cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-08-2015
Ran by Wendling (2015-08-06 22:34:52)
Running from C:\Users\Wendling\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1735972694-2679632832-3279594583-500 - Administrator - Disabled)
Convidado (S-1-5-21-1735972694-2679632832-3279594583-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1735972694-2679632832-3279594583-1002 - Limited - Enabled)
Wendling (S-1-5-21-1735972694-2679632832-3279594583-1000 - Administrator - Enabled) => C:\Users\Wendling

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\uTorrent) (Version: 3.3.2.30380 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX & Plugin 64-bit (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Shockwave Player + Authorware Web Player (HKLM-x32\...\Adobe Shockwave Player + Authorware Web Player) (Version: v12.1.7.157 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{8DF1EF50-AEB6-902C-F68C-4683C45784E6}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
aTube Catcher versão 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Battlefield 1942™ (HKLM-x32\...\{5BE7BD06-512B-43bf-AD78-3BD2A5F5F7B3}) (Version: 1.6.20.0 - Electronic Arts)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version: - Klei Entertainment)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.8.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.33 - Dropbox, Inc.) Hidden
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{10144CFE-D76C-4CFA-81A1-37A1642349A3}) (Version: 3.01.0013 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-211 214 216 Series Printer Uninstall (HKLM\...\EPSON XP-211 214 216 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden
K-Lite Mega Codec Pack 11.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.1.0 - )
Malwarebytes Anti-Exploit version 1.07.1.1015 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.07.1.1015 - Malwarebytes)
Manual Epson XP-211_XP-214 versão 1.0 (HKLM-x32\...\UsersGuideManual Epson XP-211_XP-214_is1) (Version: 1.0 - )
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\OneDriveSetup.exe) (Version: 17.3.5907.0716 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{1a63c099-febd-4eaf-83ad-a82ea4fdac49}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\MK LOL) (Version: - )
Mozilla Firefox 39.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 pt-BR)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments)
Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version: - Native Instruments)
Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments)
Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 3.18.4.529187 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.55.8 - Black Tree Gaming)
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
Sniper Elite (HKLM-x32\...\Steam App 3700) (Version: - Rebellion)
Software Updater (HKLM-x32\...\{D60071DB-459C-465C-92EF-336E65F1A436}) (Version: 4.0.1 - SEIKO EPSON CORPORATION)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
SpywareBlaster 5.2 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.2.0 - BrightFort LLC)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suporte para Aplicativos Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.42.130 - Electronic Arts)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

28-07-2015 21:43:08 Windows Update
29-07-2015 16:21:35 Windows Update
01-08-2015 16:22:28 Windows Update
03-08-2015 22:18:20 ComboFix created restore point
03-08-2015 22:30:12 JRT Pre-Junkware Removal
05-08-2015 19:57:34 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2015-08-03 22:23 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2B860FA2-69A4-4AB7-9598-C942405637BA} - System32\Tasks\EPSON XP-211 214 216 Series Invitation {438ADD9C-7DBA-462A-A4E1-DB3AEBE91D95} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLDE.EXE [2013-02-27] (SEIKO EPSON CORPORATION)
Task: {40AD32BF-0316-4548-8AE4-AD2A7AE7DF80} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-22] (Google Inc.)
Task: {5D656ADA-CC92-4952-B6F0-00F2F79EFF44} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-18] (Adobe Systems Incorporated)
Task: {6522B787-F642-48EA-A066-42E8A6269285} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {689F8692-C90D-44F2-AE14-DE4F6B59BD97} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-06] (Dropbox, Inc.)
Task: {68A0E823-31F0-402A-BDA1-F22D34698CAA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-06] (Dropbox, Inc.)
Task: {748B6C29-1EFC-4258-9C8C-AFEF2FCCD59E} - System32\Tasks\EPSON XP-211 214 216 Series Update {438ADD9C-7DBA-462A-A4E1-DB3AEBE91D95} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLDE.EXE [2013-02-27] (SEIKO EPSON CORPORATION)
Task: {A5A68AD2-B519-4416-81AB-F8E063B9743B} - System32\Tasks\{3AACD3F9-AAF0-4355-AAC2-1896EF527A0E} => pcalua.exe -a G:\Downloads\pbsetup.exe -d G:\Downloads
Task: {A9660014-9730-4303-AAB1-25DA5B15838C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-22] (Google Inc.)
Task: {E67B709C-BE86-47BC-A5EB-A54277960780} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON XP-211 214 216 Series Invitation {438ADD9C-7DBA-462A-A4E1-DB3AEBE91D95}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLDE.EXE
Task: C:\Windows\Tasks\EPSON XP-211 214 216 Series Update {438ADD9C-7DBA-462A-A4E1-DB3AEBE91D95}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLDE.EXE:/EXE:{438ADD9C-7DBA-462A-A4E1-DB3AEBE91D95} /F:UpdateSISTEMAĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-15 21:39 - 2015-07-15 21:39 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2015-07-15 21:38 - 2015-07-15 21:38 - 00127488 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-07-03 22:54 - 2015-07-13 15:22 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-07-15 21:38 - 2015-07-15 21:38 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-07-13 15:08 - 2015-08-06 21:54 - 00226168 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-12-23 16:54 - 2014-12-23 16:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\kpcengine.2.3.dll
2015-08-06 17:42 - 2015-08-06 17:42 - 00071168 _____ () c:\users\wendling\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5wo1gc.dll
2015-07-06 12:37 - 2015-07-16 21:31 - 00012800 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll
2015-07-06 12:37 - 2015-07-16 21:31 - 00779776 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-30 18:28 - 2015-07-16 21:31 - 00056320 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-07-06 12:37 - 2015-07-16 21:31 - 00012288 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll
2010-11-22 19:56 - 2010-11-22 19:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-13 20:26 - 2014-05-13 20:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-13 20:26 - 2014-05-13 20:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-13 20:26 - 2014-05-13 20:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-13 20:26 - 2014-05-13 20:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-22 19:57 - 2010-11-22 19:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-22 19:56 - 2010-11-22 19:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-22 19:57 - 2010-11-22 19:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-22 19:57 - 2010-11-22 19:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 15:17 - 2011-02-15 15:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-22 19:57 - 2010-11-22 19:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-13 20:26 - 2014-05-13 20:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2014-08-13 21:37 - 2014-08-13 21:37 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2013-11-20 21:05 - 2013-11-20 21:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-22 19:56 - 2010-11-22 19:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-22 19:57 - 2010-11-22 19:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-22 19:56 - 2010-11-22 19:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2015-07-27 16:32 - 2015-07-27 16:32 - 02551040 _____ () C:\Program Files (x86)\Raptr\ltc_host_ex.DLL
2014-08-13 21:37 - 2014-08-13 21:37 - 00027667 _____ () C:\Program Files (x86)\Raptr\plugins\audio_output\libdirectsound_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00031251 _____ () C:\Program Files (x86)\Raptr\plugins\audio_output\libwaveout_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00066579 _____ () C:\Program Files (x86)\Raptr\plugins\video_output\libdirectdraw_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00045587 _____ () C:\Program Files (x86)\Raptr\plugins\access\libfilesystem_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 10447379 _____ () C:\Program Files (x86)\Raptr\plugins\codec\libavcodec_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00020499 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libyuy2_i420_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00015379 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libgrey_yuv_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00017427 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libi422_yuy2_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00032275 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libi420_rgb_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00018963 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libi420_yuy2_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00016915 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libyuy2_i422_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00015379 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\libi422_i420_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00013843 _____ () C:\Program Files (x86)\Raptr\plugins\video_chroma\librv32_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00093715 _____ () C:\Program Files (x86)\Raptr\plugins\video_output\libglwin32_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00014355 _____ () C:\Program Files (x86)\Raptr\plugins\video_output\libdrawable_plugin.dll
2014-08-13 21:37 - 2014-08-13 21:37 - 00013843 _____ () C:\Program Files (x86)\Raptr\plugins\audio_mixer\libfloat_mixer_plugin.dll
2010-11-22 19:57 - 2010-11-22 19:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-17 21:56 - 2014-06-17 21:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 15:17 - 2011-02-15 15:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-22 20:06 - 2010-11-22 20:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-09 20:52 - 2013-05-09 20:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-09 20:52 - 2013-05-09 20:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-09 20:52 - 2013-05-09 20:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 15:57 - 2013-05-03 15:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 15:56 - 2013-05-03 15:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 15:56 - 2013-05-03 15:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 15:57 - 2013-05-03 15:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 15:56 - 2013-05-03 15:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 15:57 - 2013-05-03 15:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 15:57 - 2013-05-03 15:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 15:57 - 2013-05-03 15:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 15:57 - 2013-05-03 15:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 01007104 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00024576 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00216576 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00261120 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00019456 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00337408 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00228352 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 01086976 _____ () C:\Program Files (x86)\Origin\twitchsdk_32_release.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00394810 _____ () C:\Program Files (x86)\Origin\libmp3lame-ttv.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00113171 _____ () C:\Program Files (x86)\Origin\swresample-ttv-0.dll
2015-06-24 13:05 - 2015-07-27 18:13 - 00246332 _____ () C:\Program Files (x86)\Origin\avutil-ttv-51.dll
2015-08-04 18:43 - 2015-07-31 03:19 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.130\libglesv2.dll
2015-08-04 18:43 - 2015-07-31 03:19 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.130\libegl.dll
2015-08-04 18:43 - 2015-07-31 03:19 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.130\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files\Common Files\Microsoft Shared:ulGbOLtThzDkb2Z8CK1a
AlternateDataStreams: C:\ProgramData\Microsoft:7tzpeTy4vD1YADMuIWMwES
AlternateDataStreams: C:\ProgramData\Microsoft:J7iFHwXmYC3YFETSNPb4A
AlternateDataStreams: C:\ProgramData\Microsoft:qc9TJ3JlvBaSoz4e3S
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:7tzpeTy4vD1YADMuIWMwES
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:J7iFHwXmYC3YFETSNPb4A
AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:qc9TJ3JlvBaSoz4e3S
AlternateDataStreams: C:\Users\Todos os Usuários\TEMP:5C321E34
AlternateDataStreams: C:\Users\Wendling\AppData\Local\Temp:ayOcvFQDMwr1eW2zeq6u
AlternateDataStreams: C:\Users\Wendling\AppData\Local\Temp:dRLsExsVPr38D8tNkISaK

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\...\1001movie.com -> 1001movie.com

There are 6091 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1735972694-2679632832-3279594583-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Wendling\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: AMD FUEL Service => 2
MSCONFIG\Services: dbupdate => 2
MSCONFIG\Services: dbupdatem => 3
MSCONFIG\Services: EpsonCustomerParticipation => 2
MSCONFIG\Services: EPSON_PM_RPCV4_06 => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NIHardwareService => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: PnkBstrA => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: MK LOL => "C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe" -auto
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{9B58AEB4-211E-4860-B6E5-A2FE96B3672F}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{92BB0704-69C9-4125-9E97-29FE6FC9AEAB}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{CE1A0F1A-873E-49A2-9F2B-4D8E0E5E6956}] => (Allow) G:\JOGOS\Origin\Battlefield 4\bf4_x86.exe
FirewallRules: [{28F1860B-1254-43AF-8DFC-3268C48E8280}] => (Allow) G:\JOGOS\Origin\Battlefield 4\bf4_x86.exe
FirewallRules: [{BF45834A-CA1B-4FBD-8317-B5782ADEE7EC}] => (Allow) G:\JOGOS\Origin\Battlefield 4\bf4.exe
FirewallRules: [{57A43650-1AC3-4644-9B69-389AD5BEBD1E}] => (Allow) G:\JOGOS\Origin\Battlefield 4\bf4.exe
FirewallRules: [{A3AC3A27-E7D3-40C0-A40D-A849FDA19660}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AA876BB6-D15B-45CC-BC4D-C53A53D46E65}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2E205C46-9D6D-4511-9B80-F6B73FAFF3E2}] => (Allow) G:\JOGOS\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{87BC6808-DAD3-40D3-89AA-171F6F67770B}] => (Allow) G:\JOGOS\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{C25C27B9-7135-4C28-A0EA-A0BA8E94DE7C}] => (Allow) G:\JOGOS\Origin\Battlefield 1942\BF1942.exe
FirewallRules: [{8267DCE2-0CD0-489B-AD7E-03F0401DE250}] => (Allow) G:\JOGOS\Origin\Battlefield 1942\BF1942.exe
FirewallRules: [{909F8EEC-8029-4FB3-A217-5B5A236A17A8}] => (Allow) G:\JOGOS\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{7A2BB91E-866B-4B57-B35A-188C6F1502FD}] => (Allow) G:\JOGOS\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{F63F448E-07BF-4A8C-9BA5-8933FA29E01D}] => (Allow) G:\JOGOS\Origin\Battlefield 3\bf3.exe
FirewallRules: [{F910DB92-E08E-431E-87B4-A4CEBE4E7F06}] => (Allow) G:\JOGOS\Origin\Battlefield 3\bf3.exe
FirewallRules: [{86034737-8017-49F5-8A71-7E355EB02119}] => (Allow) G:\JOGOS\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{638C0901-CBCE-45E0-B02B-1FDB5FC16CE8}] => (Allow) G:\JOGOS\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{B6A3F4EB-CCEF-4221-BE61-387C251FBC7C}] => (Allow) C:\Users\Wendling\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{8860374C-DFD0-4C66-99AC-9E5C6F41BFF2}] => (Allow) G:\JOGOS\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{D69A4C1A-54A1-4DE6-8A60-59CDD7C60F8E}] => (Allow) G:\JOGOS\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{BE9D4A38-FAE6-4894-AFFB-E96D55274608}] => (Allow) G:\JOGOS\Steam\steamapps\common\Sniper Elite\SniperElite.exe
FirewallRules: [{0FFFBFD1-7BA3-4ABC-A2E0-A176DA3B99D7}] => (Allow) G:\JOGOS\Steam\steamapps\common\Sniper Elite\SniperElite.exe
FirewallRules: [{00F2D876-8639-42D7-9AF3-CDFB783BD94B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7B1E5BC8-16F7-4F8D-838F-6D247533FB7A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C105B922-ED8E-42D4-A8D4-388E3C1C9F08}] => (Allow) G:\JOGOS\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{69C8DE67-C492-4376-B685-17594517617C}] => (Allow) G:\JOGOS\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{D972FE42-4586-46C5-8D4D-FCDC94ABA42B}] => (Allow) G:\JOGOS\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{2C832CD9-688C-418C-9325-D1C71950F30E}] => (Allow) G:\JOGOS\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{0FF3AA39-40FD-4155-80B4-F310D0FFEE37}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{46F5E521-00EE-4328-AE93-48DF8443FE19}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{577A3EA0-6AC8-4FC3-8A1E-68547CB2980C}] => (Allow) C:\Users\Wendling\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{915DDFC2-39D4-4071-AE4F-7CA474CA7F1F}] => (Allow) C:\Users\Wendling\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4347B6BF-99FF-4701-9D35-B1A4EEEAB4E9}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{BA941F9C-B537-4064-849B-496EDA8FF9C6}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{6697204F-8A69-464E-A98B-D105D95E005A}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{0FBAB0AB-8619-4351-A710-49710CAF85B5}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{C1FCE321-ADE0-4A55-BA5E-730491EF93E0}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{2B650509-3E41-4416-8980-CF200A44F32C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/06/2015 05:44:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 03:38:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 10:09:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/05/2015 07:56:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/05/2015 07:24:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 08:22:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 06:10:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 10:04:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 09:14:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/03/2015 10:31:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/05/2015 07:58:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80240020: Atualizar para Windows 10 Pro.

Error: (08/05/2015 07:54:37 PM) (Source: cdrom) (EventID: 15) (User: )
Description: O dispositivo, \Device\CdRom0, não está pronto para acesso.

Error: (08/04/2015 09:38:00 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: O serviço Serviço de transferência inteligente de plano de fundo terminou com o erro específico de serviço %%-2147024846.

Error: (08/04/2015 09:38:00 AM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: AUTORIDADE NT)
Description: Falha ao iniciar o serviço do BITS. Erro 2147942450.

Error: (08/04/2015 09:17:12 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80240020: Atualizar para Windows 10 Pro.

Error: (08/03/2015 10:32:48 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: O Gerenciador de controle de serviços tentou executar uma ação corretiva (Reiniciar o serviço) após a finalização inesperada do serviço Proteção de Software, mas essa ação falhou com o seguinte erro:
%%1056

Error: (08/03/2015 10:32:38 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORIDADE NT)
Description: Falha na Instalação: o Windows não pôde instalar a seguinte atualização com o erro 0x80240020: Atualizar para Windows 10 Pro.

Error: (08/03/2015 10:30:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Proteção de Software foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 120000 milissegundos: Reiniciar o serviço.

Error: (08/03/2015 10:30:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Serviço de Compartilhamento de Rede do Windows Media Player foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 30000 milissegundos: Reiniciar o serviço.

Error: (08/03/2015 10:30:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço Skype Updater foi encerrado inesperadamente. Isso aconteceu 1 vez(es).


Microsoft Office:
=========================
Error: (08/06/2015 05:44:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 03:38:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/06/2015 10:09:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/05/2015 07:56:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/05/2015 07:24:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 08:22:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 06:10:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 10:04:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2015 09:14:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/03/2015 10:31:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity:
===================================
Date: 2015-08-03 22:22:27.519
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-08-03 22:22:27.503
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 960T Processor
Percentage of memory in use: 35%
Total physical RAM: 8172.68 MB
Available physical RAM: 5234.18 MB
Total Virtual: 16343.57 MB
Available Virtual: 12619.38 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:56.52 GB) NTFS
Drive e: (BACKUP) (Fixed) (Total:465.66 GB) (Free:429.35 GB) NTFS
Drive g: () (Fixed) (Total:930.66 GB) (Free:727.64 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 3812F893)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 252B1CBD)
Partition 1: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1A7C55D9)
Partition 1: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité