Fix result of Farbar Recovery Scan Tool (x64) Version:31-08-2015
Ran by Magnon Palhares (2015-09-03 10:23:29) Run:1
Running from C:\Users\Magnon Palhares\Desktop
Loaded Profiles: Magnon Palhares (Available Profiles: Magnon Palhares)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CloseProcesses:
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
HKLM-x32\...\Run: [Panda Security URL Filtering] => "C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe"
BHO: No Name -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> No File
Toolbar: HKLM-x32 - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll No File
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-25] (IObit)
R2 panda_url_filtering; C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe [291336 2015-05-19] (Visicom Media Inc.)
R3 panda_url_filteringd; C:\ProgramData\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
2015-09-02 20:32 - 2015-09-02 20:32 - 00060760 _____ C:\Users\Magnon Palhares\Desktop\ZHPDiag.txt
2015-09-02 13:30 - 2015-09-02 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-09-02 13:30 - 2015-09-02 13:30 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2015-09-02 13:29 - 2015-09-02 13:30 - 03521472 _____ (Nicolas Coolman ) C:\Users\Magnon Palhares\Downloads\ZHPFix.exe
2015-09-02 10:50 - 2015-09-02 10:50 - 01917952 _____ C:\Users\Magnon Palhares\ZHPDiag3.exe
2015-09-02 10:49 - 2015-09-02 20:53 - 00000000 ____D C:\Users\Magnon Palhares\AppData\Roaming\ZHP
2015-09-02 10:44 - 2015-09-02 10:49 - 01917952 _____ C:\Users\Magnon Palhares\Downloads\ZHPDiag3.exe
2015-09-01 20:57 - 2015-09-01 20:57 - 00000000 ____D C:\Users\Magnon Palhares\Documents\LOGS DO PANDA ANTIVIRUS
2015-09-01 13:21 - 2015-09-02 14:31 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2015-09-01 13:21 - 2015-09-02 14:31 - 00000000 ____D C:\ProgramData\IObit
2015-09-01 13:21 - 2015-09-01 13:21 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2015-09-01 13:21 - 2015-09-01 13:21 - 00000000 ____D C:\Users\Magnon Palhares\AppData\Roaming\ProductData
2015-09-01 13:21 - 2015-09-01 13:21 - 00000000 ____D C:\Users\Magnon Palhares\AppData\Roaming\IObit
2015-09-01 13:21 - 2015-09-01 13:21 - 00000000 ____D C:\ProgramData\ProductData
2015-09-01 13:21 - 2015-09-01 13:21 - 00000000 ____D C:\Program Files (x86)\IObit
2015-09-01 12:42 - 2015-09-02 21:14 - 00000000 ____D C:\Users\Todos os Usuários\panda_url_filtering
2015-09-01 12:42 - 2015-09-02 21:14 - 00000000 ____D C:\ProgramData\panda_url_filtering
2015-09-01 12:42 - 2015-09-02 14:33 - 00000000 ____D C:\Users\Magnon Palhares\AppData\Roaming\Panda Security
2015-09-01 12:42 - 2015-09-01 12:42 - 00000000 ____D C:\Users\Todos os Usuários\Panda Security URL Filtering
2015-09-01 12:42 - 2015-09-01 12:42 - 00000000 ____D C:\ProgramData\Panda Security URL Filtering
2015-09-01 12:41 - 2015-09-02 14:41 - 00000000 ____D C:\Program Files (x86)\Panda Security
2015-09-01 12:11 - 2015-09-02 14:34 - 00000000 ____D C:\Users\Todos os Usuários\Panda Security
2015-09-01 12:11 - 2015-09-02 14:34 - 00000000 ____D C:\ProgramData\Panda Security
2015-08-31 12:29 - 2015-08-31 12:30 - 00000000 ____D C:\HijackThis
2015-09-01 13:21 - 2015-08-25 14:54 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 
2015-09-02 21:16 - 2015-09-02 21:16 - 00098816 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32api.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00110080 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pywintypes27.dll 
2015-09-02 21:16 - 2015-09-02 21:16 - 00364544 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pythoncom27.dll 
2015-09-02 21:16 - 2015-09-02 21:16 - 00045568 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_socket.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 01161216 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_ssl.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00320512 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32com.shell.shell.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00713216 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_hashlib.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 01176576 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._core_.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00806400 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._gdi_.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00816128 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._windows_.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 01067008 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._controls_.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00733184 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._misc_.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00682496 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pysqlite2._sqlite.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00087552 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_ctypes.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00119808 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32file.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00108544 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32security.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00007168 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\hashobjs_ext.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00068096 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\usb_ext.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00167936 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32gui.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00018432 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32event.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00128512 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_elementtree.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00127488 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pyexpat.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00013824 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\common.time34.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00036864 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_psutil_windows.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00038912 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32inet.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00011264 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32crypt.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00077312 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._html2.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00027136 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_multiprocessing.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00020480 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_yappi.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00035840 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32process.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00686080 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\unicodedata.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00123392 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._wizard.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00024064 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32pipe.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00010240 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\select.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00025600 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32pdh.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00525640 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\windows._lib_cacheinvalidation.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00017408 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32profile.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00022528 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32ts.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00078848 _____ () C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._animate.pyd 
2015-09-02 21:16 - 2015-09-02 21:16 - 00071168 _____ () c:\Users\Magnon Palhares\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp45arlk.dll 
Task: {A3797446-E465-4AA4-A95E-DE13BA0BC464} - System32\Tasks\Uninstaller_SkipUac_Magnon_Palhares => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe 
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Magnon_Palhares.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe 
C:\Users\Magnon Palhares\ZHPDiag3.exe
C:\Users\Magnon Palhares\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp45arlk.dll
CreateRestorePoint:
RemoveProxy:
EmptyTemp:
Reboot:
Hosts:
end
*****************

Processes closed successfully.
C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe => No running process found
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Panda Security URL Filtering => value removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}" => key removed successfully
HKCR\CLSID\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} => key not found. 
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} => value removed successfully
"HKCR\Wow6432Node\CLSID\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}" => key removed successfully
LiveUpdateSvc => service removed successfully
panda_url_filtering => service removed successfully
panda_url_filteringd => Unable to stop service.
panda_url_filteringd => service removed successfully
wfpcapture => service removed successfully
"C:\Users\Magnon Palhares\Desktop\ZHPDiag.txt" => File/Folder not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP => moved successfully
C:\Program Files (x86)\ZHPFix => moved successfully
C:\Users\Magnon Palhares\Downloads\ZHPFix.exe => moved successfully
C:\Users\Magnon Palhares\ZHPDiag3.exe => moved successfully
C:\Users\Magnon Palhares\AppData\Roaming\ZHP => moved successfully
C:\Users\Magnon Palhares\Downloads\ZHPDiag3.exe => moved successfully
C:\Users\Magnon Palhares\Documents\LOGS DO PANDA ANTIVIRUS => moved successfully
C:\Users\Todos os Usuários\IObit => moved successfully
"C:\ProgramData\IObit" => File/Folder not found.
C:\Users\Todos os Usuários\ProductData => moved successfully
C:\Users\Magnon Palhares\AppData\Roaming\ProductData => moved successfully
C:\Users\Magnon Palhares\AppData\Roaming\IObit => moved successfully
"C:\ProgramData\ProductData" => File/Folder not found.
C:\Program Files (x86)\IObit => moved successfully
C:\Users\Todos os Usuários\panda_url_filtering => moved successfully
"C:\ProgramData\panda_url_filtering" => File/Folder not found.
C:\Users\Magnon Palhares\AppData\Roaming\Panda Security => moved successfully
C:\Users\Todos os Usuários\Panda Security URL Filtering => moved successfully
"C:\ProgramData\Panda Security URL Filtering" => File/Folder not found.
C:\Program Files (x86)\Panda Security => moved successfully
C:\Users\Todos os Usuários\Panda Security => moved successfully
"C:\ProgramData\Panda Security" => File/Folder not found.
C:\HijackThis => moved successfully
"C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32api.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pywintypes27.dll" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pythoncom27.dll" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_socket.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_ssl.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32com.shell.shell.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_hashlib.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._core_.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._gdi_.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._windows_.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._controls_.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._misc_.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pysqlite2._sqlite.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_ctypes.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32file.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32security.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\hashobjs_ext.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\usb_ext.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32gui.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32event.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_elementtree.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\pyexpat.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\common.time34.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_psutil_windows.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32inet.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32crypt.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._html2.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_multiprocessing.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\_yappi.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32process.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\unicodedata.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._wizard.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32pipe.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\select.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32pdh.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\windows._lib_cacheinvalidation.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32profile.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\win32ts.pyd" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\_MEI45482\wx._animate.pyd" => File/Folder not found.
"c:\Users\Magnon Palhares\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp45arlk.dll" => File/Folder not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3797446-E465-4AA4-A95E-DE13BA0BC464}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3797446-E465-4AA4-A95E-DE13BA0BC464}" => key removed successfully
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Magnon_Palhares => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Magnon_Palhares" => key removed successfully
C:\Windows\Tasks\Uninstaller_SkipUac_Magnon_Palhares.job => moved successfully
"C:\Users\Magnon Palhares\ZHPDiag3.exe" => File/Folder not found.
"C:\Users\Magnon Palhares\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp45arlk.dll" => File/Folder not found.
Restore point was successfully created.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-1406914358-753058891-3609360365-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-1406914358-753058891-3609360365-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 367.1 MB temporary data Removed.


The system needed a reboot.. 

==== End of Fixlog 10:24:23 ====