cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 14-05-2015 02
Ran by Cliente at 2015-05-14 21:56:55 Run:1
Running from C:\Users\Cliente\Downloads
Loaded Profiles: Cliente (Available profiles: Cliente & UpdatusUser & Convidado)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
CloseProcesses:
(QNT) C:\Users\Cliente\AppData\Roaming\NetService\netservice.exe
HKU\S-1-5-21-2148002555-1264172292-1573454602-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
R2 NetTcpHandler; C:\Users\Cliente\AppData\Roaming\NetService\netservice.exe [211824 2015-03-20] (QNT)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 XDva419; \??\C:\Windows\system32\XDva419.sys [X]
S3 XDva422; \??\C:\Windows\system32\XDva422.sys [X]
U3 mbr; \??\C:\Users\Cliente\AppData\Local\Temp\mbr.sys [X]
2015-05-14 18:57 - 2015-05-14 18:57 - 00108914 _____ () C:\Users\Cliente\Desktop\ZHPDiag.txt
2015-05-14 18:12 - 2015-05-14 18:14 - 00004693 _____ () C:\Users\Cliente\Desktop\ZHPCleaner.txt
2015-05-14 17:59 - 2015-05-14 17:59 - 01823744 _____ () C:\Users\Cliente\Downloads\ZHPCleaner.exe
2015-05-14 17:59 - 2015-05-14 17:59 - 00000832 _____ () C:\Users\Cliente\Desktop\ZHPCleaner.lnk
2015-05-14 17:30 - 2015-05-14 17:30 - 01196032 _____ () C:\Users\Cliente\Downloads\CTR.exe
2015-05-14 17:28 - 2015-05-14 17:29 - 01348096 _____ () C:\Users\Cliente\Downloads\SFTGC.exe
2015-05-14 17:06 - 2015-05-14 17:06 - 02721175 _____ (Thisisu) C:\Users\Cliente\Downloads\JRT.exe
2015-05-14 15:56 - 2015-05-14 15:56 - 00001897 _____ () C:\Users\Cliente\Desktop\ZHPFix.lnk
2015-05-14 15:56 - 2015-05-14 15:56 - 00001770 _____ () C:\Users\Cliente\Desktop\ZHPDiag.lnk
2015-05-14 15:56 - 2015-05-14 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-05-14 15:55 - 2015-05-14 18:56 - 00000000 ____D () C:\Program Files\ZHPDiag
2015-05-14 14:55 - 2015-05-14 14:56 - 00269094 _____ (Software Installer ) C:\Users\Cliente\Downloads\superantispyware-free-6-0-1194-32-bits.exe.vl7ud3k.partial
2015-05-14 14:52 - 2015-05-14 14:53 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Cliente\Downloads\mbam-setup-2.1.6.1022.exe
015-05-14 06:58 - 2015-05-14 18:14 - 00000000 ____D () C:\Program Files\WajaWebEnhance
2015-05-14 06:57 - 2015-05-10 18:44 - 00000000 _____ () C:\Windows\system32\Drivers\etc\hp.bak
2015-05-14 06:56 - 2015-05-14 12:50 - 00000000 ____D () C:\Users\Cliente\AppData\Roaming\RunDir
2015-05-14 06:56 - 2015-05-14 06:56 - 00000000 ____D () C:\Users\Cliente\AppData\Roaming\NetService
2015-05-14 06:56 - 2015-05-14 06:56 - 00000000 ____D () C:\Users\Cliente\AppData\Roaming\03000200-1431597409-0500-0006-000700080009
2015-05-14 08:23 - 2015-05-14 08:23 - 0628688 _____ (CMI Limited) C:\Users\Cliente\AppData\Local\nsu9585.tmp
Task: {8FB903B2-E232-4AB9-99BE-C0F59BB3B4ED} - \Adobe Flash Player Updater No Task File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:56E2E879
CMD: ipconfig /flushdns
CreateRestorePoint:
RemoveProxy:
emptytemp:
Reboot:
end

*****************

Processes closed successfully.
C:\Users\Cliente\AppData\Roaming\NetService\netservice.exe => No running process found
"HKU\S-1-5-21-2148002555-1264172292-1573454602-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
NetTcpHandler => Service deleted successfully.
AdobeFlashPlayerUpdateSvc => Service deleted successfully.
MBAMSwissArmy => Service deleted successfully.
VGPU => Service deleted successfully.
vmci => Service deleted successfully.
VMnetAdapter => Service deleted successfully.
XDva419 => Service deleted successfully.
XDva422 => Service deleted successfully.
mbr => Service deleted successfully.
"C:\Users\Cliente\Desktop\ZHPDiag.txt" => File/Directory not found.
"C:\Users\Cliente\Desktop\ZHPCleaner.txt" => File/Directory not found.
"C:\Users\Cliente\Downloads\ZHPCleaner.exe" => File/Directory not found.
"C:\Users\Cliente\Desktop\ZHPCleaner.lnk" => File/Directory not found.
"C:\Users\Cliente\Downloads\CTR.exe" => File/Directory not found.
"C:\Users\Cliente\Downloads\SFTGC.exe" => File/Directory not found.
"C:\Users\Cliente\Downloads\JRT.exe" => File/Directory not found.
"C:\Users\Cliente\Desktop\ZHPFix.lnk" => File/Directory not found.
"C:\Users\Cliente\Desktop\ZHPDiag.lnk" => File/Directory not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP" => File/Directory not found.
C:\Program Files\ZHPDiag => Moved successfully.
"C:\Users\Cliente\Downloads\superantispyware-free-6-0-1194-32-bits.exe.vl7ud3k.partial" => File/Directory not found.
"C:\Users\Cliente\Downloads\mbam-setup-2.1.6.1022.exe" => File/Directory not found.
015-05-14 06:58 - 2015-05-14 18:14 - 00000000 ____D () C:\Program Files\WajaWebEnhance => Error: No automatic fix found for this entry.
C:\Windows\system32\Drivers\etc\hp.bak => Moved successfully.
C:\Users\Cliente\AppData\Roaming\RunDir => Moved successfully.
C:\Users\Cliente\AppData\Roaming\NetService => Moved successfully.
C:\Users\Cliente\AppData\Roaming\03000200-1431597409-0500-0006-000700080009 => Moved successfully.
C:\Users\Cliente\AppData\Local\nsu9585.tmp => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FB903B2-E232-4AB9-99BE-C0F59BB3B4ED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FB903B2-E232-4AB9-99BE-C0F59BB3B4ED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => Key deleted successfully.
C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully.
"C:\Users\Todos os Usuários\TEMP" => ":56E2E879" ADS not found.

========= ipconfig /flushdns =========


Configura��o de IP do Windows

Libera��o do Cache do DNS Resolver bem-sucedida.

========= End of CMD: =========

Restore point was successfully created.

========= RemoveProxy: =========

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.
HKU\S-1-5-21-2148002555-1264172292-1573454602-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\S-1-5-21-2148002555-1264172292-1573454602-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.


========= End of RemoveProxy: =========

EmptyTemp: => Removed 201.9 MB temporary data.


The system needed a reboot.

==== End of Fixlog 21:58:26 ====

Publicité


Signaler le contenu de ce document

Publicité