Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
Ran by Junior (21-11-2016 15:06:09)
Running from C:\Users\Junior\Downloads
Windows 8.1 Enterprise N (X64) (2016-11-18 23:48:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3706271474-4175755911-1845364617-500 - Administrator - Disabled)
Guest (S-1-5-21-3706271474-4175755911-1845364617-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3706271474-4175755911-1845364617-1003 - Limited - Enabled)
Junior (S-1-5-21-3706271474-4175755911-1845364617-1001 - Administrator - Enabled) => C:\Users\Junior
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\uTorrent) (Version: 3.4.9.42923 - BitTorrent Inc.)
Account - Contabilidade Didática - Versão 2016.21 (Setembro/2016) (HKLM-x32\...\Account - Contabilidade Didática_is1) (Version: - Magnética Sistemas de Informação Ltda.)
Ansel (Version: 375.86 - NVIDIA Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Mafia III (HKLM-x32\...\Mafia III_is1) (Version: - )
Mafia III Update v20161109 (HKLM\...\bWFmaWFpaWk_is1) (Version: 1 - )
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.86 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Graphics Driver 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.86 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 375.86 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.3.1.62709 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Samsung Drive Manager (HKLM-x32\...\{9F1A6A24-4901-42F6-A355-5DD2B82E62AE}) (Version: 1.0.174 - Clarus, Inc.)
Setup versão 1.5 (HKLM-x32\...\{009476EE-71CA-4629-9823-FBB0616E4C9C}_is1) (Version: 1.5 - Microsoft, Inc.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\Spotify) (Version: 1.0.42.151.g19de0aa6 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Viva version 1.0 (HKLM-x32\...\{15436961-4543-4CA2-ACBF-0B5C73D9E737}_is1) (Version: 1.0 - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinThruster (HKLM-x32\...\WinThruster) (Version: 1.16.8 - Solvusoft Corporation) <==== ATTENTION
WinThruster (Version: 1.16.8 - Solvusoft Corporation) Hidden <==== ATTENTION
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02ACAA9F-9371-4741-B051-E72F788A5EA5} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-10] (NVIDIA Corporation)
Task: {0B5E9AE5-B66A-4905-B7A6-908E1DC2F9BC} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-10] (NVIDIA Corporation)
Task: {0DC46BBF-202B-4ED4-934E-727E2204EDFD} - System32\Tasks\WinThruster64-Junior-Startup => C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe [2015-10-11] (Solvusoft Corporation) <==== ATTENTION
Task: {3636D3B5-E2AF-4A6F-B435-F04D82E37D21} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd)
Task: {6BE34E78-0430-46EF-B06D-8AA0A6B93878} - System32\Tasks\KMS Server Daily Activate => C:\Windows\AutoKMS_VL_ALL\AutoKMS_VL_ALL.exe [2013-11-19] (MDL)
Task: {7AB7FC76-847C-412A-8F90-8EBB45C9CD57} - System32\Tasks\KMS Server OnLogon Activate => C:\Windows\AutoKMS_VL_ALL\AutoKMS_VL_ALL.exe [2013-11-19] (MDL)
Task: {7E382E9B-40C5-489A-B4E2-C124B0DF32A0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-10] (NVIDIA Corporation)
Task: {8932FD98-5B86-4FC7-911D-56FF4AEFD5D8} - System32\Tasks\WinThruster64-Junior-Notification => C:\Program Files\Solvusoft\WinThruster\Sync.exe [2015-10-11] (Solvusoft Corporation) <==== ATTENTION
Task: {A45833CB-9025-4CB7-997F-5F7A7290058F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-18] (Google Inc.)
Task: {AC296103-B0CE-4EB1-8117-E6A06B080722} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-10] (NVIDIA Corporation)
Task: {ACC3A0C1-633F-4CF4-AD5F-E2C7FC741A17} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-10] (NVIDIA Corporation)
Task: {AFC60099-B8C7-4F98-A1C8-9E70753497CA} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-10] (NVIDIA Corporation)
Task: {CE0085BD-7BC0-49D5-B3C6-ED460E438B18} - System32\Tasks\CLARUS_DRIVE_MANAGER\Clarus_Drive_Manager => C:\Program Files (x86)\Clarus\Samsung Drive Manager\Drive Manager.exe [2015-08-19] (Clarus, Inc.)
Task: {E1817FA4-475A-4F61-AEE3-6432A3F5C1F6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-18] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WinThruster64-Junior-Notification.job => C:\Program Files\Solvusoft\WinThruster\Sync.exe <==== ATTENTION
Task: C:\Windows\Tasks\WinThruster64-Junior-Startup.job => C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe <==== ATTENTION
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-11-18 22:12 - 2016-11-10 21:48 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-18 22:00 - 2016-11-10 20:38 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-18 21:53 - 2016-11-08 19:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-18 21:53 - 2016-11-08 19:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-19 00:46 - 2015-10-05 22:28 - 00346624 _____ () C:\Program Files (x86)\Viva\viva.exe
2016-11-18 22:27 - 2016-11-18 22:27 - 01484776 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\Battle.net Helper.exe
2016-11-18 22:22 - 2016-11-18 22:22 - 00022024 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2016-11-18 22:12 - 2016-11-10 21:48 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-09-07 19:14 - 2016-09-08 01:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-08-31 17:02 - 2016-08-31 23:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-10-12 17:58 - 2016-10-12 23:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll
2016-08-31 17:02 - 2016-08-31 23:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-08-31 17:02 - 2016-08-31 23:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-11-18 22:27 - 2016-10-12 23:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-07-04 14:17 - 2016-07-04 20:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-11-18 22:19 - 2016-11-18 22:19 - 51776112 _____ () C:\Users\Junior\AppData\Roaming\Spotify\libcef.dll
2016-11-18 22:19 - 2016-11-18 22:19 - 01803888 _____ () C:\Users\Junior\AppData\Roaming\Spotify\libglesv2.dll
2016-11-18 22:19 - 2016-11-18 22:19 - 00086128 _____ () C:\Users\Junior\AppData\Roaming\Spotify\libegl.dll
2016-11-18 22:22 - 2016-11-18 22:22 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-11-18 22:22 - 2016-11-18 22:22 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2016-11-18 22:12 - 2016-11-10 21:48 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-18 22:27 - 2016-11-18 22:28 - 37247976 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libcef.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 00540336 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\ortp.dll
2016-11-18 22:27 - 2016-11-18 22:27 - 06402560 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\battle.net.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libEGL.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libGLESv2.dll
2016-11-18 22:27 - 2016-08-04 18:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-18 22:12 - 2016-11-10 21:48 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-11-18 22:28 - 2016-11-18 22:28 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libglesv2.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libegl.dll
2016-11-18 22:27 - 2016-11-18 22:27 - 00990696 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\ffmpegsumo.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 11:25 - 2013-08-22 11:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Junior\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{0bec8605-6c32-4bdd-a0c5-bddfe4dfe1ca}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C9ED06F7-DA83-42AE-B244-4DEFA1E231C0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C5530D2A-1D29-4AE5-8A42-5C58BAAACE27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{4DC7F2AE-614A-4889-9B3A-BCD272E3DF8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{44EADEA0-A873-41E2-9FCE-7F5DFCCCAFEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ECCD0433-AAF8-4F69-B23F-CFDFA8088BFC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{851C1BF7-2EB8-41CC-89F4-0DE24E709A98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C7A99DCF-E8E0-4041-88FB-E85F3B8E39F0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6109347A-C642-42B0-808B-A0DFE60B1789}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F62DFE6D-B0FA-44E5-9951-8745F54BD874}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{722A7E47-17C7-4C1B-9876-58A29D62764B}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4D59C9CD-8F52-43B9-8B87-DA185681ADBF}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E54ABA17-51D0-447E-BA2E-4A2675C2AABE}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DC32A784-5307-4A61-9F7F-F8F417B6285A}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4A1B146A-D93E-4F62-828D-EFFEBD1E339F}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{191998F7-99A6-415C-8F8D-DDE8324E3C32}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{B0293684-AFED-466F-A101-0A7C0CA8F397}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
FirewallRules: [{ABF35D8E-43C0-40A4-9D30-A1E9F6209CB0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{55AA6C96-3568-4F00-8B86-3A5514056751}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{B7DFA2C9-E80F-44AC-BE9F-7CB92043697F}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{2FC9F973-72D1-42C2-88F8-83EC70BC8918}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{A412A4CA-F306-45D2-BE0B-E00E3BAE3FB5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{F14630B7-577C-463F-B9C6-001158D1FEE5}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2823CDE5-73EA-4F40-9693-8EEF3E6B6FD8}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
==================== Restore Points =========================
18-11-2016 22:10:41 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
21-11-2016 13:57:17 Installed DirectX
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/21/2016 02:40:24 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
Error: (11/21/2016 01:57:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
.
Error: (11/21/2016 01:56:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: launcher.exe_Mafia III Launcher, version: 1.0.0.0, time stamp: 0x581ae330
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x11b2167a
Faulting process id: 0x1d0c
Faulting application start time: 0x01d2440fbe0f3492
Faulting application path: C:\Program Files (x86)\Mafia III\launcher.exe
Faulting module path: unknown
Report Id: 19b544fc-b003-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/21/2016 01:56:44 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: launcher.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NullReferenceException
Stack:
at W3Launcher.SplashPage.OnGameButtonClick_Play(System.Object, System.EventArgs)
at W3Launcher.GamepadButton.Button_Click(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
at System.Windows.Controls.Primitives.ButtonBase.OnClick()
at System.Windows.Controls.Button.OnClick()
at System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
at System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
at System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
at System.Windows.Input.InputManager.ProcessStagingArea()
at System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
at System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
at System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
at System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.Run()
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at W3Launcher.App.Main()
Error: (11/21/2016 01:19:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.4.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1b2c
Start Time: 01d24409e95566ce
Termination Time: 4294967295
Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\LiveComm.exe
Report Id: de195471-affd-11e6-9bf7-00e04c4de551
Faulting package full name: microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/20/2016 11:14:31 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
Error: (11/19/2016 09:45:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: vlc.exe, version: 2.2.4.0, time stamp: 0x00000004
Faulting module name: ntdll.dll, version: 6.3.9600.16408, time stamp: 0x523d45fa
Exception code: 0xc0000005
Fault offset: 0x0003e7fb
Faulting process id: 0xf04
Faulting application start time: 0x01d2425a77d9bf58
Faulting application path: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: b5acff91-ae4d-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/19/2016 09:42:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: vlc.exe, version: 2.2.4.0, time stamp: 0x00000004
Faulting module name: ntdll.dll, version: 6.3.9600.16408, time stamp: 0x523d45fa
Exception code: 0xc0000005
Fault offset: 0x0003e7fb
Faulting process id: 0x738
Faulting application start time: 0x01d24259f4c22575
Faulting application path: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 32b6d8dd-ae4d-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/18/2016 10:53:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: regsvr32.exe, version: 6.3.9600.16384, time stamp: 0x52158bce
Faulting module name: ntdll.dll, version: 6.3.9600.16408, time stamp: 0x523d45fa
Exception code: 0xc0000374
Fault offset: 0x000e2fd8
Faulting process id: 0xe28
Faulting application start time: 0x01d241ff5ebbf655
Faulting application path: C:\Windows\SysWOW64\regsvr32.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 9c8e7a4c-adf2-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/18/2016 10:41:15 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
System errors:
=============
Error: (11/21/2016 02:38:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (11/21/2016 02:38:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.
Error: (11/21/2016 02:35:23 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800f0206: SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Mobile MTP Device.
Error: (11/21/2016 02:35:19 PM) (Source: DCOM) (EventID: 10010) (User: MARCELO)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (11/21/2016 02:35:19 PM) (Source: DCOM) (EventID: 10010) (User: MARCELO)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (11/21/2016 02:35:19 PM) (Source: DCOM) (EventID: 10010) (User: MARCELO)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (11/21/2016 02:23:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800f0206: SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Mobile MTP Device.
Error: (11/18/2016 11:00:00 PM) (Source: VDS Dynamic Provider) (EventID: 22) (User: )
Description: The provider encountered an error while converting the basic disk to a dynamic disk. status=C00000BB, Disk number=1
Error: (11/18/2016 10:40:48 PM) (Source: DCOM) (EventID: 10016) (User: MARCELO)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
and APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
to the user Marcelo\Junior SID (S-1-5-21-3706271474-4175755911-1845364617-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/18/2016 10:40:48 PM) (Source: DCOM) (EventID: 10016) (User: MARCELO)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
and APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
to the user Marcelo\Junior SID (S-1-5-21-3706271474-4175755911-1845364617-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 28%
Total physical RAM: 16362.16 MB
Available physical RAM: 11750.75 MB
Total Virtual: 18794.16 MB
Available Virtual: 13477.33 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931 GB) (Free:605.83 GB) NTFS
Drive d: (Win81AIO-x64-en-US-Nov2013) (CDROM) (Total:3.82 GB) (Free:0 GB) UDF
Drive e: (New Volume) (Fixed) (Total:931.39 GB) (Free:842.82 GB) NTFS
Drive f: (Mafia III) (CDROM) (Total:41 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: F61FCA4C)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by Junior (21-11-2016 15:06:09)
Running from C:\Users\Junior\Downloads
Windows 8.1 Enterprise N (X64) (2016-11-18 23:48:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3706271474-4175755911-1845364617-500 - Administrator - Disabled)
Guest (S-1-5-21-3706271474-4175755911-1845364617-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3706271474-4175755911-1845364617-1003 - Limited - Enabled)
Junior (S-1-5-21-3706271474-4175755911-1845364617-1001 - Administrator - Enabled) => C:\Users\Junior
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\uTorrent) (Version: 3.4.9.42923 - BitTorrent Inc.)
Account - Contabilidade Didática - Versão 2016.21 (Setembro/2016) (HKLM-x32\...\Account - Contabilidade Didática_is1) (Version: - Magnética Sistemas de Informação Ltda.)
Ansel (Version: 375.86 - NVIDIA Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Mafia III (HKLM-x32\...\Mafia III_is1) (Version: - )
Mafia III Update v20161109 (HKLM\...\bWFmaWFpaWk_is1) (Version: 1 - )
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.86 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Graphics Driver 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.86 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 375.86 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.3.1.62709 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Samsung Drive Manager (HKLM-x32\...\{9F1A6A24-4901-42F6-A355-5DD2B82E62AE}) (Version: 1.0.174 - Clarus, Inc.)
Setup versão 1.5 (HKLM-x32\...\{009476EE-71CA-4629-9823-FBB0616E4C9C}_is1) (Version: 1.5 - Microsoft, Inc.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\Spotify) (Version: 1.0.42.151.g19de0aa6 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Viva version 1.0 (HKLM-x32\...\{15436961-4543-4CA2-ACBF-0B5C73D9E737}_is1) (Version: 1.0 - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinThruster (HKLM-x32\...\WinThruster) (Version: 1.16.8 - Solvusoft Corporation) <==== ATTENTION
WinThruster (Version: 1.16.8 - Solvusoft Corporation) Hidden <==== ATTENTION
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02ACAA9F-9371-4741-B051-E72F788A5EA5} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-10] (NVIDIA Corporation)
Task: {0B5E9AE5-B66A-4905-B7A6-908E1DC2F9BC} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-10] (NVIDIA Corporation)
Task: {0DC46BBF-202B-4ED4-934E-727E2204EDFD} - System32\Tasks\WinThruster64-Junior-Startup => C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe [2015-10-11] (Solvusoft Corporation) <==== ATTENTION
Task: {3636D3B5-E2AF-4A6F-B435-F04D82E37D21} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd)
Task: {6BE34E78-0430-46EF-B06D-8AA0A6B93878} - System32\Tasks\KMS Server Daily Activate => C:\Windows\AutoKMS_VL_ALL\AutoKMS_VL_ALL.exe [2013-11-19] (MDL)
Task: {7AB7FC76-847C-412A-8F90-8EBB45C9CD57} - System32\Tasks\KMS Server OnLogon Activate => C:\Windows\AutoKMS_VL_ALL\AutoKMS_VL_ALL.exe [2013-11-19] (MDL)
Task: {7E382E9B-40C5-489A-B4E2-C124B0DF32A0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-10] (NVIDIA Corporation)
Task: {8932FD98-5B86-4FC7-911D-56FF4AEFD5D8} - System32\Tasks\WinThruster64-Junior-Notification => C:\Program Files\Solvusoft\WinThruster\Sync.exe [2015-10-11] (Solvusoft Corporation) <==== ATTENTION
Task: {A45833CB-9025-4CB7-997F-5F7A7290058F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-18] (Google Inc.)
Task: {AC296103-B0CE-4EB1-8117-E6A06B080722} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-10] (NVIDIA Corporation)
Task: {ACC3A0C1-633F-4CF4-AD5F-E2C7FC741A17} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-10] (NVIDIA Corporation)
Task: {AFC60099-B8C7-4F98-A1C8-9E70753497CA} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-10] (NVIDIA Corporation)
Task: {CE0085BD-7BC0-49D5-B3C6-ED460E438B18} - System32\Tasks\CLARUS_DRIVE_MANAGER\Clarus_Drive_Manager => C:\Program Files (x86)\Clarus\Samsung Drive Manager\Drive Manager.exe [2015-08-19] (Clarus, Inc.)
Task: {E1817FA4-475A-4F61-AEE3-6432A3F5C1F6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-18] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WinThruster64-Junior-Notification.job => C:\Program Files\Solvusoft\WinThruster\Sync.exe <==== ATTENTION
Task: C:\Windows\Tasks\WinThruster64-Junior-Startup.job => C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe <==== ATTENTION
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-11-18 22:12 - 2016-11-10 21:48 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-18 22:00 - 2016-11-10 20:38 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-18 21:53 - 2016-11-08 19:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-18 21:53 - 2016-11-08 19:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-19 00:46 - 2015-10-05 22:28 - 00346624 _____ () C:\Program Files (x86)\Viva\viva.exe
2016-11-18 22:27 - 2016-11-18 22:27 - 01484776 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\Battle.net Helper.exe
2016-11-18 22:22 - 2016-11-18 22:22 - 00022024 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2016-11-18 22:12 - 2016-11-10 21:48 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-09-07 19:14 - 2016-09-08 01:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-08-31 17:02 - 2016-08-31 23:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-10-12 17:58 - 2016-10-12 23:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll
2016-08-31 17:02 - 2016-08-31 23:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-08-31 17:02 - 2016-08-31 23:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-01-26 23:49 - 2016-01-27 05:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-11-18 22:27 - 2016-10-12 23:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-07-04 14:17 - 2016-07-04 20:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-11-18 22:19 - 2016-11-18 22:19 - 51776112 _____ () C:\Users\Junior\AppData\Roaming\Spotify\libcef.dll
2016-11-18 22:19 - 2016-11-18 22:19 - 01803888 _____ () C:\Users\Junior\AppData\Roaming\Spotify\libglesv2.dll
2016-11-18 22:19 - 2016-11-18 22:19 - 00086128 _____ () C:\Users\Junior\AppData\Roaming\Spotify\libegl.dll
2016-11-18 22:22 - 2016-11-18 22:22 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-11-18 22:22 - 2016-11-18 22:22 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2016-11-18 22:12 - 2016-11-10 21:48 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-18 22:27 - 2016-11-18 22:28 - 37247976 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libcef.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 00540336 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\ortp.dll
2016-11-18 22:27 - 2016-11-18 22:27 - 06402560 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\battle.net.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libEGL.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libGLESv2.dll
2016-11-18 22:27 - 2016-08-04 18:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-18 22:12 - 2016-11-10 21:48 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-18 22:12 - 2016-11-10 21:48 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-18 22:12 - 2016-11-10 21:48 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-11-18 22:28 - 2016-11-18 22:28 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libglesv2.dll
2016-11-18 22:28 - 2016-11-18 22:28 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\libegl.dll
2016-11-18 22:27 - 2016-11-18 22:27 - 00990696 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8142\ffmpegsumo.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 11:25 - 2013-08-22 11:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Junior\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{0bec8605-6c32-4bdd-a0c5-bddfe4dfe1ca}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3706271474-4175755911-1845364617-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C9ED06F7-DA83-42AE-B244-4DEFA1E231C0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C5530D2A-1D29-4AE5-8A42-5C58BAAACE27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{4DC7F2AE-614A-4889-9B3A-BCD272E3DF8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{44EADEA0-A873-41E2-9FCE-7F5DFCCCAFEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ECCD0433-AAF8-4F69-B23F-CFDFA8088BFC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{851C1BF7-2EB8-41CC-89F4-0DE24E709A98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C7A99DCF-E8E0-4041-88FB-E85F3B8E39F0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6109347A-C642-42B0-808B-A0DFE60B1789}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F62DFE6D-B0FA-44E5-9951-8745F54BD874}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{722A7E47-17C7-4C1B-9876-58A29D62764B}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4D59C9CD-8F52-43B9-8B87-DA185681ADBF}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E54ABA17-51D0-447E-BA2E-4A2675C2AABE}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DC32A784-5307-4A61-9F7F-F8F417B6285A}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4A1B146A-D93E-4F62-828D-EFFEBD1E339F}] => (Allow) C:\Users\Junior\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{191998F7-99A6-415C-8F8D-DDE8324E3C32}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{B0293684-AFED-466F-A101-0A7C0CA8F397}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
FirewallRules: [{ABF35D8E-43C0-40A4-9D30-A1E9F6209CB0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{55AA6C96-3568-4F00-8B86-3A5514056751}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{B7DFA2C9-E80F-44AC-BE9F-7CB92043697F}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{2FC9F973-72D1-42C2-88F8-83EC70BC8918}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{A412A4CA-F306-45D2-BE0B-E00E3BAE3FB5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{F14630B7-577C-463F-B9C6-001158D1FEE5}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2823CDE5-73EA-4F40-9693-8EEF3E6B6FD8}C:\users\junior\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\junior\appdata\roaming\spotify\spotify.exe
==================== Restore Points =========================
18-11-2016 22:10:41 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
21-11-2016 13:57:17 Installed DirectX
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/21/2016 02:40:24 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
Error: (11/21/2016 01:57:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
.
Error: (11/21/2016 01:56:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: launcher.exe_Mafia III Launcher, version: 1.0.0.0, time stamp: 0x581ae330
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x11b2167a
Faulting process id: 0x1d0c
Faulting application start time: 0x01d2440fbe0f3492
Faulting application path: C:\Program Files (x86)\Mafia III\launcher.exe
Faulting module path: unknown
Report Id: 19b544fc-b003-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/21/2016 01:56:44 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: launcher.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NullReferenceException
Stack:
at W3Launcher.SplashPage.OnGameButtonClick_Play(System.Object, System.EventArgs)
at W3Launcher.GamepadButton.Button_Click(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
at System.Windows.Controls.Primitives.ButtonBase.OnClick()
at System.Windows.Controls.Button.OnClick()
at System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
at System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
at System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
at System.Windows.Input.InputManager.ProcessStagingArea()
at System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
at System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
at System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
at System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.Run()
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at W3Launcher.App.Main()
Error: (11/21/2016 01:19:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.4.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1b2c
Start Time: 01d24409e95566ce
Termination Time: 4294967295
Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\LiveComm.exe
Report Id: de195471-affd-11e6-9bf7-00e04c4de551
Faulting package full name: microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/20/2016 11:14:31 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
Error: (11/19/2016 09:45:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: vlc.exe, version: 2.2.4.0, time stamp: 0x00000004
Faulting module name: ntdll.dll, version: 6.3.9600.16408, time stamp: 0x523d45fa
Exception code: 0xc0000005
Fault offset: 0x0003e7fb
Faulting process id: 0xf04
Faulting application start time: 0x01d2425a77d9bf58
Faulting application path: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: b5acff91-ae4d-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/19/2016 09:42:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: vlc.exe, version: 2.2.4.0, time stamp: 0x00000004
Faulting module name: ntdll.dll, version: 6.3.9600.16408, time stamp: 0x523d45fa
Exception code: 0xc0000005
Fault offset: 0x0003e7fb
Faulting process id: 0x738
Faulting application start time: 0x01d24259f4c22575
Faulting application path: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 32b6d8dd-ae4d-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/18/2016 10:53:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: regsvr32.exe, version: 6.3.9600.16384, time stamp: 0x52158bce
Faulting module name: ntdll.dll, version: 6.3.9600.16408, time stamp: 0x523d45fa
Exception code: 0xc0000374
Fault offset: 0x000e2fd8
Faulting process id: 0xe28
Faulting application start time: 0x01d241ff5ebbf655
Faulting application path: C:\Windows\SysWOW64\regsvr32.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 9c8e7a4c-adf2-11e6-9bf7-00e04c4de551
Faulting package full name:
Faulting package-relative application ID:
Error: (11/18/2016 10:41:15 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
System errors:
=============
Error: (11/21/2016 02:38:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (11/21/2016 02:38:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.
Error: (11/21/2016 02:35:23 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800f0206: SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Mobile MTP Device.
Error: (11/21/2016 02:35:19 PM) (Source: DCOM) (EventID: 10010) (User: MARCELO)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (11/21/2016 02:35:19 PM) (Source: DCOM) (EventID: 10010) (User: MARCELO)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (11/21/2016 02:35:19 PM) (Source: DCOM) (EventID: 10010) (User: MARCELO)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (11/21/2016 02:23:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800f0206: SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Mobile MTP Device.
Error: (11/18/2016 11:00:00 PM) (Source: VDS Dynamic Provider) (EventID: 22) (User: )
Description: The provider encountered an error while converting the basic disk to a dynamic disk. status=C00000BB, Disk number=1
Error: (11/18/2016 10:40:48 PM) (Source: DCOM) (EventID: 10016) (User: MARCELO)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
and APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
to the user Marcelo\Junior SID (S-1-5-21-3706271474-4175755911-1845364617-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/18/2016 10:40:48 PM) (Source: DCOM) (EventID: 10016) (User: MARCELO)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
and APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
to the user Marcelo\Junior SID (S-1-5-21-3706271474-4175755911-1845364617-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 28%
Total physical RAM: 16362.16 MB
Available physical RAM: 11750.75 MB
Total Virtual: 18794.16 MB
Available Virtual: 13477.33 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931 GB) (Free:605.83 GB) NTFS
Drive d: (Win81AIO-x64-en-US-Nov2013) (CDROM) (Total:3.82 GB) (Free:0 GB) UDF
Drive e: (New Volume) (Fixed) (Total:931.39 GB) (Free:842.82 GB) NTFS
Drive f: (Mafia III) (CDROM) (Total:41 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: F61FCA4C)
Partition: GPT.
==================== End of Addition.txt ============================