cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Scan Tool (x64) Version:24-06-2015
Ran by ritter at 2015-06-27 08:43:20 Run:1
Running from C:\Users\ritter\Desktop
Loaded Profiles: ritter & (Available Profiles: ritter)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
() C:\Users\ritter\AppData\Roaming\vPDVEq\svcost.exe
HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\Run: [zefzefefzefzegfzelgjr547za5] => C:\Users\ritter\AppData\Roaming\rekdgrekghrk\nesa.exe [135168 2015-06-26] (Eastsullivan)
HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\Run: [a5z44az45a54za5z4556adadfgdfgfsgza5412] => C:\Users\ritter\AppData\Roaming\a5z44az45a54za5z4556adadfgdfgfsgza5412\nada.exe
S3 cpuz134; \??\C:\Users\ritter\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
2015-06-24 22:01 - 2015-06-26 23:52 - 00000000 ____D C:\Users\ritter\AppData\Roaming\vPDVEq
2015-06-24 22:01 - 2015-06-26 09:44 - 00845074 _____ () C:\Users\ritter\AppData\Roaming\vPDVEq\svcost.exe
C:\Users\ritter\AppData\Roaming\rekdgrekghrk
C:\Users\ritter\AppData\Roaming\vPDVEq
C:\Users\ritter\AppData\Roaming\a5z44az45a54za5z4556adadfgdfgfsgza5412
2015-06-26 19:04 - 2015-06-26 19:04 - 00098816 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32api.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00110080 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\pywintypes27.dll
2015-06-26 19:04 - 2015-06-26 19:04 - 00364544 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\pythoncom27.dll
2015-06-26 19:04 - 2015-06-26 19:04 - 00045568 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_socket.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 01161216 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_ssl.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00320512 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32com.shell.shell.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00713216 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_hashlib.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 01175040 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._core_.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00805888 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._gdi_.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00811008 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._windows_.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 01062400 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._controls_.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00735232 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._misc_.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00682496 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\pysqlite2._sqlite.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00087552 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_ctypes.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00119808 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32file.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00108544 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32security.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00007168 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\hashobjs_ext.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00026624 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\usb_ext.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00167936 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32gui.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00018432 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32event.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00128512 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_elementtree.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00127488 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\pyexpat.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00013824 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\common.time34.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00036864 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_psutil_windows.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00038912 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32inet.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00011264 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32crypt.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00070656 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._html2.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00027136 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_multiprocessing.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00020480 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\_yappi.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00035840 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32process.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00686080 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\unicodedata.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00122368 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._wizard.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00024064 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32pipe.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00010240 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\select.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00025600 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32pdh.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00525640 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\windows._lib_cacheinvalidation.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00017408 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32profile.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00022528 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32ts.pyd
2015-06-26 19:04 - 2015-06-26 19:04 - 00078336 _____ () C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._animate.pyd
EmptyTemp:
end
*****************

Restore point was successfully created.
Processes closed successfully.
C:\Users\ritter\AppData\Roaming\vPDVEq\svcost.exe => No running process found
HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\Software\Microsoft\Windows\CurrentVersion\Run\\zefzefefzefzegfzelgjr547za5 => value removed successfully
HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\Software\Microsoft\Windows\CurrentVersion\Run\\a5z44az45a54za5z4556adadfgdfgfsgza5412 => value removed successfully
cpuz134 => Service removed successfully
C:\Users\ritter\AppData\Roaming\vPDVEq => moved successfully.
"C:\Users\ritter\AppData\Roaming\vPDVEq\svcost.exe" => File/Folder not found.
C:\Users\ritter\AppData\Roaming\rekdgrekghrk => moved successfully.
"C:\Users\ritter\AppData\Roaming\vPDVEq" => File/Folder not found.
"C:\Users\ritter\AppData\Roaming\a5z44az45a54za5z4556adadfgdfgfsgza5412" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32api.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\pywintypes27.dll" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\pythoncom27.dll" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_socket.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_ssl.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32com.shell.shell.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_hashlib.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._core_.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._gdi_.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._windows_.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._controls_.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._misc_.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\pysqlite2._sqlite.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_ctypes.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32file.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32security.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\hashobjs_ext.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\usb_ext.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32gui.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32event.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_elementtree.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\pyexpat.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\common.time34.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_psutil_windows.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32inet.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32crypt.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._html2.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_multiprocessing.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\_yappi.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32process.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\unicodedata.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._wizard.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32pipe.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\select.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32pdh.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\windows._lib_cacheinvalidation.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32profile.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\win32ts.pyd" => File/Folder not found.
"C:\Users\ritter\AppData\Local\Temp\_MEI13562\wx._animate.pyd" => File/Folder not found.
EmptyTemp: => 20.5 GB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 08:43:53 ====

Publicité


Signaler le contenu de ce document

Publicité