Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-08-2017 Ran by Bruno (18-08-2017 04:55:36) Running from C:\Users\Bruno\AppData\Local\Temp\scoped_dir5108_2075 Windows 8 Pro (X64) (2016-08-10 15:14:54) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrador (S-1-5-21-1261950228-423552960-3154138455-500 - Administrator - Disabled) Bruno (S-1-5-21-1261950228-423552960-3154138455-1001 - Administrator - Enabled) => C:\Users\Bruno Convidado (S-1-5-21-1261950228-423552960-3154138455-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: AVG AntiVirus Free Edition 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) . . . (HKLM\...\{DCAFF63A-A26F-4809-A00D-27AD6733ACB3}) (Version: 2.1.28.3 - Intel) Hidden . . . (HKLM-x32\...\{C7B0C705-9987-44A2-B495-4101DAEDBFE0}) (Version: 2.6.2.4 - Intel) Hidden µTorrent (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.) A.V.A. Alliance of Valiant Arms™ (HKLM\...\Steam App 102700) (Version: - Red Duck Inc.) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis) Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated) AlphaGo (HKLM-x32\...\{118B6258-BF13-47C9-8D46-B2A349196B5D}) (Version: 1.0.0 - Default Company Name) <==== ATTENTION AlphaGo (HKLM-x32\...\{2C652C0A-EC71-4797-8077-F67649177AB0}) (Version: 1.0.2 - Default Company Name) <==== ATTENTION AlphaGo (HKLM-x32\...\{51639FCA-678F-4D71-8044-E16E3D49187F}) (Version: 1.0.7 - Default Company Name) <==== ATTENTION AlphaGo (HKLM-x32\...\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}) (Version: 1.1.0 - Default Company Name) <==== ATTENTION AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION AlphaGo (HKLM-x32\...\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}) (Version: 1.2.5 - AlphaGo) <==== ATTENTION APB Reloaded (HKLM\...\Steam App 113400) (Version: - Reloaded Productions) APB Reloaded (HKLM-x32\...\APB Reloaded) (Version: 1.6.7.672769 - ) AVG 2013 (HKLM\...\{AE909CD1-9874-497E-A22A-A4C007963600}) (Version: 13.0.3556 - AVG Technologies) Hidden AVG 2016 (HKLM\...\{967C1A08-E50D-4559-A133-530897C5654B}) (Version: 16.0.4779 - AVG Technologies) Hidden Blockstorm (HKLM\...\Steam App 263060) (Version: - GhostShark) Brawlhalla (HKLM\...\Steam App 291550) (Version: - Blue Mammoth Games) BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.) Clicker Heroes (HKLM\...\Steam App 363970) (Version: - Playsaurus) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.73 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) CrossFire BR (HKLM-x32\...\CrossFire BR_is1) (Version: V5186 - Z8Games.com) Crossfire Europe (HKLM-x32\...\Crossfire Europe_is1) (Version: V1447 - gamerage.com) Crossout (HKLM\...\Steam App 386180) (Version: - Targem Games) Crossout Launcher 1.0.3.18 (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\CrossOutLauncher_is1) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0193 - Disc Soft Ltd) Devils Share (HKLM\...\Steam App 388870) (Version: - Digital Homicide Studios) Discord (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) DriverToolkit version 8.5.1.0 (HKLM-x32\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.5.1.0 - Megaify Software) Facebook Gameroom 1.1.0.0 (HKLM-x32\...\{6099B4D5-E8FF-407A-B653-955D3F1E10EB}) (Version: 1.1.0.0 - Facebook) FIFA 2005 (HKLM-x32\...\{E4E3E62E-16D7-425E-009C-DCB5E64F5955}) (Version: - ) Fraps (HKLM-x32\...\Fraps) (Version: - ) Garrys Mod version 14.04.19 (HKLM\...\{C8F834F5-46EA-4933-8AA9-F6CD7D29EED0}_is1) (Version: 14.04.19 - Strogino CS Portal) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) I Am Alive (HKLM-x32\...\{62952508-8C6F-4D31-9802-099FC67B41C3}) (Version: 1.00.0 - Ubisoft) Hidden I Am Alive (HKLM-x32\...\InstallShield_{62952508-8C6F-4D31-9802-099FC67B41C3}) (Version: 1.00.0 - Ubisoft) Infestation: The New Z (HKLM\...\Steam App 555570) (Version: - Fredaikis AB) Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.4.1001 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{66307462-7d19-4f1a-af82-aa04b6017f05}) (Version: 2.6.2.4 - Intel) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Just Cause 1.00.0000 (HKLM-x32\...\{C9E270CC-AE42-4BD8-B9C6-1EB3A8657FF5}) (Version: 1.00.0000 - Eidos) League of Legends (HKLM-x32\...\{2F5D7825-7460-43B1-B467-7F9737557108}) (Version: 4.2.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) LogMeIn Hamachi (HKLM-x32\...\{89E5827E-EAE7-47F2-A57F-52D92C671983}) (Version: 2.2.0.558 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.558 - LogMeIn, Inc.) Medal of Honor Pacific Assault(tm) MPDemo (HKLM-x32\...\{50A74CBC-D522-4B6E-B144-F60EEB5A7573}) (Version: 1.0 - Electronic Arts) Medal of Honor: Pacific Assault™ (HKLM-x32\...\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}) (Version: 1.2.1.281 - Electronic Arts) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MicroVolts Surge (HKLM\...\Steam App 109400) (Version: - NQ Games) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mitos.is: The Game (HKLM\...\Steam App 389570) (Version: - Freakinware Studios) Mortal Online (HKLM\...\Steam App 287920) (Version: - Star Vault AB) MTA:SA v1.5.4 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.4 - Multi Theft Auto) Need for Speed Carbon MULTi12 - ElAmigos version 1.4 (HKLM-x32\...\{E63073C7-F84A-4DDC-BB86-E511A59D4090}_is1) (Version: 1.4 - EA Games) Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - ) NVIDIA PhysX (HKLM-x32\...\{DEA314C4-0929-4250-BC92-98E4C105F28D}) (Version: 9.10.0129 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 47.0.2631.55 (HKLM-x32\...\Opera 47.0.2631.55) (Version: 47.0.2631.55 - Opera Software) Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.4.17.36908 - Electronic Arts, Inc.) PAC-MAN and the Ghostly Adventures (HKLM-x32\...\UEFDTUFOYW5kdGhlR2hvc3RseUFkdmVudHVyZXM=_is1) (Version: 1 - ) Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC) Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) PointBlank (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\PointBlank) (Version: 2.1.0 - Ongame S.A & Zepetto) <==== ATTENTION Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.) ROBLOX Player for Bruno (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation) ROBLOX Studio for Bruno (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation) Rocket League (HKLM-x32\...\Rocket League_is1) (Version: - Psyonix) S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version: - Dragonfly GF Co., LTD) Shockwave (HKLM-x32\...\Shockwave) (Version: - ) ShutdownTime version 1.0 (HKLM-x32\...\ShutdownTime_is1) (Version: 1.0 - WeMonetize) <==== ATTENTION Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.) Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Torchlight (HKLM-x32\...\GOGPACKTORCHLIGHT_is1) (Version: 2.0.0.12 - GOG.com) Unity Web Player (HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\UnityWebPlayer) (Version: 5.3.6f1 - Unity Technologies ApS) Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games) Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) Wise Game Booster 1.39 (HKLM-x32\...\Wise Game Booster_is1) (Version: 1.39 - WiseCleaner.com, Inc.) Wise Memory Optimizer 3.51 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.51 - WiseCleaner.com, Inc.) Worm.is: The Game (HKLM\...\Steam App 466910) (Version: - Freakinware Studios) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1261950228-423552960-3154138455-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Bruno\AppData\Local\Roblox\Versions\version-b6923b4ee6414bd0\RobloxProxy64.dll (ROBLOX Corporation) ContextMenuHandlers1: [AVG Shell Extension] -> {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} => C:\Program Files (x86)\AVG\AVG2013\avgsea.dll -> No File ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2017-08-13] (Intel Corporation) ContextMenuHandlers6: [AVG Shell Extension] -> {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} => C:\Program Files (x86)\AVG\AVG2013\avgsea.dll -> No File ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {08FF106E-338F-46E0-8F55-7C23C0518469} - System32\Tasks\Huzipyterleck Builder => C:\Program Files (x86)\Jholyhanch\grerother.exe Task: {0E201627-E5F8-4A5B-9B77-1F09077A6D95} - System32\Tasks\Driver Booster SkipUAC (Bruno) => C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe Task: {0F8576A8-C596-41BD-A69F-8033666ED371} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_131_pepper.exe [2017-06-19] (Adobe Systems Incorporated) Task: {25D38D84-6E00-446D-9215-29190680B5C7} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation) Task: {267B5767-7505-4F51-B55B-7D09AB0E917C} - System32\Tasks\WinTOOL => C:\ProgramData\wintools\WintoolUprI.exe Task: {2AB39B20-04DD-45E6-A5F0-DF31B5E2E3EB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.) Task: {2FEAAF8B-DF43-437E-A6AB-B239DF237060} - System32\Tasks\Opera scheduled Autoupdate 1478644768 => C:\Program Files (x86)\Opera\launcher.exe [2017-08-14] (Opera Software) Task: {308837E3-CEF9-46B1-9BF2-3C4A4F424588} - System32\Tasks\{419C25C7-C02A-4616-8A34-38155A0EFE78} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Droid4X\uninst.exe" Task: {45DC354D-86A2-4616-8269-59D4F93394AE} - System32\Tasks\Windows-PG => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe C:\windows\psgo\psgo.ps1 <==== ATTENTION Task: {62E37F04-F93A-4030-B434-72F2296DBC81} - System32\Tasks\999790v8a115h13 => C:\Windows\system32\rundll32.exe "C:\ProgramData\999790v8a115h13\999790v8a115h13.dll",bgozrak <==== ATTENTION Task: {6920BFD3-1217-4900-821C-8020E02D0FA5} - System32\Tasks\NJB Commander Portable => C:\Windows\system32\rundll32.exe "C:\Program Files\NJB Commander Portable\NJB Commander Portable.dll",VgWAHYn <==== ATTENTION Task: {6CDED497-C1FA-4117-9B1D-ED24AB691567} - System32\Tasks\Google_SU => C:\Users\Bruno\AppData\Roaming\Mozilla\cmozilla.exe <==== ATTENTION Task: {70C15F5E-F495-4136-9DF5-F7585A445418} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-19] (Adobe Systems Incorporated) Task: {9D7D2715-5478-4BEE-906F-E233EF577E5F} - System32\Tasks\{7E474749-3CE4-4074-8C38-725AF9EBBC99} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Medal of Honor Pacific Assault(tm) MPDemo\mohpa_mpdemo.exe" -d C:\PROGRA~2\EAGAME~1\MEDALO~1 Task: {9E530B16-46D1-4E46-945C-8E62F40E05AA} - System32\Tasks\{E1157317-3BDF-47F8-8F6A-C8269BD04C49} => C:\Windows\system32\pcalua.exe -a C:\Users\Bruno\AppData\Local\Temp\Temp1_WBFSManager3.0.1-RTW-x86.zip\setup.exe <==== ATTENTION Task: {B64444BB-3EC2-48F2-95C9-2A555DED462E} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\ErrorReporting => C:\\ProgramData\\WindowsReporting\\wermgr.exe [2017-08-18] () Task: {D6A1D234-B574-4EE4-B381-3F01438C21D3} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-17] () Task: {E4322F11-7877-437F-AB36-220E1915AD90} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs" Task: {FEAAC6E7-97D8-448C-8B62-2E5EF40799C0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicações do Chrome\Tema Creator - Criar Temas Personalizados Chrome.lnk -> C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicações do Chrome () Shortcut: C:\Users\Bruno\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2313a548f316d22c\BrunoCr4zy - Chrome.lnk -> C:\Users\Bruno\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2313a548f316d22c () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation) ShortcutWithArgument: C:\Users\Bruno\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.amisites.com/?type=sc&ts=1484745358&z=0e658d41214297152e797d0g5z4b6z9m3z3w0ceq2e&from=che0812&uid=ST9500325AS_6VE3CJ9TXXXX6VE3CJ9T ==================== Loaded Modules (Whitelisted) ============== 2017-08-18 00:52 - 2015-06-01 08:27 - 002127360 _____ () C:\Program Files\NJB Commander Portable\NJB Commander Portable.dll 2017-01-08 21:44 - 2017-01-08 21:44 - 000145408 _____ () C:\Users\Bruno\AppData\Roaming\Plerzak\Phumaty.dll 2017-08-16 19:18 - 2017-08-16 19:18 - 090050136 _____ () C:\Program Files (x86)\Opera\47.0.2631.55\opera_browser.dll 2017-08-16 19:18 - 2017-08-16 19:18 - 003972696 _____ () C:\Program Files (x86)\Opera\47.0.2631.55\libglesv2.dll 2017-08-16 19:18 - 2017-08-16 19:18 - 000100440 _____ () C:\Program Files (x86)\Opera\47.0.2631.55\libegl.dll 2017-02-21 12:43 - 2017-02-21 09:11 - 000111616 _____ () c:\programdata\apple\apple application support\support.dll 2017-01-13 13:39 - 2017-01-12 06:51 - 000479232 _____ () c:\programdata\microsoft\identitycrl\ppcrlui.dll 2017-02-13 12:28 - 2017-05-17 16:05 - 001887232 _____ () c:\users\bruno\appdata\roaming\winsapsvc\winsap.dll 2017-04-27 11:56 - 2017-04-26 04:14 - 000108544 _____ () c:\programdata\apple\common\cloud\winhelper.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData:NT [40] AlternateDataStreams: C:\ProgramData:NT2 [432] AlternateDataStreams: C:\Users\All Users:NT [40] AlternateDataStreams: C:\Users\All Users:NT2 [432] AlternateDataStreams: C:\ProgramData\Application Data:NT [40] AlternateDataStreams: C:\ProgramData\Application Data:NT2 [432] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432] AlternateDataStreams: C:\ProgramData\TEMP:81E3BAD3 [1806] AlternateDataStreams: C:\Users\Bruno\Application Data:NT [40] AlternateDataStreams: C:\Users\Bruno\Application Data:NT2 [432] AlternateDataStreams: C:\Users\Bruno\AppData\Roaming:NT [40] AlternateDataStreams: C:\Users\Bruno\AppData\Roaming:NT2 [432] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2012-07-26 06:26 - 2017-08-18 02:01 - 000012830 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 plugpackdownload.net 127.0.0.1 texttotalk.org 127.0.0.1 gambling577.xyz 127.0.0.1 htagdownload.space 127.0.0.1 mybcnmonetize.com 127.0.0.1 dscdn.pw 127.0.0.1 gf.tools.avast.com 127.0.0.1 pair.ff.avast.com 127.0.0.1 ipm-provider.ff.avast.com 127.0.0.1 ipm-provider.ff.avast.com 127.0.0.1 ipm-provider.ff.avast.com 127.0.0.1 id.avast.com 127.0.0.1 v4618535.iavs9x.u.avast.com 127.0.0.1 v4618535.ivps9x.u.avast.com 127.0.0.1 v4618535.ivps9tiny.u.avast.com 127.0.0.1 v4618535.vpsnitro.u.avast.com 127.0.0.1 v4618535.vpsnitrotiny.u.avast.com 127.0.0.1 v4618535.iavs5x.u.avast.com 127.0.0.1 v7.stats.avast.com 127.0.0.1 v7.stats.avast.com 127.0.0.1 v7event.stats.avast.com 127.0.0.1 sm00.avast.com 127.0.0.1 submit5.avast.com 127.0.0.1 geoip.avast.com 127.0.0.1 w9448963.iavs9x.u.avast.com 127.0.0.1 w9448963.ivps9x.u.avast.com 127.0.0.1 w9448963.ivps9tiny.u.avast.com 127.0.0.1 w9448963.vpsnitro.u.avast.com 127.0.0.1 w9448963.vpsnitrotiny.u.avast.com 127.0.0.1 w9448963.iavs5x.u.avast.com There are 338 more lines. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1261950228-423552960-3154138455-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Bruno\Desktop\transferir.png DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: CG6Service => 2 MSCONFIG\Services: clean => 2 MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2 MSCONFIG\Services: FirefoxU => 2 MSCONFIG\Services: GhrCntvakokvaqapy.exe => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: Hamachi2Svc => 2 MSCONFIG\Services: HiPatchService => 2 MSCONFIG\Services: iSafeService => 2 MSCONFIG\Services: LiveUpdateSvc => 2 MSCONFIG\Services: LMIGuardianSvc => 2 MSCONFIG\Services: RzKLService => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2 MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 2 MSCONFIG\Services: Windows => 2 HKLM\...\StartupApproved\StartupFolder: => "PlutoTV.lnk" HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "IgfxTray" HKLM\...\StartupApproved\Run: => "Persistence" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "AVG_UI" HKLM\...\StartupApproved\Run32: => "RazerGameBooster" HKLM\...\StartupApproved\Run32: => "ShutdownTime" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\StartupFolder: => "Disable Key.lnk" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\StartupFolder: => "GamersFirst LIVE!.lnk" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "BlueStacks Agent" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "UpdateReminder" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "EvolveClient" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "background_fault" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "DriverMax_RESTART" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "GHFQTNOWITQUI85" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "4w5x5qxi4qe" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "s4hnjae2sz5" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "xb51hhekq0b" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "Nanera.vbs" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "ZHJOZKNDBW8A3HX" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "1XO5O8BRYXE2HD6" HKU\S-1-5-21-1261950228-423552960-3154138455-1001\...\StartupApproved\Run: => "WB1DIDXT4SQRT8Y" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [TCP Query User{BCEF3B46-444E-44A0-9C7C-A9ADC087FDA5}C:\users\bruno\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\bruno\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{576752EE-C5B6-4A0D-B6F7-3A70780594D7}C:\users\bruno\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\bruno\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{6B1ACC0B-AA95-4DB7-A13A-24DE58F04D1C}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{11551184-A890-48D2-A1DA-6E379D254A7B}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{2C97FD9F-F7D2-4441-8BEC-5481B9674CAB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{03502172-2BC1-4947-8F31-58C41ABA15AC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E59CBA82-3B90-4F01-BB67-A5DA8390C057}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{D0A77B12-63B7-42FB-9B9B-86C7BF172480}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{F902A1FA-0E46-4D76-8A15-94F05796138B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{A90B6998-EE9B-40B4-A795-21627E455D13}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{D7C0A54B-059F-4B93-B947-E907462BC0E6}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{84244186-2E33-45AB-A21E-225C7C1249B5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{311F389B-6E5E-4B5E-94E0-7B2C5CDD0F3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{C349F952-6016-4AFB-88DA-F90170EA9F27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{012095E5-42C9-4267-A7E6-83DCBD9FF5FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{1EC5477A-EF2F-415E-B57F-F421056667F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [TCP Query User{D153B14C-AC1E-421B-A805-879BED3AD8EC}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{19A896A8-997E-4253-A7AB-BB76F647033C}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{E4C76CDB-E829-421D-BF06-563F233F0ADE}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe FirewallRules: [UDP Query User{890ED01C-2591-4F9B-AED7-3C3C77A800B6}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe FirewallRules: [TCP Query User{76950A4F-23DB-4D79-8F12-BB007BE37BF4}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe FirewallRules: [UDP Query User{96273BCE-C65F-40A7-A19E-315C78C7D1F9}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe FirewallRules: [{B1F79BC8-4100-4222-8F59-004C2636AD32}] => (Allow) C:\Users\Bruno\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A106E37B-1B1D-4B68-80E0-DAAD229A7598}] => (Allow) C:\Users\Bruno\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1555CD71-58C2-4B32-8C9D-683CC063BCEC}] => (Allow) C:\Users\Bruno\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{56E06793-5B18-44CE-A7CB-5065C6ACA176}] => (Allow) C:\Users\Bruno\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{208ACC10-BD06-40C6-8C71-480B3EE300AF}] => (Allow) C:\Users\Bruno\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CB73222D-BA7F-42B7-9DF5-5C054638D7CD}] => (Allow) C:\Users\Bruno\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{18308C3A-A6D0-4773-B519-0081F675F77C}C:\program files (x86)\electronic arts\need for speed carbon\nfsc.exe] => (Allow) C:\program files (x86)\electronic arts\need for speed carbon\nfsc.exe FirewallRules: [UDP Query User{1E20A202-7058-4291-ADF4-9073770CFAF3}C:\program files (x86)\electronic arts\need for speed carbon\nfsc.exe] => (Allow) C:\program files (x86)\electronic arts\need for speed carbon\nfsc.exe FirewallRules: [TCP Query User{97F4976E-8BAC-41F7-B69D-7A2079CC88AA}C:\users\bruno\downloads\utorrent.exe] => (Allow) C:\users\bruno\downloads\utorrent.exe FirewallRules: [UDP Query User{165BE55F-0B01-442B-BE62-D29D2509560F}C:\users\bruno\downloads\utorrent.exe] => (Allow) C:\users\bruno\downloads\utorrent.exe FirewallRules: [TCP Query User{3735E4D5-E695-4309-9EF2-1E73022A0C77}C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe FirewallRules: [UDP Query User{B2FA1CA6-BC65-45CC-B316-68BBFE734000}C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\crimecraft\binaries\crimecraft.exe FirewallRules: [TCP Query User{8B9E767F-7801-48E5-AC7F-86870B1182F3}C:\users\bruno\downloads\zilak - get gang beasts for free\game\gang beasts\gang beasts.exe] => (Allow) C:\users\bruno\downloads\zilak - get gang beasts for free\game\gang beasts\gang beasts.exe FirewallRules: [UDP Query User{642846C8-EF4E-4FAF-9D31-D6582F380063}C:\users\bruno\downloads\zilak - get gang beasts for free\game\gang beasts\gang beasts.exe] => (Allow) C:\users\bruno\downloads\zilak - get gang beasts for free\game\gang beasts\gang beasts.exe FirewallRules: [{0751E587-EACB-4C26-9D82-5AA62753451C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{1ECFA875-797B-4791-8A27-47EF935F097B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{86AFB177-9B7C-47ED-A382-3A1A70EB161F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{F393E638-050D-412B-A269-11243AA6D59F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{968B7FA2-8DC8-44EA-A77D-AA3617EEF843}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe FirewallRules: [{D72B80FE-89CB-46FA-9F3E-3E68E87A8CB1}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe FirewallRules: [TCP Query User{7E29FFBB-A60D-4B69-8394-C5E0FD151D7B}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe] => (Allow) C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe FirewallRules: [UDP Query User{B930C0E6-C3CF-4A66-B020-959B4642CB12}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe] => (Allow) C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe FirewallRules: [{BD9C7F2E-F150-40C9-AF95-C7D3A1EA0195}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{E294F059-CB9B-4BF2-8881-F8100948B10B}C:\users\bruno\appdata\local\temp\rar$exa0.165\flatout 1 by brian ayllòn\flatout.exe] => (Allow) C:\users\bruno\appdata\local\temp\rar$exa0.165\flatout 1 by brian ayllòn\flatout.exe FirewallRules: [UDP Query User{E32A1500-4B8C-45E8-82D6-FD4FB33F7BAC}C:\users\bruno\appdata\local\temp\rar$exa0.165\flatout 1 by brian ayllòn\flatout.exe] => (Allow) C:\users\bruno\appdata\local\temp\rar$exa0.165\flatout 1 by brian ayllòn\flatout.exe FirewallRules: [{49518DEC-2002-4877-A22A-C7ECA5281C32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MicroVolts\Launcher.exe FirewallRules: [{E3883E0A-A847-4771-89BD-5C84D01F006E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MicroVolts\Launcher.exe FirewallRules: [{7B29BF45-5043-475A-92A2-5D727B53FB59}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{3F5CBCDA-D11D-49F0-B0DF-5F36D3284671}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{21DAC3B1-3961-4E60-91DF-CFD917A2B303}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{4BBF1931-5A22-4CEC-989D-1FA851D95CF2}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{7FE046C7-BF89-4BD5-9FAB-FC0B4FD85A45}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{4106800A-CDEB-4EF4-A7BC-796E7C49778A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{E9EFF0DA-FED8-4092-889D-A809E86AA6A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{59691514-DD37-4065-909C-10747DE6833A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{EA2999EB-5374-4CC4-8F4F-EBC5D10525EF}] => (Allow) C:\Program Files (x86)\Disney Interactive Studios\Split Second\SplitSecond.exe FirewallRules: [{743E9965-BFF3-4DBC-B5BB-1607F98D3391}] => (Allow) C:\Program Files (x86)\Disney Interactive Studios\Split Second\SplitSecond.exe FirewallRules: [{A7EEA80D-53A4-40CC-BDD4-7E0ACBBF9BF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{0B62A1AC-7A59-4FDA-AC99-B43BCD524BBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{D7939041-B580-4584-BF00-2F9D4FA61038}] => (Allow) C:\Program Files (x86)\Ubisoft\I Am Alive\src\System\IAmAlive_game.exe FirewallRules: [{78443DB3-DAC1-4F09-B935-D6956DE32DB4}] => (Allow) C:\Program Files (x86)\Ubisoft\I Am Alive\src\System\IAmAlive_game.exe FirewallRules: [{5FDF67B3-4E92-4AF0-8F6E-F9A2B131F6D1}] => (Allow) C:\Program Files (x86)\Ubisoft\I Am Alive\IAmAlive_Launcher.exe FirewallRules: [{D7BF6C9B-3DCE-49D9-9449-BD8921EB95F8}] => (Allow) C:\Program Files (x86)\Ubisoft\I Am Alive\IAmAlive_Launcher.exe FirewallRules: [{CD999EED-87B3-459E-A7EC-8B386FA359ED}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe FirewallRules: [{FCA59275-ED0B-4670-B619-88AF88C138A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe FirewallRules: [{6E43C4C9-6CA3-4349-BF58-A2B6702B0106}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe FirewallRules: [{3538CB4A-BB35-43CF-A892-5E5FAC29DA3A}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe FirewallRules: [{21974A8D-9E72-484C-A6E5-1A9AB99AEE62}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe FirewallRules: [{86562101-F07A-4C14-917C-17A59AFF3DEA}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe FirewallRules: [{43154AF1-1EBD-489B-8974-A513A7212D63}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe FirewallRules: [{EC1490F3-8E66-4D1B-9B14-793ACD11928B}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe FirewallRules: [TCP Query User{162A9040-D069-4194-8793-BDC227BCCFA6}C:\users\bruno\downloads\helloneighbor_pre_alpha_-_play_at_your_own_risk\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe] => (Allow) C:\users\bruno\downloads\helloneighbor_pre_alpha_-_play_at_your_own_risk\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe FirewallRules: [UDP Query User{15ED9EAC-455B-4E1D-9AB1-E3DB17CA9890}C:\users\bruno\downloads\helloneighbor_pre_alpha_-_play_at_your_own_risk\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe] => (Allow) C:\users\bruno\downloads\helloneighbor_pre_alpha_-_play_at_your_own_risk\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe FirewallRules: [TCP Query User{7272E7AD-EE30-4C53-B4D9-513F3E4A7047}C:\program files\strogino cs portal\garrys mod\bin\tools\steamcmd.exe] => (Allow) C:\program files\strogino cs portal\garrys mod\bin\tools\steamcmd.exe FirewallRules: [UDP Query User{8F2BC410-5D76-415C-827E-DB71E7C4553E}C:\program files\strogino cs portal\garrys mod\bin\tools\steamcmd.exe] => (Allow) C:\program files\strogino cs portal\garrys mod\bin\tools\steamcmd.exe FirewallRules: [TCP Query User{ADAAD2D6-716E-46B7-A905-5EE9E4A81422}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe FirewallRules: [UDP Query User{8BAB132B-098A-441D-92FE-44A1EDEFE002}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe FirewallRules: [{2C4B3F7E-42DB-4E98-BE14-A2B83961B0D1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{C327710A-0D70-43F2-A671-3938AC3B3659}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{D3B6EEF2-CAB9-4D09-AFB7-5D5458FF31A0}C:\users\bruno\downloads\teamspeak3-server_win64-3.0.13.6\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\bruno\downloads\teamspeak3-server_win64-3.0.13.6\teamspeak3-server_win64\ts3server.exe FirewallRules: [UDP Query User{B353FDFD-AE93-4C39-9B28-9AF4F61C3047}C:\users\bruno\downloads\teamspeak3-server_win64-3.0.13.6\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\bruno\downloads\teamspeak3-server_win64-3.0.13.6\teamspeak3-server_win64\ts3server.exe FirewallRules: [TCP Query User{E993EB05-4605-4E65-888B-155F3AED249C}C:\users\bruno\documents\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\bruno\documents\left 4 dead 2\left4dead2.exe FirewallRules: [UDP Query User{158F680E-B148-452C-BC79-8DAA28005AD6}C:\users\bruno\documents\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\bruno\documents\left 4 dead 2\left4dead2.exe FirewallRules: [{7F1F1B5D-2DD1-4EEC-A38C-B13E05690E80}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [{CD00A99E-45DF-4BED-8E44-8D6494DFFECB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe FirewallRules: [{A0F46EB3-B5EE-426F-A92C-43C6A7CE4583}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe FirewallRules: [{25BB5683-48B3-4F08-A8FC-72ACF95674C0}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe FirewallRules: [{F82A771B-8ABC-4EA5-977E-90B781C04BBE}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe FirewallRules: [{A4004C26-804D-4356-B7AB-9B168123452A}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe FirewallRules: [{701CA191-1699-419B-B210-74C8B9544A3F}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [{64DFA353-A639-4387-97D4-156488A6174A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NewZ\NewZLauncher.exe FirewallRules: [{9DCE42E0-BA68-47A4-B15B-66B41E3C1FA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NewZ\NewZLauncher.exe FirewallRules: [TCP Query User{65C2ED91-83F8-49FD-95BC-85625D13F265}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [UDP Query User{BE11FA89-D7DC-44B4-BF95-0AB962CC8402}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [{3A096C53-0241-4FC0-AA50-B11DB00E4E7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AVA\launcher.exe FirewallRules: [{557DC585-DD39-4648-BD19-4B8661432DC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AVA\launcher.exe FirewallRules: [TCP Query User{90A365D1-33E9-477F-BA80-7245608B6D2E}C:\program files (x86)\steam\steamapps\common\ava\ava\binaries\ava.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ava\ava\binaries\ava.exe FirewallRules: [UDP Query User{0A96FA73-E394-4D18-B4B8-CFCA6684E6A1}C:\program files (x86)\steam\steamapps\common\ava\ava\binaries\ava.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ava\ava\binaries\ava.exe FirewallRules: [{ABD54961-677A-4620-97AE-C6DF5D5522E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe FirewallRules: [{B6B8B7CB-6DB0-48E3-9173-7BD6AEFD1402}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe FirewallRules: [{6F342E98-F3F1-4BB7-9704-7CDEB5182155}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{9BDB5244-1B7F-4034-BA97-9E6E76527B63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{9FA5CE70-49DE-4EDF-AAAA-FC633BBF515D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{E1A0EF87-B03D-494C-AC9A-94CA20A7A774}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{02D8F826-A0F4-44ED-9B50-A5BDA8BC50AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{C9A5EEE3-DF4E-492B-956F-F1E5F1B1A0A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{7B63BEB5-83CD-4BB7-83B8-25E6860C1822}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{6E061DC8-798D-4720-9431-902AC58E40E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [TCP Query User{85EBE843-BB58-4CCE-A902-4DBDFF52E486}C:\users\bruno\downloads\samp037_svr_r2-1-1_win32\samp-server.exe] => (Allow) C:\users\bruno\downloads\samp037_svr_r2-1-1_win32\samp-server.exe FirewallRules: [UDP Query User{6F1142A7-AF8A-444F-A098-9BD7D5318E5F}C:\users\bruno\downloads\samp037_svr_r2-1-1_win32\samp-server.exe] => (Allow) C:\users\bruno\downloads\samp037_svr_r2-1-1_win32\samp-server.exe FirewallRules: [{6A16846E-0F84-4FF5-9FC8-4CD2D276CFB3}] => (Allow) C:\Program Files (x86)\Everness\Application\chrome.exe FirewallRules: [{4A821721-9B65-4991-AFB8-B012501320B0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F679556D-2D49-4E61-8302-3DCCA06FB755}] => (Allow) C:\Program Files (x86)\GamersFirst\APB Reloaded\Binaries\APB.exe FirewallRules: [{063BAAF9-BD3C-4DE7-A104-F1BFE9CD9A76}] => (Allow) C:\Program Files (x86)\GamersFirst\APB Reloaded\Binaries\APB.exe FirewallRules: [{F5ACD7C6-A07E-4319-8CB6-C043F81BD1E7}] => (Allow) C:\Program Files (x86)\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{67B0486C-1E90-4AD7-8F2F-087E87844C83}] => (Allow) C:\Program Files (x86)\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{CDFB796B-B19B-4EC7-B4D4-9DDC8EE40FF1}] => (Allow) C:\ongame\Pointblank\PointBlank.exe FirewallRules: [{CD3DDE85-2010-47BD-9C6C-4AD35FB975DC}] => (Allow) C:\ongame\Pointblank\PointBlank.exe FirewallRules: [{3AF1F4CB-A2DD-4ABB-B66D-D42BD2114B7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Devils Share\devilsshare.exe FirewallRules: [{09180B1C-C7E4-47BA-9156-9CAF42CDBC1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Devils Share\devilsshare.exe FirewallRules: [{5ACE465C-EE6C-4BBA-AD24-73564BABBD1F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blockstorm\Blockstorm.exe FirewallRules: [{26DA4516-B58B-468C-823A-C9BFFF221BAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blockstorm\Blockstorm.exe FirewallRules: [{925A10B7-A012-4AF0-A056-8FF7DF15C305}] => (Allow) C:\Program Files (x86)\MIO\loader\st9500325as_6ve3cj9txxxx6ve3cj9t.dat FirewallRules: [{2EFFDE1C-E7F8-41BC-94D0-CC9636987398}] => (Allow) C:\Program Files (x86)\MIO\loader\st9500325as_6ve3cj9txxxx6ve3cj9t.dat FirewallRules: [{C878D65A-C28F-46EB-BF65-8F3314CBBF1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe FirewallRules: [{5B7F8CA2-08FA-4DB8-AC2D-3A67FC07F054}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe FirewallRules: [{1DA30DE3-037E-4F45-87E1-34085A59CB50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worm.is The Game\Wormis.exe FirewallRules: [{0D24C3F2-745F-48A6-9CA0-5E32C9CC0C52}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worm.is The Game\Wormis.exe FirewallRules: [TCP Query User{C34BA52D-7E40-4A0F-A37F-F1B7C8D398AF}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [UDP Query User{AB09153D-00A5-4D40-ABCC-C6D435B50F0F}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [{4725509E-61D8-4D71-807D-B71C9F03FA8E}] => (Allow) C:\Program Files (x86)\Opera\46.0.2597.57\opera.exe FirewallRules: [{EF755266-F475-46E9-B34F-05CEB13B33A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{0902BBA5-9649-4EE0-84F5-91ECD915A510}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{A53A4CE3-430B-43D7-96F1-05F590DEB6DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [{C231A30F-D417-46B8-9658-3ADC198BC16E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [TCP Query User{9667C8EB-E42C-4060-9CCA-5F4BF413BA36}C:\program files (x86)\ea games\medal of honor pacific assault(tm) mpdemo\mohpa_mpdemo.exe] => (Allow) C:\program files (x86)\ea games\medal of honor pacific assault(tm) mpdemo\mohpa_mpdemo.exe FirewallRules: [UDP Query User{05076644-0B76-4F4E-899E-8B6B161FE068}C:\program files (x86)\ea games\medal of honor pacific assault(tm) mpdemo\mohpa_mpdemo.exe] => (Allow) C:\program files (x86)\ea games\medal of honor pacific assault(tm) mpdemo\mohpa_mpdemo.exe FirewallRules: [{5E08855D-EA35-4C72-B492-43A72ABBD805}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe FirewallRules: [{86339B72-B36E-426D-B9BD-E3F725C933AE}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe FirewallRules: [{FA537870-F433-4A9A-AEC0-F9D485E049D4}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe FirewallRules: [{DBEB331D-424F-4476-971A-02714ACC36D0}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe FirewallRules: [{8BC7211C-BDA9-4327-8C39-84CEC65EF1F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crossout\launcher.exe FirewallRules: [{6FD31E19-0406-4799-8889-725287F92E86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crossout\launcher.exe FirewallRules: [{565A3755-0698-4EEB-B285-F046AE6B947B}] => (Allow) C:\Program Files (x86)\Opera\47.0.2631.55\opera.exe FirewallRules: [{5169B7C2-776E-4037-84F9-FBB9A9A80360}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{81E1659A-7ABD-41C4-8C62-D02A31BE9748}] => (Allow) C:\Windows\System32\rundll32.exe ==================== Restore Points ========================= 13-08-2017 00:39:29 DMX_DriverMax Driver Installation 13-08-2017 00:46:34 DMX_DriverMax Driver Installation 13-08-2017 02:55:12 Installed Microsoft XNA Framework Redistributable 4.0 14-08-2017 17:00:27 Removed AlphaGo 14-08-2017 17:04:55 Removed Windows 7 USB/DVD Download Tool ==================== Faulty Device Manager Devices ============= Name: Miniport WAN (IP) Description: Miniport WAN (IP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Miniporta WAN (IPv6) Description: Miniporta WAN (IPv6) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Miniport WAN (monitor de rede) Description: Miniport WAN (monitor de rede) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Event log errors: ========================= Application errors: ================== Error: (08/18/2017 04:27:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome da aplicação com falha: avgwdsvc.exe, versão: 13.0.0.3456, carimbo de data/hora: 0x528bf6a4 Nome do módulo com falha: avgwd.dll, versão: 13.0.0.3543, carimbo de data/hora: 0x5632add8 Código de exceção: 0xc0000005 Desvio de falha: 0x00008f95 ID do processo com falha: 0x63c Hora de início da aplicação com falha: 0x01d317d1d89f85ae Caminho da aplicação com falha: C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe Caminho do módulo com falha: C:\Program Files (x86)\AVG\AVG2013\avgwd.dll ID do Relatório: 23aa3bd6-83c5-11e7-807b-00262d603b6c Nome completo do pacote com falha: ID da aplicação relativa ao pacote com falha: Error: (08/18/2017 04:24:52 AM) (Source: Wininit) (EventID: 1015) (User: ) Description: Falhou um processo crítico do sistema, C:\Windows\system32\lsass.exe, apresentando o código de estado 1. O computador tem de ser reiniciado. Error: (08/18/2017 03:15:23 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome da aplicação com falha: avgwdsvc.exe, versão: 13.0.0.3456, carimbo de data/hora: 0x528bf6a4 Nome do módulo com falha: avgwd.dll, versão: 13.0.0.3543, carimbo de data/hora: 0x5632add8 Código de exceção: 0xc0000005 Desvio de falha: 0x00008f95 ID do processo com falha: 0x65c Hora de início da aplicação com falha: 0x01d317c7cbf9a83e Caminho da aplicação com falha: C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe Caminho do módulo com falha: C:\Program Files (x86)\AVG\AVG2013\avgwd.dll ID do Relatório: 16c28ec6-83bb-11e7-807a-00262d603b6c Nome completo do pacote com falha: ID da aplicação relativa ao pacote com falha: Error: (08/18/2017 03:13:41 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nome da aplicação com falha: NFSC.exe, versão: 0.0.0.0, carimbo de data/hora: 0x562b029a Nome do módulo com falha: NFSC.exe, versão: 0.0.0.0, carimbo de data/hora: 0x562b029a Código de exceção: 0xc0000005 Desvio de falha: 0x00331465 ID do processo com falha: 0x12c0 Hora de início da aplicação com falha: 0x01d317c6edb949a7 Caminho da aplicação com falha: C:\Games\Need for Speed Carbon\NFSC.exe Caminho do módulo com falha: C:\Games\Need for Speed Carbon\NFSC.exe ID do Relatório: da203334-83ba-11e7-8079-00262d603b6c Nome completo do pacote com falha: ID da aplicação relativa ao pacote com falha: Error: (08/18/2017 03:00:50 AM) (Source: MsiInstaller) (EventID: 1007) (User: BG) Description: A instalação de C:\ProgramData\MFAData\pack\AVGx64.msi não é permitida pela política de restrição de software. O Windows Installer só permite a instalação de itens não restringidos. O nível de autorização devolvido pela política de restrição de software foi 0x0 (estado devolvido 0x800b010c). Error: (08/18/2017 01:57:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: BG) Description: A aplicação windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel não foi iniciada dentro do espaço de tempo que lhe foi atribuído. Error: (08/18/2017 01:03:59 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: BG) Description: httphttp-2147467263 Error: (08/17/2017 10:28:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: BG) Description: A aplicação windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel não foi iniciada dentro do espaço de tempo que lhe foi atribuído. Error: (08/17/2017 10:28:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: BG) Description: O pacote windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy foi terminado porque a sua suspensão levou demasiado tempo. Error: (08/17/2017 08:51:10 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: BG) Description: httphttp-2147467263 System errors: ============= Error: (08/18/2017 04:48:39 AM) (Source: BROWSER) (EventID: 8020) (User: ) Description: O browser não conseguiu promover-se a si próprio a browser principal. O computador que pensa que é o browser principal é desconhecido. Error: (08/18/2017 04:42:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço terana terminou inesperadamente. Isto aconteceu 1 vez(es). Error: (08/18/2017 04:42:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço snare terminou inesperadamente. Isto aconteceu 1 vez(es). Error: (08/18/2017 04:41:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço NPASRE terminou inesperadamente. Já o fez 1 vez(es). Será efetuada a seguinte ação corretiva em 21600000 milissegundos: Reiniciar o serviço. Error: (08/18/2017 04:41:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: O serviço CWASRE terminou inesperadamente. Já o fez 1 vez(es). Será efetuada a seguinte ação corretiva em 21600000 milissegundos: Reiniciar o serviço. Error: (08/18/2017 04:41:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço CSHMDR terminou inesperadamente. Isto aconteceu 1 vez(es). Error: (08/18/2017 04:30:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: O serviço FishjaneSU falhou o arranque devido ao seguinte erro: O sistema não conseguiu localizar o ficheiro especificado. Error: (08/18/2017 04:27:57 AM) (Source: NetBT) (EventID: 4321) (User: ) Description: O nome "WORKGROUP :1d" não pode ser registado na interface com o endereço IP 192.168.1.68. O computador com o endereço IP 192.168.1.253 não permitiu que o nome fosse reivindicado por este computador. Error: (08/18/2017 04:27:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: O serviço AVG WatchDog terminou inesperadamente. Isto aconteceu 1 vez(es). Error: (08/18/2017 04:27:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: O serviço Origin Web Helper Service falhou o arranque devido ao seguinte erro: O serviço não respondeu ao pedido de início ou controlo atempadamente. ==================== Memory info =========================== Processor: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz Percentage of memory in use: 39% Total physical RAM: 4024.93 MB Available physical RAM: 2435.35 MB Total Virtual: 5496.93 MB Available Virtual: 3877.88 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:453.94 GB) (Free:110.02 GB) NTFS ==>[drive with boot components (obtained from BCD)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 27062705) Partition 1: (Not Active) - (Size=11.7 GB) - (Type=27) Partition 2: (Active) - (Size=453.9 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================