Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-05-2015
Ran by rdrxx at 2015-05-05 22:57:55
Running from C:\Users\Rodrigo\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-143774442-2286056743-2647859102-500 - Administrator - Disabled)
Guest (S-1-5-21-143774442-2286056743-2647859102-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-143774442-2286056743-2647859102-1003 - Limited - Enabled)
rdrxx (S-1-5-21-143774442-2286056743-2647859102-1001 - Administrator - Enabled) => C:\Users\Rodrigo

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-143774442-2286056743-2647859102-1001\...\uTorrent) (Version: 3.4.2.37951 - BitTorrent Inc.)
7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version:  - )
Acunetix Web Vulnerability Scanner 9.0 (HKLM-x32\...\{ffec63c3-090d-45ea-afd7-eab07edb5822}_is1) (Version: 9.0 - Acunetix)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2014 (HKLM-x32\...\{766255CE-D156-11E3-8DBC-A136EB52ACCF}) (Version: 14.0.0 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 17 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Claro (HKLM-x32\...\Claro) (Version: 23.009.05.06.150 - Huawei Technologies Co.,Ltd)
Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP) Hidden
Dotfuscator Software Services - Community Edition (HKLM-x32\...\{41B31ABE-5A6E-498A-8F28-3BA3B8779A41}) (Version: 5.0.2300.0 - PreEmptive Solutions)
ExpressVPN v3.626 (HKLM-x32\...\ExpressVPN) (Version: v3.626 - ExpressVPN)
FiddlerCoreAPI (HKU\S-1-5-21-143774442-2286056743-2647859102-1001\...\FiddlerCoreAPI) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{1803A630-3C38-4D2B-9B9A-0CB37243539C}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{0DDCEC37-369C-484B-B16D-B4413FD42FB9}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{E5AE9031-79A5-4627-9641-BEFA82819B08}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{DA67488A-2689-4F10-B90F-D2F6977509D6}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{78C3657E-742C-40B1-9F53-E5A921D40F17}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4A8CE6D7-4D52-43B9-970B-03FC75FAD667}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Professional - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Professional - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
Mozilla Firefox 36.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 pt-BR)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0 - Mozilla)
Nettalk 6.7 (HKLM-x32\...\Nettalk_is1) (Version:  - Nicolas Kruse)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
ONAIR 4.0.0.953 (HKLM\...\ONAIR_is1) (Version:  - )
Opera Stable 29.0.1795.47 (HKLM-x32\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA)
Proxy Auto Configuration Tool (HKLM-x32\...\{D49BC84E-A76A-4013-AE30-43151B3CB498}) (Version: 2.01.1 - Dummy Tools)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.1 r2290 - )
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Suporte para Aplicativos Apple (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Suporte para Aplicativos Apple Apple (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.39052 - TeamViewer)
The 7 Deadly Sins (HKU\S-1-5-21-143774442-2286056743-2647859102-1001\...\The 7 Deadly Sins) (Version: 10.0 - abfab inc.)
The 7 Deadly Sins (x32 Version: 10.0 - abfab inc.) Hidden
UxStyle (HKLM-x32\...\{05560347-3a9b-4644-a8ed-8b64cc947189}) (Version: 0.2.3.0 - The Within Network, LLC)
UxStyle (Version: 0.2.3.0 - The Within Network, LLC) Hidden
VDownloader 4.0.1216 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version:  - Vitzo Limited)
Video Download Capture versão 5.0.0 (HKLM-x32\...\{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1) (Version: 5.0.0 - APOWERSOFT LIMITED)
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.30319 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 11.0.0 - VMware, Inc)
VMware Workstation (Version: 11.0.0 - VMware, Inc.) Hidden
Vono (HKLM-x32\...\.IAP{0000.0000.0005.0001}) (Version: 4.6.0000.0000 - Vono)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinHTTrack Website Copier 3.48-19 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.48.19 - HTTrack)
WinPcap 4.1.1 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WmpSkype (HKLM-x32\...\{5ED2987A-56AF-4240-A854-3EF153B27145}) (Version: 1.0.0 - Wakusei)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

20-04-2015 19:04:04 Scheduled Checkpoint
29-04-2015 05:13:15 Scheduled Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 10:25 - 2013-08-22 10:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1E37F66B-9407-46F0-8DA7-766FCB5B8765} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2013-12-11] ()
Task: {1E490110-B6F0-45A6-AB1C-E4ED8DBD4611} - System32\Tasks\{BC502010-7027-486B-967E-DD2CBEFCAF94} => pcalua.exe -a "C:\Users\Rodrigo\Downloads\Havij v1.16 Pro Portable.exe" -d C:\Users\Rodrigo\Downloads
Task: {2573F8F6-F015-49EB-886F-27D6BAC68BB4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {3E972DE9-37C7-4121-8F90-EDF59C2B6508} - System32\Tasks\{31C33992-8EA5-4038-8A48-B134F52558F9} => pcalua.exe -a "C:\Users\Rodrigo\Downloads\Havij v1.16 Pro Portable.exe" -d C:\Users\Rodrigo\Downloads
Task: {43BF2C46-636F-41E5-91A8-4D46DABE030E} - System32\Tasks\{E442DE42-2C65-47DC-AEA3-8116CE741537} => pcalua.exe -a "C:\Users\Rodrigo\Downloads\Havij v1.16 Pro Portable.exe" -d C:\Users\Rodrigo\Downloads
Task: {44FFBD90-02E3-41D2-882F-A944C9DAE20B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-14] (Google Inc.)
Task: {4DDBEF9F-93BC-4630-BC91-F3CA0601CBDE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {51E34A80-2E9B-4D8E-9B60-DCD933271401} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-14] (Google Inc.)
Task: {78EE9388-EC00-4993-9777-5CFB64627B7C} - System32\Tasks\Opera scheduled Autoupdate 1421288820 => C:\Program Files (x86)\Opera\launcher.exe [2015-04-17] (Opera Software)
Task: {90CF5332-CC3B-4041-B968-60A7A80B0683} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_pepper.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {DC5E26E7-AC5D-4B2D-B7CE-C65CCF9701A0} - System32\Tasks\{AA7E6CB1-4F8D-4AB8-9E87-0C8B7B5BF0C6} => pcalua.exe -a "C:\Users\Rodrigo\Downloads\Havij v1.16 Pro Portable.exe" -d C:\Users\Rodrigo\Downloads
Task: {DCE8A070-B284-4E6C-AEFC-6200DE1143EA} - System32\Tasks\{E45049F2-9660-4402-9ABD-4C6A28712C7C} => pcalua.exe -a "C:\Users\Rodrigo\Downloads\Havij v1.16 Pro Portable.exe" -d C:\Users\Rodrigo\Downloads
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-01-23 19:02 - 2014-01-15 10:36 - 01015328 _____ () C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 9\WVSScheduler.exe
2015-02-13 03:20 - 2015-02-13 03:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 03:20 - 2015-02-13 03:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-22 13:06 - 2013-01-21 05:46 - 00657504 _____ () C:\ProgramData\Claro\OnlineUpdate\ouc.exe
2011-03-14 12:27 - 2011-03-14 12:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2015-01-14 23:13 - 2014-07-02 15:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-12 06:49 - 2014-05-12 06:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2014-05-25 11:18 - 2014-05-25 11:18 - 00036536 _____ () C:\Program Files\Rainmeter\Rainmeter.exe
2014-05-25 11:18 - 2014-05-25 11:18 - 00747192 _____ () C:\Program Files\Rainmeter\Rainmeter.dll
2014-05-25 11:17 - 2014-05-25 11:17 - 00019968 _____ () C:\Program Files\Rainmeter\Plugins\SysInfo.dll
2014-05-25 11:17 - 2014-05-25 11:17 - 00056832 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.dll
2014-05-25 11:17 - 2014-05-25 11:17 - 00023040 _____ () C:\Program Files\Rainmeter\Plugins\Win7AudioPlugin.DLL
2015-04-28 15:26 - 2015-04-28 15:25 - 00479352 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\opera_crashreporter.exe
2015-01-22 13:06 - 2012-09-18 07:08 - 00011362 _____ () C:\ProgramData\Claro\OnlineUpdate\mingwm10.dll
2015-01-22 13:06 - 2012-09-18 07:08 - 00043008 _____ () C:\ProgramData\Claro\OnlineUpdate\libgcc_s_dw2-1.dll
2015-01-22 13:06 - 2013-01-21 05:46 - 02417152 _____ () C:\ProgramData\Claro\OnlineUpdate\QtCore4.dll
2015-01-22 13:06 - 2013-01-21 05:46 - 01148416 _____ () C:\ProgramData\Claro\OnlineUpdate\QtNetwork4.dll
2015-01-22 13:06 - 2013-01-21 05:46 - 00843264 _____ () C:\ProgramData\Claro\OnlineUpdate\QueryStrategy.dll
2015-01-22 13:06 - 2013-01-21 05:46 - 00398336 _____ () C:\ProgramData\Claro\OnlineUpdate\QtXml4.dll
2014-11-20 17:44 - 2014-11-20 17:44 - 01299136 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2011-07-18 18:07 - 2011-07-18 18:07 - 00014336 _____ () C:\Program Files (x86)\Notepad++\plugins\NppExport.dll
2014-01-06 20:42 - 2014-01-06 20:42 - 01611264 _____ () C:\Program Files (x86)\Notepad++\plugins\NppFTP.dll
2015-04-28 15:26 - 2015-04-28 15:25 - 00157304 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\message_center_win8.dll
2015-04-28 15:26 - 2015-04-28 15:25 - 01576568 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\libglesv2.dll
2015-04-28 15:26 - 2015-04-28 15:25 - 00081016 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\libegl.dll
2013-12-12 23:47 - 2013-12-12 23:47 - 00333824 _____ () C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Rodrigo\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UnsignedThemes => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UnsignedThemes => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-143774442-2286056743-2647859102-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rodrigo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8 - 8.8.4.4

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => ".IAP{0000.0000.0000.0001}"
HKU\S-1-5-21-143774442-2286056743-2647859102-1001\...\StartupApproved\StartupFolder: => "Nettalk.lnk"
HKU\S-1-5-21-143774442-2286056743-2647859102-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-143774442-2286056743-2647859102-1001\...\StartupApproved\Run: => "ONAIR"

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{3030FC13-8159-42A6-B200-022AABCB84B8}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{9448025C-8C0C-4C12-BBC4-70B04C4B07BC}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{C05D5481-82FF-4157-832D-F74F4CC574FD}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{EE58387F-73BC-42CE-8D6B-D4BEB6426C37}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{2ED9206F-710F-4558-A11D-447E1F143B19}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{2030573C-313F-4846-92EF-10B1356D396A}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{F78EC41E-604F-484E-9A47-CA96ADC49424}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{93130B59-CDB3-4561-B8B9-6E09C1BB3954}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2EAAC3B0-0CFB-46B0-850C-88B72950EC33}] => (Allow) C:\Users\Rodrigo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0071B8D0-1B40-4A13-B1A1-9E4CD6F49E98}] => (Allow) C:\Users\Rodrigo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{9FBA3308-260B-467E-A56E-024BDDC4B149}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{20F283D6-A66D-4ABC-862A-34340590AF69}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E8157D76-E0C5-4DBA-A282-380D58DB7F33}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{72F889D2-0900-4FBB-8069-59528F7660C8}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{71955AB2-2E65-43A5-B26B-413DFEF2DE24}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{3D11F44B-933C-42D7-AA50-0E53A39DD54C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{227CCA32-E80A-4594-8110-A71DCF39F2ED}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{EF1A4CAB-3438-4425-812F-721AB6CD291C}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [TCP Query User{6750CE60-C503-412B-BE40-0B71BAE3FD6F}C:\program files (x86)\vono\vono\vono.exe] => (Allow) C:\program files (x86)\vono\vono\vono.exe
FirewallRules: [UDP Query User{4C5F4DD8-8FE4-4247-8BFD-F49B9745880E}C:\program files (x86)\vono\vono\vono.exe] => (Allow) C:\program files (x86)\vono\vono\vono.exe
FirewallRules: [{3AA92EAA-A678-4003-BE3C-C3B5B8D7A6BF}] => (Block) C:\program files (x86)\vono\vono\vono.exe
FirewallRules: [{EA360974-C565-49F5-A01E-052EA26628E0}] => (Block) C:\program files (x86)\vono\vono\vono.exe
FirewallRules: [{3DF1056B-8475-4CB0-8A04-12EE6047C6CF}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{77C98268-1F1D-44EE-93C2-F34DB1E4B1C6}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [TCP Query User{86BA2E3E-22EC-43AB-95D1-172764C7579D}C:\program files (x86)\the 7 deadly sins\mirc.exe] => (Allow) C:\program files (x86)\the 7 deadly sins\mirc.exe
FirewallRules: [UDP Query User{4C315A78-7F73-4247-B311-537A8A9608B8}C:\program files (x86)\the 7 deadly sins\mirc.exe] => (Allow) C:\program files (x86)\the 7 deadly sins\mirc.exe
FirewallRules: [{63C1BDBF-B0C8-4611-941F-C9B63A2468DA}] => (Block) C:\program files (x86)\the 7 deadly sins\mirc.exe
FirewallRules: [{DD93CE93-6523-4B7C-9416-0138B24AEB8D}] => (Block) C:\program files (x86)\the 7 deadly sins\mirc.exe
FirewallRules: [{11DD5798-1AF8-4245-BD85-6709431B1968}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{B3A32EF1-0BDA-4F83-A2AF-25BEF9AB2334}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{A89F44EC-AFA3-42C8-91DF-5725E6AFB139}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{830E147D-2FD2-4107-96C3-1EBC21201E17}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [TCP Query User{F4463217-45F1-481D-9517-DB76924B1A10}C:\users\rodrigo\desktop\srcs\fiddlerexample\bin\debug\websurge.exe] => (Allow) C:\users\rodrigo\desktop\srcs\fiddlerexample\bin\debug\websurge.exe
FirewallRules: [UDP Query User{3A87CBD8-A93C-4868-97B6-34B99EFE256C}C:\users\rodrigo\desktop\srcs\fiddlerexample\bin\debug\websurge.exe] => (Allow) C:\users\rodrigo\desktop\srcs\fiddlerexample\bin\debug\websurge.exe
FirewallRules: [{78744B74-AFAC-41EA-8D65-5515E90B1661}] => (Block) C:\users\rodrigo\desktop\srcs\fiddlerexample\bin\debug\websurge.exe
FirewallRules: [{41E91DC6-DF5F-46BB-BA4D-5D5E51FE4A4F}] => (Block) C:\users\rodrigo\desktop\srcs\fiddlerexample\bin\debug\websurge.exe
FirewallRules: [{B38723CD-2C1A-4EFB-B24E-240BB9C8DCB2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BBC8725C-6E46-4195-8104-371AA7DF0C92}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F4B9D83F-2CFA-4D51-84DD-9D63432515AA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7B1EC147-A31B-4C2E-8E31-2B4FDEBBFBEF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{756570A6-E8D7-4072-8A74-5DDF6BD0817F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{12EDE3F1-A441-4D34-BBF1-6DEC37C65E2B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8EACE870-C3B3-4888-9875-61218B94621E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1F3B12A6-42DC-47F7-BDA2-D9618DE79DE4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{92DBA52B-4212-4B5D-B900-C44199901642}C:\program files (x86)\acunetix\web vulnerability scanner 9\marvin.exe] => (Block) C:\program files (x86)\acunetix\web vulnerability scanner 9\marvin.exe
FirewallRules: [UDP Query User{30520CB0-C870-4569-AE40-E60E9BFDE009}C:\program files (x86)\acunetix\web vulnerability scanner 9\marvin.exe] => (Block) C:\program files (x86)\acunetix\web vulnerability scanner 9\marvin.exe
FirewallRules: [{5C40F918-B590-4884-BF94-993ABBB60C8D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{DE13B315-B2FC-4DD8-9136-3F28AED9A45D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{B4C45921-2775-443C-9CC7-5AC8D17155F5}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{8F455640-E37E-4786-8F42-DEB028030E6F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{E7AEB0E3-2432-419A-9678-619C2E0A51CC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{C9D9444E-9EB6-4285-A2B4-307D74E72F78}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{0D15D211-E58C-45C5-A8C8-03D9DEF15382}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{C09DDBD3-D7DD-44DC-BFC4-540EF921BE3D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{46A26FD9-0D1A-45E4-8F55-7F0B36E48444}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{09060B7F-AE1C-4315-836E-8EDD7E352A13}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{8F1478DE-5C9D-49C2-867E-71A74BF47569}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{8C00DC72-5C98-4778-8821-5B1A0867FD77}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{F4768A34-F5E0-4B10-A60D-3A50806BABA0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{6F7354DA-8100-4682-9559-76D61CEFBB4A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{009C57E2-FA86-453D-A646-315FB174004B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{5F5BA99D-5B15-4DFF-A7FC-3C945CEAFD78}] => (Allow) LPort=1688
FirewallRules: [{364ECC09-FE33-4F50-A355-C8E71F04DA17}] => (Allow) C:\Program Files\iTunes\iTunes.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Vono\Vono\Vono.exe] => Enabled:%applicationname%
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Vono\Vono\Vono.exe] => Enabled:%applicationname%

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/05/2015 00:04:43 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13032

Error: (05/05/2015 00:04:43 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13032

Error: (05/05/2015 00:04:43 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2015 00:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11469

Error: (05/05/2015 00:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11469

Error: (05/05/2015 00:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2015 00:04:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9891

Error: (05/05/2015 00:04:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9891

Error: (05/05/2015 00:04:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2015 00:04:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8328


System errors:
=============
Error: (05/05/2015 00:17:59 PM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/05/2015 00:17:28 PM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/04/2015 03:13:58 AM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/04/2015 03:13:28 AM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/03/2015 00:28:57 PM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/03/2015 00:28:27 PM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/02/2015 05:59:43 AM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/02/2015 05:59:12 AM) (Source: DCOM) (EventID: 10010) (User: crack)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/01/2015 09:20:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Service KMSELDI service terminated unexpectedly.  It has done this 1 time(s).

Error: (05/01/2015 09:19:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Claro. OUC service failed to start due to the following error: 
%%1053


Microsoft Office Sessions:
=========================
Error: (05/05/2015 00:04:43 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13032

Error: (05/05/2015 00:04:43 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13032

Error: (05/05/2015 00:04:43 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2015 00:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11469

Error: (05/05/2015 00:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11469

Error: (05/05/2015 00:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2015 00:04:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9891

Error: (05/05/2015 00:04:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9891

Error: (05/05/2015 00:04:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2015 00:04:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8328


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
Percentage of memory in use: 64%
Total physical RAM: 3326.18 MB
Available physical RAM: 1194.58 MB
Total Pagefile: 4996.68 MB
Available Pagefile: 1792.8 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:706.14 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3C2C1887)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================