801466-2647378754-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tech Cell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows estÃ¡ habilitado.

==================== MSCONFIG/TASK MANAGER Ã­tens desabilitados ==

Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida.

MSCONFIG\Services: AIPS => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\startupfolder: C:^Users^Tech Cell^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Enviar para o OneNote.lnk => C:\Windows\pss\Enviar para o OneNote.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Tech Cell^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Shortcut to Primary output from Start (Active).lnk => C:\Windows\pss\Shortcut to Primary output from Start (Active).lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Microsoft System Diagnostic.exe => C:\ProgramData\Microsoft System Diagnostic.exe
MSCONFIG\startupreg: Nox => D:\Program Files\Nox\bin\Nox.exe
MSCONFIG\startupreg: PSwitch => C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
MSCONFIG\startupreg: wermgr => C:\ProgramData\Microsoft\Windows\WER\wermgr.exe

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

FirewallRules: [{224A7F2D-E3E4-49B9-A7C4-E1E6C717055E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{83B9A51F-D4B5-4D84-A83A-9B70F43F1997}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DAAD5545-4163-4ADC-BC23-85B1700224D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FA00BE1A-69A7-4F25-8AF5-FBCD3978B80C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{DE3A40EA-1999-4332-B452-865690D0D201}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FE7A0E7E-62C7-43CB-B1FC-85C9D722FCEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2BDC6F4-C1B3-4EF7-965D-7F07A087C0AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F327935C-2516-4A49-BC7C-FAEFDA1C423C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{B9D6BCE1-E2F7-455A-B11D-82A8C1B2F8D2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{EC5F218D-C805-4203-A17A-FE095499369E}] => (Allow) LPort=1542
FirewallRules: [{232D45A4-8711-4B34-B2B9-266A7350B415}] => (Allow) LPort=1542
FirewallRules: [{239A3D09-A778-4796-AD3D-7A480B779A34}] => (Allow) LPort=53
FirewallRules: [{C2967515-0F90-462F-9BED-7EC79C585FBF}] => (Allow) LPort=53
FirewallRules: [{E23DF820-BCE3-4BF2-8A52-543A09890543}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{4FEC858E-1A88-499B-83FC-85C326858909}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{583269A7-0788-4023-BD9B-C3E211A59771}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{B31C3684-4C00-4CB1-A6FC-56E0DED17706}] => (Allow) LPort=1688
FirewallRules: [TCP Query User{CF16EB98-F421-4DE3-AC51-DC0D4E3C0196}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [UDP Query User{E160B08E-7F0C-4077-A21E-D6B68769304A}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [{DA24D647-5DD6-44A0-A2FB-1B82E8BB9E3F}] => (Allow) LPort=7359
FirewallRules: [{0E194C9E-DE33-40C8-BE16-5380164F8B6C}] => (Allow) LPort=8096
FirewallRules: [{10E08C70-71AD-40A9-A04E-ED40B96CC9DD}] => (Allow) LPort=8920
FirewallRules: [{27A19011-D622-4AEF-AAC6-6E3DD3CF7791}] => (Allow) LPort=8317
FirewallRules: [TCP Query User{A6957FFE-89EF-4202-8D8E-C7C838EDD33C}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{587502B0-0B15-4E3F-B1E5-4206E319C769}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{F381E3D3-0460-476A-99DD-D959E61D6BB5}C:\program files (x86)\common files\nokia\fuse\fuse.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuse.exe
FirewallRules: [UDP Query User{D9FB7E6F-6653-431E-8992-F84BA51A572F}C:\program files (x86)\common files\nokia\fuse\fuse.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuse.exe
FirewallRules: [TCP Query User{76DBA0C1-A278-427F-AA83-184E39FF117B}C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe
FirewallRules: [UDP Query User{7B71FE7F-3923-47C3-ACD7-5E1EF4EDA7D7}C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\multi software updater 5\multisoftwareupdater.exe
FirewallRules: [TCP Query User{20BA2FCC-292B-4B37-BDD7-BB1E74BD84E6}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{B806A9A2-9F5B-4114-B322-5F0F4F0CA8F3}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{B4F6ACC3-2551-4426-A302-163EE2A665DA}] => (Allow) C:\Users\Tech Cell\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{91783EE9-4BD1-4240-9E6E-8BF9764E3CE6}] => (Allow) C:\Users\Tech Cell\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{F75F3B0A-F435-49BA-9226-0517FD153924}C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe
FirewallRules: [UDP Query User{E3B90B93-0F72-48BC-8B44-FA837A7B34BA}C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.35\bin\httpd.exe
FirewallRules: [{9299C3C7-0414-4EB1-A68E-37F6FDF0C2D4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{E4ED47BA-4EFD-4886-8CAB-F7394D927249}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [TCP Query User{E51D2B39-96C6-45E8-8518-F32EDA57A03C}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{D0150C75-8216-416F-85DF-728C03053557}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => (Allow) C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{1A4F181C-F727-4B8D-AF2D-B946D0F8E1DC}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{959EE1CE-5203-4475-8D8C-67FAE078FEA1}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => (Allow) C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{DF2D1568-8E80-4DF3-97F4-52E21664DFF4}] => (Allow) C:\Program Files (x86)\MariaDB10.1\bin\mysqld.exe
FirewallRules: [{6C0AA5C6-60C3-4CDB-AFEC-A0E1DFF8C784}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7596551A-72C4-4AB1-AF63-367FC826B8BE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{45BCA901-7376-4B8E-B884-41D5678F5E62}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{2769E5C2-A890-4F59-AF50-1C4D927A2B75}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{823D82C7-DFFC-46B3-8F9E-1D9F24FBEF68}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{C558E04E-836E-48E6-A34B-3EB64A8B7CC4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{4AD2EF96-DCA3-4672-B7C1-32942857529E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D9268D82-48C0-400B-9CC9-81EAF69DC5BE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{92749C83-D834-4E0B-863B-713ADF923287}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{22C28E13-7526-4AF0-A87A-60545A0010E9}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7F72EB47-7F42-41E9-B73C-6F6E6131847A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1C29CE4B-368C-488D-9D2C-D7228D350089}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{B5526C3D-C61A-4BF0-AA40-239E601DD468}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{FDDCEA18-DDA0-4B02-881C-3EDB58A91125}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{37FA0767-CBF6-4592-A5A1-735B167D2520}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{886A2007-8E7B-40B2-8D7D-FDC9D759ED3D}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A1302963-445C-40D1-B6AF-6FECF4F30B27}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{33200ABE-3227-49A5-BA7A-4533210FAC8A}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{3E4EA06F-2FE6-4B64-B5D9-9B32F13F4E6A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D0D1183E-2DD5-4546-B82C-01AC97466317}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5CB35CC3-1446-467A-80B3-2D7321EFCCC7}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{599BE89C-62B0-4789-96BC-5485D0ECB7AF}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{FE0A38B1-95FD-49D9-B493-5AA0AF23D6A2}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2B3776E7-08D8-46CE-8609-AA261F871CD5}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C9DF582F-FD6E-45A6-9082-009D1C266F9F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{47F7B20D-B3F0-4E07-8E11-B09657FF87A2}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{057CEFF0-CAE5-422C-A2F3-5918DB90E0C1}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{08BA4819-0003-45E6-97A3-FA4E0BACE196}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{575CF8AA-2F5E-4BA1-A776-6EEC71B2E3E3}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5D041B8D-7673-41F2-824A-E865900CB0E2}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{538EE26F-E21B-434B-8E66-52B71B85EF93}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A11F570E-2CAA-4008-8FCD-9B9E8DD0A588}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{3D831D9F-2EEC-408E-B9D1-1C5BC8601C38}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{819E7AC4-6D4A-4B76-B853-6EDDC24C9759}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A73400D4-5BA6-46B7-AD7E-40711A926434}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7B97CE9E-DCE1-4229-B690-832F6C6E6736}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{FA81E83C-7E20-4C70-B1F4-98B081747A04}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{79DDD2E2-B618-46F6-83CF-3B92D87E4509}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D0395927-5403-4E89-A0AF-4E8416ABF03A}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{DDC13EAA-14EC-4F80-A169-B52D33401669}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{9A595A99-ADAE-462A-93DD-4EEC4F025341}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{22667864-3831-4F29-84BB-7F003ACEFEA4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{1D257430-FD1B-459C-BA3F-423736CCBE86}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{CAC230F9-54BC-4BF4-AB34-CB3F2FEFEAD7}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E5E3F296-1E06-482D-88D4-0A550991666F}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C1D59394-474B-42E2-BE22-5A4AF092A521}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1B8FD4B9-8C87-47B1-8DB3-8451E1327788}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{91E18B0B-9BD5-43FC-9D0D-083A913A9B7D}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{705FF619-13A8-486B-B008-11F782479A75}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{F81CB6AD-3DF8-44EA-ACC3-853F1F71F0DE}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{BDBD2F12-5C25-4A61-980A-08247BCD0E38}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{C575128E-0F91-45DF-A861-54ABB2A1EE4C}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{63ADF5F2-BDC7-46B2-A60B-93100061ED82}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{4A6078AA-78F6-4F4D-90F8-4A79AA482E69}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A2D2A82A-0BD5-409F-8903-D7868782FA48}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{B8B8B1DB-FD77-40DB-8113-8B3C9B9BA12E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2E7471EB-14A1-46FE-BB1B-BA8229BDA031}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{865B1308-3BE9-47AB-B69F-4381FE9474C7}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E73A0A02-9C16-4415-9985-12A53580AF9A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{DCEB1007-1C86-4489-B561-73088145E778}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{BDDE4911-1393-4454-A93A-B2EC0CE24A66}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{5D398A62-7D24-487E-B81E-CE4F44B2A9CA}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{F2443D82-F36B-4F92-8441-B15B944CE9F9}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{64AE3C6A-126E-44DB-BC66-5C53350F8E15}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7E39625C-179A-4A50-8B8C-7B3F939A2E44}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D85BD824-72B4-4026-827B-CA4DA0311FFD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{1BFCB4B0-7081-42E4-AA2F-EA9A60F07D91}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{114D75CC-3BA4-42EC-9391-C837FC962D2F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2B809A65-C9EC-4B7F-904D-71E64412F100}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{23D28C2E-6B3F-40ED-BE53-F9E27590D43E}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{D3BAB176-1BB6-4FA6-A230-63CAB9C8DF80}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2AFF85E0-C77C-46A8-898B-D2D21ECE4C46}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{0B5EA9E2-F037-4B4D-BB49-9401D4A1EF46}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{62E3EB87-1A3D-413E-8275-3B5302A1359F}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{0A3103E7-7BBC-46C2-A7A7-02CF96919965}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A87B9F83-EB4B-4A4E-96A8-344522EA33AF}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{961ECD0E-85A4-4C15-9976-B32552235F42}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{7D1B0F03-8979-4F25-9E2F-A79F1B3E2539}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{33BB0D04-5D5C-4FB0-857A-53C483D79098}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{E54CB1A4-3581-4B30-AFBD-ECD1F88A3167}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{069761A4-5BD2-459A-A8C5-498961968CB4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{8DD3051E-BFBC-48B8-8577-93801C5A5590}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{79CD2C52-1137-44C3-BFB7-9FD7B9632B87}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{CD22D13B-7C10-4491-A7C3-D9F8D1993632}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{735499D9-4E35-4FAA-B4FB-4BAD47626E04}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{820F97FF-544C-4416-81FD-7761E8968643}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{99ADA453-F900-4D13-8F88-D50A85E90903}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{F1C3B718-8E20-43BB-A36D-F4AA9D106A7D}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{72758ECF-E1E9-48A3-964C-A6F6AEAF5057}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{1ECA4905-BAC6-4332-B6E4-14673CC2A47C}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{2DE0F442-ABA8-42DC-90EE-B2E0D64C66F9}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{3599BDC8-2478-42A3-8766-A9F443790A57}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{565E5062-09A9-464C-8E9F-F097899ACFA5}] => (Allow) D:\Program Files\Nox\bin\Nox.exe
FirewallRules: [{5912EFC1-BC96-4869-9E20-7936322E63E1}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{F7D8E9D1-3DAA-4A22-B421-3995E6F34E0A}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{A8270725-74DD-4F67-8446-FB0E34EF93A1}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{C1BD19AA-1C46-421D-8F12-116352289671}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{A22C4E8A-2DD4-4527-A5CF-D5BFD88D39E4}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{19C8DDFE-95DB-4D9B-8A42-5EBF8E05E184}] => (Allow) C:\Windows\SysWOW64\svchost.exe
FirewallRules: [{978A9088-9093-441E-97E7-9569DB0CD827}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe
FirewallRules: [{699025D2-5D42-42AD-97EA-C2C6CEB3A406}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{AA228CD7-F76B-47DD-AE0B-510842A2A440}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{C95A47FE-32C1-4DE0-8AFC-7A7B32133BA7}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{3F584956-DA58-4283-9E78-5FC930C830E8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{41FFFEF0-1A59-4614-B730-1E5F2E6742A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{959FF83C-DCD6-47BB-81AB-013223535EC7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4B9D0313-37C6-4E78-82E7-21C7FEB174A7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3ECFDB80-2F65-42EA-879E-BDD173E5101C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84B74FEE-5A02-402F-B7D3-D4D2362C89C1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{91D2C92B-78F5-4AE0-9713-E2388F229B50}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe
FirewallRules: [{0FD39F25-7162-4036-8C17-C1D4081ABEF6}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe
FirewallRules: [{272111F3-CF9A-402B-AC17-EF2F493A0E46}] => (Allow) LPort=80
FirewallRules: [{8DBE06EB-B716-4E6E-A504-AF7C017D967A}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
FirewallRules: [{8911C46B-449C-4561-AB67-F9AAEDBD8ABE}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe

==================== Pontos de RestauraÃ§Ã£o =========================

16-11-2018 21:07:24 Installed iTunes
17-11-2018 01:36:02 Installed Java(TM) SE Development Kit 11.0.1 (64-bit)
17-11-2018 02:28:51 Removed PL-2303 USB-to-Serial
17-11-2018 12:03:02 Installed SFT Dongle
17-11-2018 21:46:16 Removed SDFormatter.
19-11-2018 13:43:34 Windows Update

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: NetGroup Packet Filter Driver
Description: NetGroup Packet Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: npf
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Sony so0107 ADB Interface Driver
Description: Sony so0107 ADB Interface Driver
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Sony
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (11/20/2018 04:55:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/20/2018 02:00:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/20/2018 01:56:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/20/2018 01:28:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/20/2018 01:18:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/19/2018 07:40:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/19/2018 02:41:59 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Um problema impediu que os dados do Programa de AperfeiÃ§oamento da ExperiÃªncia do UsuÃ¡rio fossem enviados para a Microsoft, (Erro 80004005).

Error: (11/19/2018 01:35:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


Erros de Sistema:
=============
Error: (11/20/2018 05:58:31 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.

Error: (11/20/2018 05:58:31 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (11/20/2018 05:26:28 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.

Error: (11/20/2018 05:26:28 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (11/20/2018 05:10:27 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.

Error: (11/20/2018 05:10:27 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.

Error: (11/20/2018 05:02:26 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 40.

Error: (11/20/2018 05:02:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORIDADE NT)
Description: O seguinte alerta fatal foi recebido: 70.


Windows Defender:
===================================
Date: 2018-11-09 21:10:11.005
Description: 
DigitalizaÃ§Ã£o de Windows Defender interrompida antes da conclusÃ£o.
ID da DigitalizaÃ§Ã£o:{BC955227-F663-44E4-A588-F01566828E80}
Tipo da DigitalizaÃ§Ã£o:Anti-spyware
ParÃ¢metros da DigitalizaÃ§Ã£o:VerificaÃ§Ã£o RÃ¡pida
UsuÃ¡rio:TechCell-PC\Tech Cell

Date: 2018-10-19 05:50:04.559
Description: 
DigitalizaÃ§Ã£o de Windows Defender interrompida antes da conclusÃ£o.
ID da DigitalizaÃ§Ã£o:{4558AF17-2F14-4E4E-804A-F3C2B31306CA}
Tipo da DigitalizaÃ§Ã£o:Anti-spyware
ParÃ¢metros da DigitalizaÃ§Ã£o:VerificaÃ§Ã£o RÃ¡pida
UsuÃ¡rio:TechCell-PC\Tech Cell

Date: 2018-10-19 05:48:16.283
Description: 
DigitalizaÃ§Ã£o de Windows Defender interrompida antes da conclusÃ£o.
ID da DigitalizaÃ§Ã£o:{65D97CDD-081E-4A5B-9CBA-8AB221C4209E}
Tipo da DigitalizaÃ§Ã£o:Anti-spyware
ParÃ¢metros da DigitalizaÃ§Ã£o:VerificaÃ§Ã£o RÃ¡pida
UsuÃ¡rio:TechCell-PC\Tech Cell

Date: 2018-06-22 23:03:07.852
Description: 
Windows Defender detectou spyware ou outro software possivelmente indesejado.
Para obter mais informaÃ§Ãµes, consulte:
http://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Prorat&threatid=4129
Nome:Backdoor:Win32/Prorat
ID:4129
Severidade:Grave
Categoria:Backdoor
Caminho Encontrado:containerfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProConnective.exe;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#2;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#9;filelocalcopy:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{D4B061E6-29DA-4BA1-8DC3-70A3948EF421}-Prorat-2.1.zip;webfile:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{D4B061E6-29DA-4BA1-8DC3-70A3948EF421}-Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip;webfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip
Tipo de DetecÃ§Ã£o:Concreto
Origem da DetecÃ§Ã£o:Downloads e anexos
Status:Desconhecido
UsuÃ¡rio:TechCell-PC\Tech Cell
Nome do Processo:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Date: 2018-06-22 23:03:07.851
Description: 
Windows Defender detectou spyware ou outro software possivelmente indesejado.
Para obter mais informaÃ§Ãµes, consulte:
http://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/Small&threatid=15508
Nome:TrojanDownloader:Win32/Small
ID:15508
Severidade:Grave
Categoria:Trojan Downloader
Caminho Encontrado:containerfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#12;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#12->(VFS:wservice.exe);file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#13;file:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip->Prorat 2.1/ProRat.exe->[RSRCEmb]#13->(VFS:wservice.exe);filelocalcopy:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{FA844AAC-C969-48F0-ADCE-B11EC4240510}-Prorat-2.1.zip;webfile:C:\ProgramData\Microsoft\Windows Defender\LocalCopy\{FA844AAC-C969-48F0-ADCE-B11EC4240510}-Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip;webfile:C:\Users\Tech Cell\Downloads\Prorat-2.1.zip|https://d17.usercdn.com/d/tulx6sj7tr2fvxij6pb4nekgbp5bwfisgxkvm2xbw7pofnotdkrrydi3lbz7yu7ja6zo4eoj/Prorat-2.1.zip
Tipo de DetecÃ§Ã£o:HeurÃ­stica
Origem da DetecÃ§Ã£o:Downloads e anexos
Status:Desconhecido
UsuÃ¡rio:TechCell-PC\Tech Cell
Nome do Processo:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Date: 2018-07-06 23:40:48.975
Description: 
Windows Defender encontrou um erro ao tentar carregar assinaturas e tentarÃ¡ reverter ao conjunto de assinaturas vÃ¡lidas.
Tentativas de Assinaturas:Atual
CÃ³digo de Erro:0x80070002
DescriÃ§Ã£o do erro:O sistema nÃ£o pode encontrar o arquivo especificado. 
VersÃ£o da assinatura:0.0.0.0
VersÃ£o do mecanismo:0.0.0.0

Date: 2018-06-30 14:00:13.474
Description: 
O recurso de proteÃ§Ã£o de tempo real Windows Defender encontrou um erro e falhou.
Recurso:Ao Acessar
CÃ³digo de Erro:0x80501002
DescriÃ§Ã£o do erro:O programa nÃ£o pode localizar arquivos de definiÃ§Ã£o que ajudam a detectar software indesejado. Verifique se hÃ¡ atualizaÃ§Ãµes de arquivos de definiÃ§Ã£o e tente novamente. Para obter informaÃ§Ãµes sobre como instalar atualizaÃ§Ãµes, consulte Ajuda e Suporte. 
RazÃ£o:O Monitoramento em Tempo Real parou de funcionar por um motivo desconhecido. Reinicie o serviÃ§o para recuperar.

==================== InformaÃ§Ãµes da MemÃ³ria =========================== 

Processador: Intel(R) Celeron(R) CPU E3200 @ 2.40GHz
Percentagem de memÃ³ria em uso: 76%
RAM fÃ­sica total: 2047.24 MB
RAM fÃ­sica disponÃ­vel: 476.39 MB
Virtual Total: 4094.48 MB
Virtual disponÃ­vel: 1666.95 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:180.8 GB) (Free:77.8 GB) NTFS
Drive d: (HD_TECHCELL) (Fixed) (Total:117.19 GB) (Free:84.36 GB) NTFS

\\?\Volume{3195a19f-55d6-11e8-8025-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Tabela de PartiÃ§Ãµes ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: C5097221)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=180.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================