cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Scan Tool (x64) Version:18-01-2016
Ran by Caetano (2016-01-20 22:10:36) Run:1
Running from D:\Users\Caetano\Desktop
Loaded Profiles: Caetano (Available Profiles: Caetano & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
HKLM-x32\...\Run: [] => [X]
FF Extension: No Name - D:\Users\Caetano\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [not found]
FF HKU\S-1-5-21-1014537539-2695994088-2108778008-1000\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - D:\Users\Caetano\AppData\Local\GAS Tecnologia\GBBD\cef\xpi => not found
CHR Plugin: (Widevine Content Decryption Module) - D:\Users\Caetano\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll => No File
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
U3 idsvc; no ImagePath
D:\Users\Caetano\AppData\Local\Temp\namebench.exe
D:\Users\Caetano\AppData\Local\Temp\python27.dll
D:\Users\Caetano\AppData\Local\Temp\tcl85.dll
D:\Users\Caetano\AppData\Local\Temp\tk85.dll
CustomCLSID: HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> D:\Users\Caetano\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> D:\Users\Caetano\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> D:\Users\Caetano\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> D:\Users\Caetano\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> D:\Users\Caetano\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> D:\Users\Caetano\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
Task: {32A5F204-8D4A-4C3D-B4EA-855B000D8A9D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3632D93F-FECC-4412-8161-0E7E6DA0AC11} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {443551E0-5B5D-45B3-9D23-6628C1501B79} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {7D386109-4A56-473E-AE4F-A38D7B1BBDBE} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {87CB2D65-5224-4481-9FCC-242019E2C12F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {8C1C4E8F-0903-4249-B29C-487F7E13C1E0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {950A4493-D957-4A60-AC66-7CAEC95DB839} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {B693409A-915D-4471-988E-6694A7F7E60E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {DACD4789-69AC-4E6C-AD7A-98DEFE0087B9} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F01A67C3-4996-4937-B2C0-1066F858EA5C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {FEC565A8-33C7-4F41-8F7C-088FD9B11DCA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
FirewallRules: [{5B7BE32C-758E-4F81-B3B5-B210A8314424}] => (Allow) D:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{919C44EA-8ABF-45DA-B156-C3A8E511E458}] => (Allow) D:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{8B535619-274B-4D07-98E6-3DBED2F56A06}] => (Allow) D:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{A9CEE8F2-C5CE-44F1-BD0B-5236BFA471A8}] => (Allow) D:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{E3865D2D-8097-49BF-AAC6-ACEEEBB81A55}] => (Allow) D:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{66CD4650-9A88-44F9-A63A-B74A2E03824C}] => (Allow) D:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{AF31071D-D56D-422B-A140-F029814EC839}] => (Allow) D:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{05A48E50-1D59-4DFE-B3B5-2707F5222625}] => (Allow) D:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{C65AF969-2F83-49A8-A6C2-8491FAAE6CB9}] => (Allow) D:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{F9A12D6A-D6E7-4D66-B7EA-9C2650D744B2}] => (Allow) D:\Program Files\KMSpico\AutoPico.exe
emptytemp:
end
*****************

Restore point was successfully created.
Processes closed successfully.
D:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
D:\Users\Caetano\AppData\Local\GAS Tecnologia\GBBD\cef\xpi => path removed successfully
HKU\S-1-5-21-1014537539-2695994088-2108778008-1000\Software\Mozilla\Firefox\Extensions\\{87F8774F-B485-47E2-A755-A40A8A5E886D} => value removed successfully
D:\Users\Caetano\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll => not found.
gbpddfac => service removed successfully
gbpddreg => service removed successfully
idsvc => service removed successfully
D:\Users\Caetano\AppData\Local\Temp\namebench.exe => moved successfully
D:\Users\Caetano\AppData\Local\Temp\python27.dll => moved successfully
D:\Users\Caetano\AppData\Local\Temp\tcl85.dll => moved successfully
D:\Users\Caetano\AppData\Local\Temp\tk85.dll => moved successfully
"HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}" => key removed successfully
"HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}" => key removed successfully
"HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => key removed successfully
"HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}" => key removed successfully
"HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}" => key removed successfully
"HKU\S-1-5-21-1014537539-2695994088-2108778008-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32A5F204-8D4A-4C3D-B4EA-855B000D8A9D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32A5F204-8D4A-4C3D-B4EA-855B000D8A9D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3632D93F-FECC-4412-8161-0E7E6DA0AC11}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3632D93F-FECC-4412-8161-0E7E6DA0AC11}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{443551E0-5B5D-45B3-9D23-6628C1501B79}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{443551E0-5B5D-45B3-9D23-6628C1501B79}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D386109-4A56-473E-AE4F-A38D7B1BBDBE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D386109-4A56-473E-AE4F-A38D7B1BBDBE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87CB2D65-5224-4481-9FCC-242019E2C12F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87CB2D65-5224-4481-9FCC-242019E2C12F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C1C4E8F-0903-4249-B29C-487F7E13C1E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C1C4E8F-0903-4249-B29C-487F7E13C1E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{950A4493-D957-4A60-AC66-7CAEC95DB839}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{950A4493-D957-4A60-AC66-7CAEC95DB839}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B693409A-915D-4471-988E-6694A7F7E60E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B693409A-915D-4471-988E-6694A7F7E60E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DACD4789-69AC-4E6C-AD7A-98DEFE0087B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DACD4789-69AC-4E6C-AD7A-98DEFE0087B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F01A67C3-4996-4937-B2C0-1066F858EA5C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F01A67C3-4996-4937-B2C0-1066F858EA5C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FEC565A8-33C7-4F41-8F7C-088FD9B11DCA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FEC565A8-33C7-4F41-8F7C-088FD9B11DCA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5B7BE32C-758E-4F81-B3B5-B210A8314424} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{919C44EA-8ABF-45DA-B156-C3A8E511E458} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8B535619-274B-4D07-98E6-3DBED2F56A06} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A9CEE8F2-C5CE-44F1-BD0B-5236BFA471A8} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E3865D2D-8097-49BF-AAC6-ACEEEBB81A55} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{66CD4650-9A88-44F9-A63A-B74A2E03824C} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF31071D-D56D-422B-A140-F029814EC839} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{05A48E50-1D59-4DFE-B3B5-2707F5222625} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C65AF969-2F83-49A8-A6C2-8491FAAE6CB9} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F9A12D6A-D6E7-4D66-B7EA-9C2650D744B2} => value not found.
EmptyTemp: => 1.1 GB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 22:13:31 ====

Publicité


Signaler le contenu de ce document

Publicité