API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 12th, 2015
45
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 33.52 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2015
  2. Ran by DarkSide_ at 2015-04-12 17:13:23
  3. Running from C:\Users\DarkSide_\Downloads
  4. Boot Mode: Normal
  5. ==========================================================
  6.  
  7.  
  8. ==================== Security Center ========================
  9.  
  10. (If an entry is included in the fixlist, it will be removed.)
  11.  
  12. AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  13. AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  14.  
  15. ==================== Installed Programs ======================
  16.  
  17. (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  18.  
  19. Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
  20. Adobe Reader XI (11.0.10) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
  21. Application Insights Tools for Visual Studio 2013 (x32 Version: 2.4 - Microsoft Corporation) Hidden
  22. ASUS PC Link (HKLM-x32\...\{52AE8601-EA55-456E-80A9-7FB48E82CF81}_is1) (Version: 2.1.8.402 - ASUSTEK)
  23. ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.5.12 - ASUS)
  24. Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
  25. AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
  26. Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
  27. Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
  28. BitTorrent (HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\BitTorrent) (Version: 7.9.3.39947 - BitTorrent Inc.)
  29. Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
  30. Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
  31. Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
  32. Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
  33. Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden
  34. Build Tools - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
  35. Build Tools - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
  36. Build Tools Language Resources - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
  37. Build Tools Language Resources - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
  38. CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform)
  39. Construct 2 r200 (HKLM\...\Construct 2_is1) (Version: 1.0.200.0 - Scirra)
  40. Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
  41. Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.10 - Bloodshed Software)
  42. Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
  43. Entity Framework 6.1.1 Tools for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
  44. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
  45. Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
  46. IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
  47. IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
  48. IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
  49. Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
  50. Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
  51. Java SE Development Kit 8 Update 40 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180400}) (Version: 8.0.400.26 - Oracle Corporation)
  52. Kit SDK de vérification de Visual Studio 2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
  53. KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
  54. KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )
  55. League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
  56. League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
  57. LibreOffice 4.4.1.2 (HKLM-x32\...\{4A754DA6-6E12-40AF-BAF0-B7D60C6BE005}) (Version: 4.4.1.2 - The Document Foundation)
  58. LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
  59. LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
  60. LocalESPCui for en-us (x32 Version: 8.59.29989 - Microsoft) Hidden
  61. LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
  62. Memory Profiler (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
  63. Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
  64. Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
  65. Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
  66. Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
  67. Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
  68. Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
  69. Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
  70. Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
  71. Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
  72. Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
  73. Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
  74. Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
  75. Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
  76. Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
  77. Microsoft SQL Server 2012 Native Client (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
  78. Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
  79. Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
  80. Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
  81. Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
  82. Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
  83. Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
  84. Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
  85. Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
  86. Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
  87. Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
  88. Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
  89. Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
  90. Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
  91. Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
  92. Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
  93. Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
  94. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
  95. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
  96. Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
  97. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  98. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
  99. Microsoft Visual Studio Community 2013 with Update 4 (HKLM-x32\...\{96a8b90c-0a91-4e76-ab34-730c23923d11}) (Version: 12.0.31101 - Microsoft Corporation)
  100. Mozilla Firefox 37.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 37.0 (x86 pt-BR)) (Version: 37.0 - Mozilla)
  101. Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 37.0 - Mozilla)
  102. NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
  103. Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.5 - Notepad++ Team)
  104. Oracle VM VirtualBox 4.3.10 (HKLM\...\{5632714F-6A48-4BF2-89E0-F8B6CE9FE6D1}) (Version: 4.3.10 - Oracle Corporation)
  105. PowreShellIntegration.Notifications (x32 Version: 2.5.21003.1603 - Microsoft Corporation) Hidden
  106. PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
  107. Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
  108. Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
  109. Python Tools Redirection Template (x32 Version: 1.3 - Microsoft Corporation) Hidden
  110. Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
  111. Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
  112. SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
  113. Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
  114. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  115. Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
  116. TeamSpeak 3 Client (HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
  117. TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
  118. TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
  119. Unchecky v0.3.7.2 (HKLM-x32\...\Unchecky) (Version: 0.3.7.2 - RaMMicHaeL)
  120. Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
  121. Visual Studio 2013 Update 4 (KB2829760) (HKLM-x32\...\{53d408db-eb91-43fb-9d8f-167681c19763}) (Version: 12.0.31101 - Microsoft Corporation)
  122. VS Update core components (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
  123. WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
  124. WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
  125. WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
  126. Windows Driver Package - ASUS Tek. Corporation (ATP) Mouse (04/02/2014 7.0.0.2) (HKLM\...\AECE1F84E8C99B9AD59A3E152EC9765364A9AA35) (Version: 04/02/2014 7.0.0.2 - ASUS Tek. Corporation)
  127. Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{166a69f6-6512-47ea-a342-17d954fc059a}) (Version: 12.0.31010.0 - Microsoft Corporation)
  128. WinHex (HKLM-x32\...\WinHex) (Version: - )
  129. WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
  130. XAMPP (HKLM-x32\...\xampp) (Version: 5.5.19-0 - Bitnami)
  131. Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
  132.  
  133. ==================== Custom CLSID (selected items): ==========================
  134.  
  135. (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
  136.  
  137.  
  138. ==================== Restore Points =========================
  139.  
  140. 11-04-2015 19:27:28 Ponto de verificação por HitmanPro
  141.  
  142. ==================== Hosts content: ==========================
  143.  
  144. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  145.  
  146. 2013-08-22 10:25 - 2015-04-12 17:08 - 00001204 ____A C:\Windows\system32\Drivers\etc\hosts
  147. 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
  148. 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
  149. 0.0.0.0 media.opencandy.com
  150. 0.0.0.0 cdn.opencandy.com
  151. 0.0.0.0 tracking.opencandy.com
  152. 0.0.0.0 api.opencandy.com
  153. 0.0.0.0 installer.betterinstaller.com
  154. 0.0.0.0 installer.filebulldog.com
  155. 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
  156. 0.0.0.0 inno.bisrv.com
  157. 0.0.0.0 nsis.bisrv.com
  158. 0.0.0.0 cdn.file2desktop.com
  159. 0.0.0.0 cdn.goateastcach.us
  160. 0.0.0.0 cdn.guttastatdk.us
  161. 0.0.0.0 cdn.inskinmedia.com
  162. 0.0.0.0 cdn.insta.oibundles2.com
  163. 0.0.0.0 cdn.insta.playbryte.com
  164. 0.0.0.0 cdn.llogetfastcach.us
  165. 0.0.0.0 cdn.montiera.com
  166. 0.0.0.0 cdn.msdwnld.com
  167. 0.0.0.0 cdn.mypcbackup.com
  168. 0.0.0.0 cdn.ppdownload.com
  169. 0.0.0.0 cdn.riceateastcach.us
  170. 0.0.0.0 cdn.shyapotato.us
  171. 0.0.0.0 cdn.solimba.com
  172. 0.0.0.0 cdn.tuto4pc.com
  173. 0.0.0.0 cdn.appround.biz
  174. 0.0.0.0 cdn.bigspeedpro.com
  175. 0.0.0.0 cdn.bispd.com
  176.  
  177. There are 4 more lines.
  178.  
  179.  
  180. ==================== Scheduled Tasks (whitelisted) =============
  181.  
  182. (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
  183.  
  184. Task: {07C624F3-4D7B-4C7B-9999-77651E3FD47F} - System32\Tasks\BlockAndSurf Update => C:\Program Files (x86)\version74BlockAndSurf\J4BlockAndSurfJ52.exe <==== ATTENTION
  185. Task: {1107AC59-84F8-44B4-98AA-69604B4C2775} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2014-12-04] (@ByELDI)
  186. Task: {4ABA1ADE-1143-4E3B-B72C-ACEC8B9FCC70} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
  187. Task: {51ECD93E-F4A8-4513-95C5-912AE08D2DB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-18] (Google Inc.)
  188. Task: {5A750808-3D15-4965-A5E7-98673EA94B19} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
  189. Task: {7A5B40BB-7A84-430C-8EE1-08A9DEF6A0AF} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
  190. Task: {B2B8EF51-DF79-418A-A7FB-2416B2104D80} - System32\Tasks\SPBIW_UpdateTask_Time_3631353732373132342d2323782a32455b4134572d32 => Wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 <==== ATTENTION
  191. Task: {B3324ED0-D20B-4AB9-9287-7F9E3A276626} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-18] (Google Inc.)
  192. Task: {B4F3F666-81BE-4AFA-85F0-774B89CB9E35} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-23] (Microsoft Corporation)
  193. Task: {C991D553-F39E-4A81-A4E0-25A30D6963B0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd)
  194. Task: {D36A59F8-509A-4962-AF68-9C16E068A903} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-02-26] (Microsoft Corporation)
  195. Task: {EDACFB66-8688-4BF8-B4DC-1C54D93EA052} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-01-23] (AsusTek)
  196. Task: C:\Windows\Tasks\BlockAndSurf Update.job => C:\Program Files (x86)\version74BlockAndSurf\J4BlockAndSurfJ52.exe <==== ATTENTION
  197. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  198. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  199.  
  200. ==================== Loaded Modules (whitelisted) ==============
  201.  
  202. 2015-04-05 16:13 - 2015-03-30 18:07 - 01174856 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libglesv2.dll
  203. 2015-04-05 16:13 - 2015-03-30 18:07 - 00080200 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libegl.dll
  204. 2015-04-05 16:13 - 2015-03-30 18:07 - 09279304 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\pdf.dll
  205.  
  206. ==================== Alternate Data Streams (whitelisted) =========
  207.  
  208. (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
  209.  
  210.  
  211. ==================== Safe Mode (whitelisted) ===================
  212.  
  213. (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  214.  
  215. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\16209442.sys => ""="Driver"
  216. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\16209442.sys => ""="Driver"
  217.  
  218. ==================== EXE Association (whitelisted) ===============
  219.  
  220. (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
  221.  
  222.  
  223. ==================== Other Areas ============================
  224.  
  225. (Currently there is no automatic fix for this section.)
  226.  
  227. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\Control Panel\Desktop\\Wallpaper ->
  228. DNS Servers: 192.168.25.1
  229.  
  230. ==================== MSCONFIG/TASK MANAGER disabled items ==
  231.  
  232. (Currently there is no automatic fix for this section.)
  233.  
  234. MSCONFIG\Services: AdobeARMservice => 2
  235. MSCONFIG\Services: AMD External Events Utility => 2
  236. MSCONFIG\Services: BaiduHips => 2
  237. MSCONFIG\Services: BDKVRTP => 2
  238. MSCONFIG\Services: BrsHelper => 2
  239. MSCONFIG\Services: CCL => 2
  240. MSCONFIG\Services: gupdate => 2
  241. MSCONFIG\Services: gupdatem => 3
  242. MSCONFIG\Services: insvc_1.10.0.13 => 2
  243. MSCONFIG\Services: jezyseko => 2
  244. MSCONFIG\Services: kowuqydi => 2
  245. MSCONFIG\Services: LolliScan => 2
  246. MSCONFIG\Services: MozillaMaintenance => 3
  247. MSCONFIG\Services: pemerusy => 2
  248. MSCONFIG\Services: Sed => 2
  249. MSCONFIG\Services: Service KMSELDI => 2
  250. MSCONFIG\Services: SkypeUpdate => 2
  251. MSCONFIG\Services: SPBIUpd => 2
  252. MSCONFIG\Services: Steam Client Service => 3
  253. MSCONFIG\Services: topupete => 2
  254. MSCONFIG\Services: xowideru => 2
  255. HKLM\...\StartupApproved\Run: => "Classic Start Menu"
  256. HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
  257. HKLM\...\StartupApproved\Run32: => "ap"
  258. HKLM\...\StartupApproved\Run32: => "WinCheck"
  259. HKLM\...\StartupApproved\Run32: => "gmsd_br_398"
  260. HKLM\...\StartupApproved\Run32: => "SPDriver"
  261. HKLM\...\StartupApproved\Run32: => "SmartWeb"
  262. HKLM\...\StartupApproved\Run32: => "YTDownloader"
  263. HKLM\...\StartupApproved\Run32: => "baidusdTray"
  264. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\StartupApproved\StartupFolder: => "crossbrowse.lnk"
  265. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\StartupApproved\StartupFolder: => "SmartWeb.lnk"
  266. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\StartupApproved\Run: => "PCLink"
  267. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_668B766DA1932A13D0539817D246903D"
  268. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\StartupApproved\Run: => "SPDriver"
  269. HKU\S-1-5-21-2882039380-2428085164-2198080122-1001\...\StartupApproved\Run: => "YTDownloader"
  270.  
  271. ==================== Accounts: =============================
  272.  
  273. Administrator (S-1-5-21-2882039380-2428085164-2198080122-500 - Administrator - Disabled)
  274. DarkSide_ (S-1-5-21-2882039380-2428085164-2198080122-1001 - Administrator - Enabled) => C:\Users\DarkSide_
  275. Guest (S-1-5-21-2882039380-2428085164-2198080122-501 - Limited - Disabled)
  276. HomeGroupUser$ (S-1-5-21-2882039380-2428085164-2198080122-1003 - Limited - Enabled)
  277.  
  278. ==================== Faulty Device Manager Devices =============
  279.  
  280. Name: Microsoft Network Adapter Multiplexor Driver
  281. Description: Microsoft Network Adapter Multiplexor Driver
  282. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  283. Manufacturer: Microsoft
  284. Service: NdisImPlatformMp
  285. Problem: : This device is disabled. (Code 22)
  286. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  287.  
  288. Name: VirtualBox Host-Only Ethernet Adapter
  289. Description: VirtualBox Host-Only Ethernet Adapter
  290. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  291. Manufacturer: Oracle Corporation
  292. Service: VBoxNetAdp
  293. Problem: : This device is disabled. (Code 22)
  294. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  295.  
  296. Name: Standard SATA AHCI Controller
  297. Description: Standard SATA AHCI Controller
  298. Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
  299. Manufacturer: Standard SATA AHCI Controller
  300. Service: storahci
  301. Problem: : This device cannot start. (Code10)
  302. Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
  303. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
  304.  
  305.  
  306. ==================== Event log errors: =========================
  307.  
  308. Application errors:
  309. ==================
  310. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  311. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000010f4,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssapiPublisher,0,REG_BINARY,0000007C3E79E720.72). hr = 0x80070005, Access is denied.
  312. .
  313.  
  314.  
  315. Operation:
  316. Abort Backup
  317.  
  318. Context:
  319. Execution Context: Requestor
  320. Current State: SnapshotSetCreated
  321.  
  322. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  323. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000010f4,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssapiPublisher,0,REG_BINARY,0000007C3E79E720.72). hr = 0x80070005, Access is denied.
  324. .
  325.  
  326.  
  327. Operation:
  328. Abort Backup
  329.  
  330. Context:
  331. Execution Context: Requestor
  332. Current State: SnapshotSetCreated
  333.  
  334. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  335. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00001214,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssapiPublisher,0,REG_BINARY,0000007D402DE940.72). hr = 0x80070005, Access is denied.
  336. .
  337.  
  338.  
  339. Operation:
  340. Executing Asynchronous Operation
  341.  
  342. Context:
  343. Current State: DoSnapshotSet
  344.  
  345. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  346. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72). hr = 0x80070005, Access is denied.
  347. .
  348.  
  349.  
  350. Operation:
  351. Executing Asynchronous Operation
  352.  
  353. Context:
  354. Current State: DoSnapshotSet
  355.  
  356. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  357. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72). hr = 0x80070005, Access is denied.
  358. .
  359.  
  360.  
  361. Operation:
  362. Executing Asynchronous Operation
  363.  
  364. Context:
  365. Current State: DoSnapshotSet
  366.  
  367. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  368. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72). hr = 0x80070005, Access is denied.
  369. .
  370.  
  371.  
  372. Operation:
  373. Executing Asynchronous Operation
  374.  
  375. Context:
  376. Current State: DoSnapshotSet
  377.  
  378. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  379. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72). hr = 0x80070005, Access is denied.
  380. .
  381.  
  382.  
  383. Operation:
  384. Executing Asynchronous Operation
  385.  
  386. Context:
  387. Current State: DoSnapshotSet
  388.  
  389. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  390. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DE80.72). hr = 0x80070005, Access is denied.
  391. .
  392.  
  393.  
  394. Operation:
  395. Executing Asynchronous Operation
  396.  
  397. Context:
  398. Current State: DoSnapshotSet
  399.  
  400. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  401. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DE80.72). hr = 0x80070005, Access is denied.
  402. .
  403.  
  404.  
  405. Operation:
  406. Executing Asynchronous Operation
  407.  
  408. Context:
  409. Current State: DoSnapshotSet
  410.  
  411. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  412. Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,0000002683359B50.72). hr = 0x80070005, Access is denied.
  413. .
  414.  
  415.  
  416. Operation:
  417. Executing Asynchronous Operation
  418.  
  419. Context:
  420. Current State: DoSnapshotSet
  421.  
  422.  
  423. System errors:
  424. =============
  425. Error: (04/12/2015 05:08:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  426. Description: The BDDefense service failed to start due to the following error:
  427. %%31
  428.  
  429. Error: (04/12/2015 05:08:37 PM) (Source: EventLog) (EventID: 6008) (User: )
  430. Description: The previous system shutdown at 11:34:49 on ‎12/‎04/‎2015 was unexpected.
  431.  
  432. Error: (04/12/2015 05:08:29 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
  433. Description: 32212256841149040
  434.  
  435. Error: (04/12/2015 10:54:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
  436. Description: The BDDefense service failed to start due to the following error:
  437. %%31
  438.  
  439. Error: (04/12/2015 10:54:49 AM) (Source: EventLog) (EventID: 6008) (User: )
  440. Description: The previous system shutdown at 22:24:27 on ‎11/‎04/‎2015 was unexpected.
  441.  
  442. Error: (04/11/2015 07:44:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  443. Description: The BDDefense service failed to start due to the following error:
  444. %%31
  445.  
  446. Error: (04/11/2015 07:38:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  447. Description: The BDDefense service failed to start due to the following error:
  448. %%31
  449.  
  450. Error: (04/11/2015 07:38:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  451. Description: The Print Spooler service failed to start due to the following error:
  452. %%1069
  453.  
  454. Error: (04/11/2015 07:38:01 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
  455. Description: The Spooler service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error:
  456. %%50
  457.  
  458. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
  459.  
  460. Error: (04/11/2015 07:37:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
  461. Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
  462.  
  463.  
  464. Microsoft Office Sessions:
  465. =========================
  466. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  467. Description: RegSetValueExW(0x000010f4,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssapiPublisher,0,REG_BINARY,0000007C3E79E720.72)0x80070005, Access is denied.
  468.  
  469.  
  470. Operation:
  471. Abort Backup
  472.  
  473. Context:
  474. Execution Context: Requestor
  475. Current State: SnapshotSetCreated
  476.  
  477. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  478. Description: RegSetValueExW(0x000010f4,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssapiPublisher,0,REG_BINARY,0000007C3E79E720.72)0x80070005, Access is denied.
  479.  
  480.  
  481. Operation:
  482. Abort Backup
  483.  
  484. Context:
  485. Execution Context: Requestor
  486. Current State: SnapshotSetCreated
  487.  
  488. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  489. Description: RegSetValueExW(0x00001214,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssapiPublisher,0,REG_BINARY,0000007D402DE940.72)0x80070005, Access is denied.
  490.  
  491.  
  492. Operation:
  493. Executing Asynchronous Operation
  494.  
  495. Context:
  496. Current State: DoSnapshotSet
  497.  
  498. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  499. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72)0x80070005, Access is denied.
  500.  
  501.  
  502. Operation:
  503. Executing Asynchronous Operation
  504.  
  505. Context:
  506. Current State: DoSnapshotSet
  507.  
  508. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  509. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72)0x80070005, Access is denied.
  510.  
  511.  
  512. Operation:
  513. Executing Asynchronous Operation
  514.  
  515. Context:
  516. Current State: DoSnapshotSet
  517.  
  518. Error: (04/11/2015 07:27:49 PM) (Source: VSS) (EventID: 8193) (User: )
  519. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72)0x80070005, Access is denied.
  520.  
  521.  
  522. Operation:
  523. Executing Asynchronous Operation
  524.  
  525. Context:
  526. Current State: DoSnapshotSet
  527.  
  528. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  529. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DDC0.72)0x80070005, Access is denied.
  530.  
  531.  
  532. Operation:
  533. Executing Asynchronous Operation
  534.  
  535. Context:
  536. Current State: DoSnapshotSet
  537.  
  538. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  539. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DE80.72)0x80070005, Access is denied.
  540.  
  541.  
  542. Operation:
  543. Executing Asynchronous Operation
  544.  
  545. Context:
  546. Current State: DoSnapshotSet
  547.  
  548. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  549. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,000000268365DE80.72)0x80070005, Access is denied.
  550.  
  551.  
  552. Operation:
  553. Executing Asynchronous Operation
  554.  
  555. Context:
  556. Current State: DoSnapshotSet
  557.  
  558. Error: (04/11/2015 07:27:48 PM) (Source: VSS) (EventID: 8193) (User: )
  559. Description: RegSetValueExW(0x00000310,SYSTEM\CurrentControlSet\Services\VSS\Diag\SwProvider_{b5946137-7b9f-4925-af80-51abd60b20d5},0,REG_BINARY,0000002683359B50.72)0x80070005, Access is denied.
  560.  
  561.  
  562. Operation:
  563. Executing Asynchronous Operation
  564.  
  565. Context:
  566. Current State: DoSnapshotSet
  567.  
  568.  
  569. ==================== Memory info ===========================
  570.  
  571. Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
  572. Percentage of memory in use: 19%
  573. Total physical RAM: 8133.77 MB
  574. Available physical RAM: 6576.41 MB
  575. Total Pagefile: 16325.77 MB
  576. Available Pagefile: 14522.45 MB
  577. Total Virtual: 131072 MB
  578. Available Virtual: 131071.82 MB
  579.  
  580. ==================== Drives ================================
  581.  
  582. Drive c: () (Fixed) (Total:59.11 GB) (Free:13.93 GB) NTFS
  583. Drive d: (HD-1) (Fixed) (Total:465.76 GB) (Free:260.06 GB) NTFS
  584.  
  585. ==================== MBR & Partition Table ==================
  586.  
  587. ========================================================
  588. Disk: 0 (Size: 59.6 GB) (Disk ID: 00022612)
  589.  
  590. Partition: GPT Partition Type.
  591.  
  592. ========================================================
  593. Disk: 1 (Size: 465.8 GB) (Disk ID: 3848715C)
  594. Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
  595.  
  596. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!