cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão:05-03-2016
Executado por NEWUSU (2016-03-12 23:04:21) Run:1
Executando a partir de C:\Users\NEWUSU\Desktop
Perfis Carregados: NEWUSU (Perfis Disponíveis: NEWUSU & Convidado)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
start
CloseProcesses:
HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\...\Run: [uTorrent] => C:\Users\NEWUSU\AppData\Roaming\uTorrent\uTorrent.exe [2065944 2016-02-05] (BitTorrent Inc.)
HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\...\MountPoints2: {34c665bc-2575-11e4-960c-806e6f6e6963} - D:\Autorun.exe
HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
BootExecute: autocheck autochk * sdnclean64.exe
FF Plugin HKU\S-1-5-21-4220064015-3225715080-1381729876-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\NEWUSU\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Nenhum Arquivo]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-13] ()
Task: {4E99460F-4068-434B-8441-77CE3A843D9A} - System32\Tasks\{D177F85E-92BF-4032-9D06-25950E7DBECA} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{E13AD42C-9660-4975-982B-F573DF9BE9FB}\setup.exe" -c -runfromtemp -l0x0416 -removeonly
C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1434]
CreateRestorePoint:
RemoveProxy:
EmptyTemp:
Reboot:
Hosts:
end

*****************

Processos fechados com sucesso.
HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => valor removido (a) com sucesso.
"HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34c665bc-2575-11e4-960c-806e6f6e6963}" => chave removido (a) com sucesso.
HKCR\CLSID\{34c665bc-2575-11e4-960c-806e6f6e6963} => chave não encontrado (a).
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotPostWindows10UpgradeReInstall => valor removido (a) com sucesso.
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => valor restaurado com sucesso
"HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0" => chave removido (a) com sucesso.
C:\Users\NEWUSU\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll => não encontrado (a).
gbpddfac => serviço removido (a) com sucesso.
gbpddreg => serviço removido (a) com sucesso.
EsgScanner => serviço removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E99460F-4068-434B-8441-77CE3A843D9A}" => chave removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E99460F-4068-434B-8441-77CE3A843D9A}" => chave removido (a) com sucesso.
C:\Windows\System32\Tasks\{D177F85E-92BF-4032-9D06-25950E7DBECA} => movido com sucesso
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D177F85E-92BF-4032-9D06-25950E7DBECA}" => chave removido (a) com sucesso.
C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe => movido com sucesso
C:\Program Files (x86)\GbPlugin => ":IncompleteStartProcessProtection.cnt" ADS removido (a) com sucesso..
C:\Program Files (x86)\GbPlugin => ":u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==" ADS removido (a) com sucesso..
C:\Windows\system32\Drivers\wsddfac.sys => ":X5ZN8aGXs4" ADS removido (a) com sucesso..
Ponto de Restauração criado com sucesso.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => valor removido (a) com sucesso.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => valor removido (a) com sucesso.
HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => valor removido (a) com sucesso.
HKU\S-1-5-21-4220064015-3225715080-1381729876-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => valor removido (a) com sucesso.


========= Fim de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido com sucesso
Hosts restaurado com sucesso.
EmptyTemp: => 459 MB de dados temporários Removidos.


O sistema precisou ser reiniciado.

==== Fim de Fixlog 23:05:34 ====

Publicité


Signaler le contenu de ce document

Publicité