Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 20-08-2017
Executado por Micaele (21-08-2017 18:58:18) Run:3
Executando a partir de C:\Users\Micaele\Desktop
Perfis Carregados: Micaele (Perfis Disponíveis: Micaele)
Modo da Inicialização: Normal
==============================================
fixlist Conteúdo:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\Run: [Chromium] => c:\users\micaele\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session
2017-08-16 22:53 - 2017-08-16 22:54 - 000196608 _____ (Java(TM) Native Access (JNA)) C:\Users\Micaele\AppData\Local\Temp\jna6831138104419362619.dll
Task: {216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} - \Adobe Acrobat Update Task -> Nenhum Arquivo <==== ATEN��O
Task: {69B4F801-67CD-43CF-8513-90D11336F6F6} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATEN��O
Task: {C1209BB2-486D-4614-9544-EF72E9542649} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATEN��O
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1782]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usu�rios\GbPlugin:IncompleteStartGbprcm.cnt [10]
c:\users\micaele\appdata\local\chromium\application\chrome.exe
C:\Program Files\ByteFence\ByteFence.exe
C:\Program Files\ByteFence
EmptyTemp:
Reboot:
end
*****************
Processos fechados com sucesso.
HKU\S-1-5-21-14380496-3129006202-516063525-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium => valor removido (a) com sucesso.
C:\Users\Micaele\AppData\Local\Temp\jna6831138104419362619.dll => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task => chave não encontrado (a).
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69B4F801-67CD-43CF-8513-90D11336F6F6} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69B4F801-67CD-43CF-8513-90D11336F6F6} => chave removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\ByteFence Scan => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence Scan => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C1209BB2-486D-4614-9544-EF72E9542649} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1209BB2-486D-4614-9544-EF72E9542649} => chave removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\ByteFence => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence => chave removido (a) com sucesso.
C:\Program Files (x86)\GbPlugin => ":IncompleteStartProcessProtection.cnt" ADS removido (a) com sucesso..
C:\WINDOWS\system32\Drivers\gbpddfac64.sys => ":X5ZN8aGvT4" ADS removido (a) com sucesso..
C:\WINDOWS\system32\Drivers\wsddfac.sys => ":X5ZN8aGXs4" ADS removido (a) com sucesso..
C:\ProgramData\GbPlugin => ":IncompleteStartGbprcm.cnt" ADS removido (a) com sucesso..
"C:\Users\Todos os Usuários\GbPlugin" => ":IncompleteStartGbprcm.cnt" ADS não encontrado (a).
"c:\users\micaele\appdata\local\chromium\application\chrome.exe" => não encontrado (a).
C:\Program Files\ByteFence\ByteFence.exe => movido com sucesso
C:\Program Files\ByteFence => movido com sucesso
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14063283 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2626108 B
Edge => 0 B
Executado por Micaele (21-08-2017 18:58:18) Run:3
Executando a partir de C:\Users\Micaele\Desktop
Perfis Carregados: Micaele (Perfis Disponíveis: Micaele)
Modo da Inicialização: Normal
==============================================
fixlist Conteúdo:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-14380496-3129006202-516063525-1001\...\Run: [Chromium] => c:\users\micaele\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session
2017-08-16 22:53 - 2017-08-16 22:54 - 000196608 _____ (Java(TM) Native Access (JNA)) C:\Users\Micaele\AppData\Local\Temp\jna6831138104419362619.dll
Task: {216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} - \Adobe Acrobat Update Task -> Nenhum Arquivo <==== ATEN��O
Task: {69B4F801-67CD-43CF-8513-90D11336F6F6} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATEN��O
Task: {C1209BB2-486D-4614-9544-EF72E9542649} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-07-19] (Byte Technologies LLC) <==== ATEN��O
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\gbpddfac64.sys:X5ZN8aGvT4 [1782]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [2410]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usu�rios\GbPlugin:IncompleteStartGbprcm.cnt [10]
c:\users\micaele\appdata\local\chromium\application\chrome.exe
C:\Program Files\ByteFence\ByteFence.exe
C:\Program Files\ByteFence
EmptyTemp:
Reboot:
end
*****************
Processos fechados com sucesso.
HKU\S-1-5-21-14380496-3129006202-516063525-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium => valor removido (a) com sucesso.
C:\Users\Micaele\AppData\Local\Temp\jna6831138104419362619.dll => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{216F3D3E-6C6A-4120-BD11-BEC951D9DCE5} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task => chave não encontrado (a).
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69B4F801-67CD-43CF-8513-90D11336F6F6} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69B4F801-67CD-43CF-8513-90D11336F6F6} => chave removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\ByteFence Scan => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence Scan => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C1209BB2-486D-4614-9544-EF72E9542649} => chave removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1209BB2-486D-4614-9544-EF72E9542649} => chave removido (a) com sucesso.
C:\WINDOWS\System32\Tasks\ByteFence => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence => chave removido (a) com sucesso.
C:\Program Files (x86)\GbPlugin => ":IncompleteStartProcessProtection.cnt" ADS removido (a) com sucesso..
C:\WINDOWS\system32\Drivers\gbpddfac64.sys => ":X5ZN8aGvT4" ADS removido (a) com sucesso..
C:\WINDOWS\system32\Drivers\wsddfac.sys => ":X5ZN8aGXs4" ADS removido (a) com sucesso..
C:\ProgramData\GbPlugin => ":IncompleteStartGbprcm.cnt" ADS removido (a) com sucesso..
"C:\Users\Todos os Usuários\GbPlugin" => ":IncompleteStartGbprcm.cnt" ADS não encontrado (a).
"c:\users\micaele\appdata\local\chromium\application\chrome.exe" => não encontrado (a).
C:\Program Files\ByteFence\ByteFence.exe => movido com sucesso
C:\Program Files\ByteFence => movido com sucesso
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14063283 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2626108 B
Edge => 0 B