cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-04-2015
Ran by Adriano at 2015-04-12 16:10:32 Run:1
Running from C:\Users\Adriano\Desktop
Loaded Profiles: Adriano (Available profiles: Adriano)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
CloseProcesses:
emptytemp:
(IObit) C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\SmartRam2.0.exe
HKU\S-1-5-21-385034928-3146383992-1105951338-1000\...\Run: [SmartRAM] => C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\SmartRam2.0.exe [428928 2012-07-20] (IObit) <===== ATTENTION
R2 TorchCrashHandler; C:\Users\Adriano\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032 2015-04-02] (TorchMedia Inc.) <==== ATTENTION
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2015-04-11 22:30 - 2015-04-11 22:30 - 00008528 _____ () C:\Users\Adriano\Downloads\hijackthis.log
2015-04-11 22:29 - 2015-04-11 22:29 - 00388608 _____ (Trend Micro Inc.) C:\Users\Adriano\Downloads\HijackThis.exe
2015-04-11 22:25 - 2015-04-11 22:25 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-04-11 22:24 - 2015-04-11 22:24 - 02347384 _____ (ESET) C:\Users\Adriano\Downloads\esetsmartinstaller_enu.exe
2015-04-10 23:13 - 2015-04-10 23:13 - 00000000 ____D () C:\Users\Todos os Usuários\Doctor Web
2015-04-10 23:13 - 2015-04-10 23:13 - 00000000 ____D () C:\ProgramData\Doctor Web
2015-04-10 23:06 - 2015-04-11 06:09 - 00000000 ____D () C:\Users\Adriano\Doctor Web
2015-04-10 22:56 - 2015-04-10 22:57 - 00003476 _____ () C:\Users\Adriano\Desktop\Rkill.txt
2015-04-10 22:55 - 2015-04-10 22:55 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Adriano\Downloads\rkill.com
2015-04-10 22:51 - 2015-04-10 22:51 - 00002188 _____ () C:\Users\Adriano\Desktop\remoção de vírus.txt
2015-04-10 22:40 - 2015-04-10 22:43 - 00000000 ____D () C:\Users\Adriano\Downloads\HostsXpert
2015-04-10 22:38 - 2015-04-10 22:38 - 00357766 _____ () C:\Users\Adriano\Downloads\HostsXpert.zip
2015-03-20 20:50 - 2015-04-06 20:19 - 00000000 ____D () C:\Users\Todos os Usuários\boost_interprocess
2015-03-20 20:50 - 2015-04-06 20:19 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-03-20 20:24 - 2015-03-20 20:24 - 00001024 _____ () C:\.rnd
2015-03-19 19:39 - 2015-04-12 12:19 - 00000336 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2015-03-19 19:39 - 2015-03-19 19:39 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-03-19 19:39 - 2015-03-19 19:39 - 00003164 _____ () C:\Windows\System32\Tasks\Run_Bobby_Browser
2015-03-19 19:39 - 2015-03-19 19:39 - 00002640 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2015-03-19 19:39 - 2015-03-19 19:39 - 00000000 ____D () C:\Users\Adriano\AppData\Roaming\GlarySoft
2015-03-19 19:38 - 2015-03-19 19:48 - 00000000 ____D () C:\Users\Adriano\AppData\Local\BoBrowser
2015-03-19 19:38 - 2015-03-19 19:38 - 00000826 _____ () C:\Users\Adriano\Desktop\Instalar Glary Utilities.lnk
2015-03-19 19:37 - 2015-03-19 19:38 - 15007712 _____ () C:\Users\Adriano\Downloads\Glary-Utilities_521(01).exe
2015-03-19 19:37 - 2015-03-19 19:37 - 00000000 ____D () C:\Program Files\PopDeals
2015-03-19 18:46 - 2015-03-19 19:39 - 00001092 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-03-19 18:46 - 2015-03-19 19:39 - 00001080 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-03-19 18:46 - 2015-03-19 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-03-19 17:56 - 2015-04-10 22:08 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
Torch (HKU\S-1-5-21-385034928-3146383992-1105951338-1000\...\Torch) (Version: 39.0.0.9329 - Torch Media, Inc) <==== ATTENTION
Task: {08869D99-8372-431B-8177-05327F6E2BBF} - System32\Tasks\Run_Bobby_Browser => C:\Users\Adriano\AppData\Local\BoBrowser\Application\bobrowser.exe <==== ATTENTION
Task: {25D03EDF-AEE1-4666-8CE8-454C2673F3D6} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-16] (Glarysoft Ltd)
Task: {B95767CE-1286-4395-B6E4-A736452A8314} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-16] (Glarysoft Ltd)
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
2015-04-11 23:04 - 2009-09-15 18:20 - 00345088 _____ () C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\madExcept_.bpl
2015-04-11 23:04 - 2009-09-15 18:20 - 00177152 _____ () C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\madBasic_.bpl
2015-04-11 23:04 - 2009-09-15 18:20 - 00044544 _____ () C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\madDisAsm_.bpl
C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\SmartRam2.0.exe
C:\Users\Public\mp3rocket_s.exe
CreateRestorePoint:
Hosts:
RemoveProxy:
Reboot:
end

*****************

Processes closed successfully.
C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\SmartRam2.0.exe => No running process found
HKU\S-1-5-21-385034928-3146383992-1105951338-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SmartRAM => value deleted successfully.
TorchCrashHandler => Service deleted successfully.
VGPU => Service deleted successfully.
C:\Users\Adriano\Downloads\hijackthis.log => Moved successfully.
C:\Users\Adriano\Downloads\HijackThis.exe => Moved successfully.
C:\Program Files (x86)\ESET => Moved successfully.
C:\Users\Adriano\Downloads\esetsmartinstaller_enu.exe => Moved successfully.
C:\Users\Todos os Usuários\Doctor Web => Moved successfully.
"C:\ProgramData\Doctor Web" => File/Directory not found.
C:\Users\Adriano\Doctor Web => Moved successfully.
C:\Users\Adriano\Desktop\Rkill.txt => Moved successfully.
C:\Users\Adriano\Downloads\rkill.com => Moved successfully.
C:\Users\Adriano\Desktop\remoção de vírus.txt => Moved successfully.
C:\Users\Adriano\Downloads\HostsXpert => Moved successfully.
C:\Users\Adriano\Downloads\HostsXpert.zip => Moved successfully.
C:\Users\Todos os Usuários\boost_interprocess => Moved successfully.
"C:\ProgramData\boost_interprocess" => File/Directory not found.
C:\.rnd => Moved successfully.
"C:\Windows\Tasks\GlaryInitialize 5.job" => File/Directory not found.
"C:\Windows\system32\Drivers\GUBootStartup.sys" => File/Directory not found.
C:\Windows\System32\Tasks\Run_Bobby_Browser => Moved successfully.
"C:\Windows\System32\Tasks\GlaryInitialize 5" => File/Directory not found.
C:\Users\Adriano\AppData\Roaming\GlarySoft => Moved successfully.
C:\Users\Adriano\AppData\Local\BoBrowser => Moved successfully.
C:\Users\Adriano\Desktop\Instalar Glary Utilities.lnk => Moved successfully.
C:\Users\Adriano\Downloads\Glary-Utilities_521(01).exe => Moved successfully.
C:\Program Files\PopDeals => Moved successfully.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk" => File/Directory not found.
"C:\Users\Public\Desktop\Glary Utilities 5.lnk" => File/Directory not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5" => File/Directory not found.
"C:\Program Files (x86)\Glary Utilities 5" => File/Directory not found.
Torch (HKU\S-1-5-21-385034928-3146383992-1105951338-1000\...\Torch) (Version: 39.0.0.9329 - Torch Media, Inc) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{08869D99-8372-431B-8177-05327F6E2BBF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08869D99-8372-431B-8177-05327F6E2BBF}" => Key deleted successfully.
C:\Windows\System32\Tasks\Run_Bobby_Browser not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Run_Bobby_Browser" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25D03EDF-AEE1-4666-8CE8-454C2673F3D6} => Key not found.
C:\Windows\System32\Tasks\GU5SkipUAC not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GU5SkipUAC => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B95767CE-1286-4395-B6E4-A736452A8314} => Key not found.
C:\Windows\System32\Tasks\GlaryInitialize 5 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GlaryInitialize 5 => Key not found.
C:\Windows\Tasks\GlaryInitialize 5.job not found.
C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\madExcept_.bpl => Moved successfully.
C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\madBasic_.bpl => Moved successfully.
C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\madDisAsm_.bpl => Moved successfully.
C:\Users\Adriano\AppData\Local\Temp\Rar$EXa0.368\IObit Smart Ram 2.0\SmartRam2.0.exe => Moved successfully.
C:\Users\Public\mp3rocket_s.exe => Moved successfully.
Restore point was successfully created.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.
HKU\S-1-5-21-385034928-3146383992-1105951338-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\S-1-5-21-385034928-3146383992-1105951338-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.


========= End of RemoveProxy: =========

EmptyTemp: => Removed 209.6 MB temporary data.


The system needed a reboot.

==== End of Fixlog 16:11:39 ====

Publicité


Signaler le contenu de ce document

Publicité