Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão:05-03-2016 01
Executado por Intel (2016-03-14 08:51:48) Run:1
Executando a partir de C:\Users\Intel\Desktop
Perfis Carregados: Intel (Perfis Disponíveis: Intel)
Modo da Inicialização: Normal
==============================================
fixlist Conteúdo:
*****************
start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [0 2016-03-03] () <==== ATENÇÃO (zero byte Arquivo/Pasta)
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
2016-02-26 11:13 - 2016-02-28 10:40 - 00000000 ____D C:\Users\Intel\Desktop\SpyHunter 4.21.10.4585 Portable
2016-02-26 10:58 - 2016-02-26 10:58 - 50965801 _____ C:\Users\Intel\Downloads\SpyHunter 4.21.10.4585 Portable S7D.rar
2016-02-25 11:39 - 2016-02-25 11:51 - 00000000 ____D C:\AdwCleaner
2016-02-25 11:09 - 2016-02-25 11:10 - 00001024 _____ C:\.rnd
ShortcutWithArgument: C:\Users\Intel\Desktop\chrome.exe.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\Desktop\firefox.exe.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://hao.169x.cn/?v=108
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:B9605FA7_Cef.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1434]
Task: {7CCE4E0B-5B62-4DB7-BB8F-513965F7CD4A} - System32\Tasks\Uninstaller_SkipUac_Intel => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
CreateRestorePoint:
Unlock: C:\gr1dr
Folder: C:\gr1dr
RemoveProxy:
EmptyTemp:
Reboot:
Hosts:
end
*****************
Processos fechados com sucesso.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => chave removido (a) com sucesso.
avchv => serviço removido (a) com sucesso.
gbpddfac => serviço removido (a) com sucesso.
gbpddreg => serviço removido (a) com sucesso.
"C:\Users\Intel\Desktop\SpyHunter 4.21.10.4585 Portable" => não encontrado (a).
"C:\Users\Intel\Downloads\SpyHunter 4.21.10.4585 Portable S7D.rar" => não encontrado (a).
C:\AdwCleaner => movido com sucesso
C:\.rnd => movido com sucesso
C:\Users\Intel\Desktop\chrome.exe.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\Desktop\firefox.exe.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk => não encontrado (a).
C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => não encontrado (a).
C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk => Atalho argumento removido (a) com sucesso..
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk => Atalho argumento removido (a) com sucesso..
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk => Atalho argumento removido (a) com sucesso..
C:\Program Files (x86)\GbPlugin => ":IncompleteStartProcessProtection.cnt" ADS removido (a) com sucesso..
C:\Program Files (x86)\GbPlugin => ":u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==" ADS removido (a) com sucesso..
C:\Windows\System32 => ":B9605FA7_Cef.gbp" ADS removido (a) com sucesso..
C:\Windows\system32\Drivers\wsddfac.sys => ":X5ZN8aGXs4" ADS removido (a) com sucesso..
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7CCE4E0B-5B62-4DB7-BB8F-513965F7CD4A} => chave não encontrado (a).
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Intel => movido com sucesso
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Intel" => chave removido (a) com sucesso.
Ponto de Restauração criado com sucesso.
"C:\gr1dr" => foi desbloqueado
========================= Folder: C:\gr1dr ========================
C:\gr1dr => Arquivo
====== Fim de Folder: ======
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => valor removido (a) com sucesso.
HKU\S-1-5-21-455878060-1618394087-3157549068-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => valor removido (a) com sucesso.
HKU\S-1-5-21-455878060-1618394087-3157549068-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => valor removido (a) com sucesso.
========= Fim de RemoveProxy: =========
C:\Windows\System32\Drivers\etc\hosts => movido com sucesso
Hosts restaurado com sucesso.
EmptyTemp: => 1.3 GB de dados temporários Removidos.
O sistema precisou ser reiniciado.
==== Fim de Fixlog 08:55:06 ====
Executado por Intel (2016-03-14 08:51:48) Run:1
Executando a partir de C:\Users\Intel\Desktop
Perfis Carregados: Intel (Perfis Disponíveis: Intel)
Modo da Inicialização: Normal
==============================================
fixlist Conteúdo:
*****************
start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [0 2016-03-03] () <==== ATENÇÃO (zero byte Arquivo/Pasta)
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
2016-02-26 11:13 - 2016-02-28 10:40 - 00000000 ____D C:\Users\Intel\Desktop\SpyHunter 4.21.10.4585 Portable
2016-02-26 10:58 - 2016-02-26 10:58 - 50965801 _____ C:\Users\Intel\Downloads\SpyHunter 4.21.10.4585 Portable S7D.rar
2016-02-25 11:39 - 2016-02-25 11:51 - 00000000 ____D C:\AdwCleaner
2016-02-25 11:09 - 2016-02-25 11:10 - 00001024 _____ C:\.rnd
ShortcutWithArgument: C:\Users\Intel\Desktop\chrome.exe.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\Desktop\firefox.exe.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://hao.169x.cn/?v=108
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://hao.169x.cn/?v=108
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt [10]
AlternateDataStreams: C:\Program Files (x86)\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\System32:B9605FA7_Cef.gbp [2]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1434]
Task: {7CCE4E0B-5B62-4DB7-BB8F-513965F7CD4A} - System32\Tasks\Uninstaller_SkipUac_Intel => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
CreateRestorePoint:
Unlock: C:\gr1dr
Folder: C:\gr1dr
RemoveProxy:
EmptyTemp:
Reboot:
Hosts:
end
*****************
Processos fechados com sucesso.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => chave removido (a) com sucesso.
avchv => serviço removido (a) com sucesso.
gbpddfac => serviço removido (a) com sucesso.
gbpddreg => serviço removido (a) com sucesso.
"C:\Users\Intel\Desktop\SpyHunter 4.21.10.4585 Portable" => não encontrado (a).
"C:\Users\Intel\Downloads\SpyHunter 4.21.10.4585 Portable S7D.rar" => não encontrado (a).
C:\AdwCleaner => movido com sucesso
C:\.rnd => movido com sucesso
C:\Users\Intel\Desktop\chrome.exe.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\Desktop\firefox.exe.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk => não encontrado (a).
C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => não encontrado (a).
C:\Users\Intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => Atalho argumento removido (a) com sucesso..
C:\Users\Intel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk => Atalho argumento removido (a) com sucesso..
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk => Atalho argumento removido (a) com sucesso..
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk => Atalho argumento removido (a) com sucesso..
C:\Program Files (x86)\GbPlugin => ":IncompleteStartProcessProtection.cnt" ADS removido (a) com sucesso..
C:\Program Files (x86)\GbPlugin => ":u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg==" ADS removido (a) com sucesso..
C:\Windows\System32 => ":B9605FA7_Cef.gbp" ADS removido (a) com sucesso..
C:\Windows\system32\Drivers\wsddfac.sys => ":X5ZN8aGXs4" ADS removido (a) com sucesso..
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7CCE4E0B-5B62-4DB7-BB8F-513965F7CD4A} => chave não encontrado (a).
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Intel => movido com sucesso
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Intel" => chave removido (a) com sucesso.
Ponto de Restauração criado com sucesso.
"C:\gr1dr" => foi desbloqueado
========================= Folder: C:\gr1dr ========================
C:\gr1dr => Arquivo
====== Fim de Folder: ======
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => valor removido (a) com sucesso.
HKU\S-1-5-21-455878060-1618394087-3157549068-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => valor removido (a) com sucesso.
HKU\S-1-5-21-455878060-1618394087-3157549068-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => valor removido (a) com sucesso.
========= Fim de RemoveProxy: =========
C:\Windows\System32\Drivers\etc\hosts => movido com sucesso
Hosts restaurado com sucesso.
EmptyTemp: => 1.3 GB de dados temporários Removidos.
O sistema precisou ser reiniciado.
==== Fim de Fixlog 08:55:06 ====