Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
- Ran by Adm01 (2016-03-06 14:17:17)
- Running from C:\Users\Adm01\Downloads
- Windows 7 Professional Service Pack 1 (X64) (2016-02-15 00:33:40)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Adm01 (S-1-5-21-3134420710-1709433476-2236555127-1001 - Administrator - Enabled) => C:\Users\Adm01
- Administrador (S-1-5-21-3134420710-1709433476-2236555127-500 - Administrator - Disabled)
- Convidado (S-1-5-21-3134420710-1709433476-2236555127-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-3134420710-1709433476-2236555127-1002 - Limited - Enabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Bitdefender Antivírus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
- AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
- FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- µTorrent (HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
- Actualizações da NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
- Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.306 - Adobe Systems Incorporated)
- Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
- Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.25.1378 - Bitdefender)
- Bitdefender Total Security 2016 (HKLM\...\Bitdefender) (Version: 20.0.25.1378 - Bitdefender)
- Box Sync (HKLM\...\{DAA2B88B-D1D9-412F-A55D-924F3736D365}) (Version: 4.0.7100.0 - Box, Inc.)
- Box Sync (x32 Version: 4.0.7100.0 - Box Inc.) Hidden
- CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
- Chromium (HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\Chromium) (Version: 51.0.2665.0 - Chromium)
- Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
- CPUID HWMonitor Pro 1.22 (HKLM\...\CPUID HWMonitorPro_is1) (Version: - )
- DFX (HKLM-x32\...\DFX) (Version: 12.013.0.0 - Power Technology)
- Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit)
- Dropbox (HKLM-x32\...\Dropbox) (Version: 3.14.7 - Dropbox, Inc.)
- Dropbox Update Helper (x32 Version: 1.3.35.3 - Dropbox, Inc.) Hidden
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
- Google Drive (HKLM-x32\...\{895D0391-459F-4D45-B8DD-13F0DE70C66E}) (Version: 1.28.1549.1322 - Google, Inc.)
- Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
- IdleMaster (HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\1d85483b1c982d8c) (Version: 1.4.0.0 - IdleMaster)
- K-Lite Mega Codec Pack 11.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.0 - )
- Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
- Malwarebytes Anti-Malware versão 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
- MediaFire Desktop (HKLM-x32\...\MediaFire Desktop 1.9.3.11047) (Version: 1.9.3.11047 - MediaFire)
- MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
- Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 (Português) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2070) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft OneDrive (HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\OneDriveSetup.exe) (Version: 17.3.6301.0127 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Mozilla Firefox 44.0.2 (x86 pt-PT) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 pt-PT)) (Version: 44.0.2 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
- Mz Game Accelerator (HKLM\...\MzGameAccelerator_is1) (Version: 1.1.0 - Mz Game Accelerator)
- Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
- NVIDIA Controlador 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
- NVIDIA Controlador gráfico 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.92 - NVIDIA Corporation)
- NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
- NVIDIA O controlador de 3D Vision 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.92 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
- Oracle VM VirtualBox 5.0.10 (HKLM\...\{F6E922CF-068D-4AFC-8DBF-4636B84AF0A5}) (Version: 5.0.10 - Oracle Corporation)
- Painel de controlo da NVIDIA 341.92 (Version: 341.92 - NVIDIA Corporation) Hidden
- PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
- Realtek 8136 8168 8169 Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0005 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7673 - Realtek Semiconductor Corp.)
- Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.)
- Roslyn Language Services - x86 (x32 Version: 14.0.24730 - Microsoft Corporation) Hidden
- Sandboxie 5.08 (64-bit) (HKLM\...\Sandboxie) (Version: 5.08 - Sandboxie Holdings, LLC)
- SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
- SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
- Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
- Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
- Stardock Fences 2 (HKLM-x32\...\Stardock Fences 2) (Version: 2.13 - Stardock Software, Inc.)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- Sync (HKLM-x32\...\{96855E80-23DA-11E2-BDFB-09006188709B}) (Version: 1.1.7.1088 - Sync)
- TeamSpeak 3 Client (HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
- VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
- VyprVPN (HKLM\...\{526B3DDC-6891-4F43-8F64-8B83DC9E4848}) (Version: 2.7.9.6349 - Golden Frog, GmbH.)
- WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Adm01\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64\FileCoAuthLib64.dll ()
- CustomCLSID: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Adm01\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {353F603B-471A-4160-ADB5-FAED4FA456E5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
- Task: {37C37E24-523A-47A8-988D-631E140C32DA} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-01-15] (Bitdefender)
- Task: {3A637779-3973-49A6-9B18-957A1F2D33CE} - System32\Tasks\Driver Booster SkipUAC (Adm01) => C:\Program Files (x86)\IO\DriverBooster.exe [2015-07-06] (IObit)
- Task: {61BC07DF-628D-42A8-A614-5EF9DD305356} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-15] (Google Inc.)
- Task: {65E571C3-86A6-4112-9EAE-1F735201C810} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-02] (Dropbox, Inc.)
- Task: {6F6F1FDF-6403-475B-A978-3FB501147C2D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IO\AutoUpdate.exe [2015-07-06] (IObit)
- Task: {73A43CBE-D0DF-4868-BCF6-8817E33EA897} - System32\Tasks\{B43FB7E2-F9B5-4735-AD6C-DC2A1730CCD1} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.18.0.112&LastError=12007
- Task: {819EE6BE-3F61-42CF-BAB3-2FD2F415643E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-15] (Google Inc.)
- Task: {8DBABCC3-2C56-46AE-A40F-90DA3E1D3D5F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
- Task: {AA976147-0721-46D6-A055-729AC4584206} - System32\Tasks\{87D060C1-2C98-4F78-8B40-B49626163D3D} => pcalua.exe -a "C:\Users\Adm01\Desktop\SteamLeecher\Steam Leexher.exe" -d C:\Users\Adm01\Desktop\SteamLeecher
- Task: {C54C6E65-0DFD-4189-8B67-6AC12F081A8B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
- Task: {C803E132-D784-4180-B2BF-3FA40B6E70C5} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-12-23] ()
- Task: {D1E43487-9E15-4A31-84CE-3A4FA5CD43A1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-05] (Adobe Systems Incorporated)
- Task: {E982C94D-68A0-4459-8AB1-8AAD017532D8} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-02] (Dropbox, Inc.)
- Task: {E9DEBD2F-0A4C-4D9D-8363-18D7C6746796} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
- Task: {F710A7D2-65B6-41DE-BA74-42E72D6C2DE8} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IO\Scheduler.exe [2015-07-06] (IObit)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2016-03-04 22:38 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll
- 2016-03-04 22:38 - 2016-01-25 19:51 - 01119064 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpbr.mdl
- 2016-03-04 22:38 - 2016-01-25 19:51 - 00794832 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpdsp.mdl
- 2016-03-04 22:38 - 2016-01-25 19:51 - 03038112 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttpph.mdl
- 2016-03-04 22:38 - 2016-01-25 19:51 - 01648408 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_001_001\ashttprbl.mdl
- 2016-02-15 02:29 - 2015-10-13 17:26 - 00125616 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2016-03-02 00:28 - 2016-01-12 19:47 - 00456176 _____ () C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe
- 2016-03-02 00:28 - 2016-01-12 17:37 - 00235008 _____ () C:\Users\Adm01\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayError.dll
- 2016-03-02 00:28 - 2016-01-12 17:37 - 00235008 _____ () C:\Users\Adm01\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySynced.dll
- 2016-03-02 00:28 - 2016-01-12 17:37 - 00235008 _____ () C:\Users\Adm01\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayReadOnly.dll
- 2016-03-02 00:28 - 2016-01-12 17:37 - 00235008 _____ () C:\Users\Adm01\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlayLock.dll
- 2016-03-02 00:28 - 2016-01-12 17:37 - 00235008 _____ () C:\Users\Adm01\AppData\Local\MediaFire Desktop\x64\MFShellIconOverlaySyncing.dll
- 2015-10-21 13:18 - 2016-01-29 22:17 - 01325240 ____R () C:\Program Files (x86)\DFX\DFX.exe
- 2015-10-21 13:10 - 2015-11-20 22:24 - 00133624 _____ () C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
- 2015-10-21 13:14 - 2015-11-20 22:29 - 00134648 _____ () C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe
- 2015-10-21 13:46 - 2015-11-20 22:55 - 00051192 _____ () C:\Program Files (x86)\Common Files\DFX\Dlls\dfxShared64.dll
- 2016-03-04 23:42 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
- 2016-03-04 23:42 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
- 2016-03-04 23:42 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
- 2016-03-04 23:42 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
- 2016-03-04 23:42 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
- 2015-10-21 13:42 - 2015-11-20 22:47 - 00052216 _____ () C:\Program Files (x86)\Common Files\DFX\Dlls\dfxShared32.dll
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
- 2016-03-02 00:07 - 2016-01-12 18:45 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
- 2016-03-02 00:07 - 2016-02-16 18:38 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
- 2016-03-02 00:07 - 2016-01-12 18:45 - 00112592 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
- 2016-03-02 00:07 - 2016-02-16 18:38 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
- 2016-03-02 00:07 - 2016-02-16 18:38 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00021832 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
- 2016-03-02 00:07 - 2016-01-12 18:46 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
- 2016-03-02 00:07 - 2016-02-16 18:38 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
- 2016-03-02 00:07 - 2016-01-12 18:44 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
- 2016-03-02 00:07 - 2016-01-12 18:45 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00021824 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32._winffi_kernel32.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
- 2016-03-02 00:07 - 2016-02-16 18:38 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
- 2016-03-02 00:07 - 2016-01-12 18:47 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
- 2016-03-02 00:07 - 2016-02-16 18:39 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
- 2016-03-02 00:07 - 2016-01-12 18:45 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 01971504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00132912 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00223544 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00158008 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
- 2016-03-02 00:07 - 2016-01-12 18:49 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
- 2016-03-02 00:07 - 2016-01-12 18:49 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
- 2016-03-02 00:07 - 2016-02-16 18:39 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
- 2016-03-02 00:07 - 2016-01-12 18:52 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
- 2016-01-11 10:36 - 2016-01-11 10:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
- 2016-02-19 22:46 - 2016-02-18 04:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
- 2016-02-19 22:46 - 2016-02-18 04:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll
- 2016-03-01 23:35 - 2016-03-01 20:34 - 02205696 _____ () C:\Users\Adm01\AppData\Local\Chromium\Application\51.0.2665.0\libglesv2.dll
- 2016-03-01 23:35 - 2016-03-01 20:34 - 00075776 _____ () C:\Users\Adm01\AppData\Local\Chromium\Application\51.0.2665.0\libegl.dll
- 2016-02-01 23:47 - 2016-02-01 23:47 - 00088064 _____ () C:\Program Files (x86)\VyprVPN\GoldenFrogWFP.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- AlternateDataStreams: C:\Users\Adm01\Downloads\adwcleaner_5.037.exe:BDU [0]
- AlternateDataStreams: C:\Users\Adm01\Downloads\BvSshClient-Inst.exe:BDU [0]
- AlternateDataStreams: C:\Users\Adm01\Downloads\FRST64.exe:BDU [0]
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
- IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
- IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
- IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
- IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
- IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
- IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
- IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
- IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
- IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
- IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
- IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
- IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
- IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
- IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
- IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
- IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
- IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
- IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
- IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
- There are 7872 more sites.
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\007guard.com -> install.007guard.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\008i.com -> 008i.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\008k.com -> www.008k.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\00hq.com -> www.00hq.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\010402.com -> 010402.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\0scan.com -> www.0scan.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\1-2005-search.com -> www.1-2005-search.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\1000gratisproben.com -> www.1000gratisproben.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\1001namen.com -> www.1001namen.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\100888290cs.com -> mir.100888290cs.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\100sexlinks.com -> www.100sexlinks.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\10sek.com -> www.10sek.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\12-26.net -> user1.12-26.net
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\12-27.net -> user1.12-27.net
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\123fporn.info -> www.123fporn.info
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\123moviedownload.com -> www.123moviedownload.com
- IE restricted site: HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\...\123simsen.com -> www.123simsen.com
- There are 7872 more sites.
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 02:34 - 2016-03-06 14:17 - 00065026 ____A C:\Windows\system32\Drivers\etc\hosts
- 127.0.0.1 www.007guard.com
- 127.0.0.1 007guard.com
- 127.0.0.1 008i.com
- 127.0.0.1 www.008k.com
- 127.0.0.1 008k.com
- 127.0.0.1 www.00hq.com
- 127.0.0.1 00hq.com
- 127.0.0.1 010402.com
- 127.0.0.1 www.032439.com
- 127.0.0.1 032439.com
- 127.0.0.1 www.0scan.com
- 127.0.0.1 0scan.com
- 127.0.0.1 1000gratisproben.com
- 127.0.0.1 www.1000gratisproben.com
- 127.0.0.1 1001namen.com
- 127.0.0.1 www.1001namen.com
- 127.0.0.1 100888290cs.com
- 127.0.0.1 www.100888290cs.com
- 127.0.0.1 www.100sexlinks.com
- 127.0.0.1 100sexlinks.com
- 127.0.0.1 10sek.com
- 127.0.0.1 www.10sek.com
- 127.0.0.1 www.1-2005-search.com
- 127.0.0.1 1-2005-search.com
- 127.0.0.1 123fporn.info
- 127.0.0.1 www.123fporn.info
- 127.0.0.1 123haustiereundmehr.com
- 127.0.0.1 www.123haustiereundmehr.com
- 127.0.0.1 123moviedownload.com
- 127.0.0.1 www.123moviedownload.com
- There are 2156 more lines.
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3134420710-1709433476-2236555127-1001\Control Panel\Desktop\\Wallpaper ->
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- MSCONFIG\startupfolder: C:^Users^Adm01^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^JustCloud.lnk => C:\Windows\pss\JustCloud.lnk.Startup
- MSCONFIG\startupfolder: C:^Users^Adm01^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk => C:\Windows\pss\MEGAsync.lnk.Startup
- MSCONFIG\startupfolder: C:^Users^Adm01^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Sync.LNK => C:\Windows\pss\Sync.LNK.Startup
- MSCONFIG\startupreg: BoxSync => "C:\Program Files\Box\Box Sync\BoxSync.exe" -m
- MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
- MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
- MSCONFIG\startupreg: Malwarebytes Anti-Malware (cleanup) => "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
- MSCONFIG\startupreg: MediaFire Tray => "C:\Users\Adm01\AppData\Local\MediaFire Desktop\mf_watch.exe"
- MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"
- MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
- MSCONFIG\startupreg: uTorrent => "C:\Users\Adm01\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [{C030EA88-E07F-48D7-9101-6EB381487EA6}] => (Allow) C:\Users\Adm01\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{86042F80-2F26-41D5-B297-D97EF32BC870}] => (Allow) C:\Users\Adm01\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{51925D54-7EBB-4420-877A-56F22A4A13A2}] => (Allow) C:\Users\Adm01\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{9E7D1D06-079F-4F09-9209-AAA9B0B889AA}] => (Allow) C:\Users\Adm01\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{F5FC4181-94D1-4C1A-884B-91796C1FC4E1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{3F1C0098-930E-479E-83F5-7626604216F2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{2F594147-3961-4CEE-8B26-9F06D3FCC8A9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{DF9CDB35-E43D-48A5-B0C7-9E8BF0CC4F7B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{F7982436-2424-4118-939C-0AE1A0A0BC69}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{C70A0ED9-2055-4FE6-AC30-A1C8F3964635}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{AC8D8681-9639-4DE8-8082-44F985B6D2DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
- FirewallRules: [{4E627361-CCB0-4ADC-BCC0-6718BACAD079}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
- FirewallRules: [{244409F2-F03D-4AA6-825F-C7C8DAEE9A7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{0391570C-61EB-42EB-BD20-25D42C129A9A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{A1CCC9D7-B13B-4C3F-B0DB-995FF1E4E3B7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [{DA60847C-6FD3-4E97-9FB9-306D61602D07}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{F9FC4763-5BBA-4ABB-8096-08928E2A87C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{FA116464-1770-4681-AE8F-1C8BCCC9F4A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{218F35EF-6285-4B9A-BF9E-2DDEE32FC8FF}] => (Allow) C:\Users\Adm01\AppData\Local\Chromium\Application\chrome.exe
- FirewallRules: [{4A567D85-56F3-4961-9127-709095F7B9D9}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
- FirewallRules: [{0BC8DF48-F157-4F37-847C-41482E467E46}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{B5442B2B-766D-4B6D-87BC-A9574E0E5955}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{572D41EE-AF6C-4620-9A3A-09095E8DE4F1}] => (Block) C:\Windows\explorer.exe
- StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
- StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
- StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
- StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
- ==================== Restore Points =========================
- 02-03-2016 09:14:35 Windows Update
- 05-03-2016 00:37:40 Instalador de Módulos do Windows
- 05-03-2016 19:39:33 Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
- ==================== Faulty Device Manager Devices =============
- Name: Rato PS/2 Microsoft
- Description: Rato PS/2 Microsoft
- Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
- Manufacturer: Microsoft
- Service: i8042prt
- Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
- Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
- Devices stay in this state if they have been prepared for removal.
- After you remove the device, this error disappears.Remove the device, and this error should be resolved.
- Name: Teclado Padrão PS/2
- Description: Teclado Padrão PS/2
- Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
- Manufacturer: (Teclados padrão)
- Service: i8042prt
- Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
- Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
- Devices stay in this state if they have been prepared for removal.
- After you remove the device, this error disappears.Remove the device, and this error should be resolved.
- Name: TAP-VyprVPN Adapter V9
- Description: TAP-VyprVPN Adapter V9
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: TAP-VyprVPN Provider V9
- Service: tapvyprvpn
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- Name: xHCI Root Hub 0
- Description: xHCI Root Hub 0
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: Kaspersky Lab power events provider
- Description: Kaspersky Lab power events provider
- Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
- Manufacturer: KL
- Service: klhk
- Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
- Resolution: A registry problem was detected.
- This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
- On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
- Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (03/05/2016 10:55:52 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Nome da aplicação com falha: explorer.exe, versão: 6.1.7601.23338, carimbo de data/hora: 0x56a1ba77
- Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
- Código de excepção: 0xc0000005
- Desvio de falha: 0x000ef967
- ID do processo com falha: 0x1acc
- Data/hora de início da aplicação com falha: 0xexplorer.exe0
- Caminho da aplicação com falha: explorer.exe1
- Caminho do módulo com falha: explorer.exe2
- ID do Relatório: explorer.exe3
- Error: (03/05/2016 12:18:08 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (03/04/2016 11:50:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (03/04/2016 11:24:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (03/04/2016 11:23:44 PM) (Source: ESENT) (EventID: 455) (User: )
- Description: taskhost (2308) WebCacheLocal: Ocorreu o erro -1811 ao abrir o ficheiro de registo C:\Users\Adm01\AppData\Local\Microsoft\Windows\WebCache\V010003A.log.
- Error: (03/04/2016 11:21:03 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
- Description: Não foi possível inicializar o índice.
- Detalhes:
- O catálogo de índices de conteúdos está danificado. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (03/04/2016 11:21:03 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
- Description: Não foi possível inicializar a aplicação.
- Contexto: Aplicação Windows
- Detalhes:
- O catálogo de índices de conteúdos está danificado. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (03/04/2016 11:21:03 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
- Description: Não foi possível inicializar o objecto do colector.
- Contexto: Aplicação Windows, Catálogo SystemIndex
- Detalhes:
- O catálogo de índices de conteúdos está danificado. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (03/04/2016 11:21:03 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
- Description: Não foi possível inicializar o plug-in em <Search.TripoliIndexer>.
- Contexto: Aplicação Windows, Catálogo SystemIndex
- Detalhes:
- Elemento não encontrado. (HRESULT : 0x80070490) (0x80070490)
- Error: (03/04/2016 11:21:03 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
- Description: Não foi possível inicializar o plug-in em <Search.JetPropStore>.
- Contexto: Aplicação Windows, Catálogo SystemIndex
- Detalhes:
- O catálogo de índices de conteúdos está danificado. (HRESULT : 0xc0041801) (0xc0041801)
- System errors:
- =============
- Error: (03/06/2016 12:11:00 AM) (Source: Disk) (EventID: 11) (User: )
- Description: O controlador detectou um erro de controlador em \Device\Harddisk1\DR1.
- Error: (03/05/2016 11:17:02 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
- Description: O gestor de controlo de serviços tentou efectuar uma acção correctiva (Reiniciar o serviço) após a terminação inesperada do serviço Serviço Auxiliar de Compatibilidade de Programas, mas esta acção falhou com o seguinte erro:
- %%1056
- Error: (03/05/2016 11:16:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: O serviço Super Fetch terminou inesperadamente. Já o fez 2 vez(es). Será efectuada a seguinte acção correctiva em 60000 milissegundos: Reiniciar o serviço.
- Error: (03/05/2016 11:16:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: O serviço Serviço Auxiliar de Compatibilidade de Programas terminou inesperadamente. Já o fez 2 vez(es). Será efectuada a seguinte acção correctiva em 60000 milissegundos: Reiniciar o serviço.
- Error: (03/05/2016 11:16:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: O serviço Ligações de Rede terminou inesperadamente. Já o fez 2 vez(es). Será efectuada a seguinte acção correctiva em 100 milissegundos: Reiniciar o serviço.
- Error: (03/05/2016 11:16:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: O serviço Construtor de Ponto Final de Áudio do Windows terminou inesperadamente. Já o fez 2 vez(es). Será efectuada a seguinte acção correctiva em 120000 milissegundos: Reiniciar o serviço.
- Error: (03/05/2016 07:39:58 PM) (Source: Disk) (EventID: 11) (User: )
- Description: O controlador detectou um erro de controlador em \Device\Harddisk1\DR1.
- Error: (03/05/2016 01:07:59 PM) (Source: Disk) (EventID: 11) (User: )
- Description: O controlador detectou um erro de controlador em \Device\Harddisk1\DR1.
- Error: (03/05/2016 01:07:59 PM) (Source: Disk) (EventID: 11) (User: )
- Description: O controlador detectou um erro de controlador em \Device\Harddisk1\DR1.
- Error: (03/05/2016 01:07:58 PM) (Source: Disk) (EventID: 11) (User: )
- Description: O controlador detectou um erro de controlador em \Device\Harddisk1\DR1.
- CodeIntegrity:
- ===================================
- Date: 2016-02-16 20:36:14.554
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\dfx12x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-02-16 20:36:14.455
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\dfx12x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-02-16 20:34:43.862
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\dfx12x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-02-16 20:34:43.764
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\dfx12x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM)2 Quad CPU Q8200 @ 2.33GHz
- Percentage of memory in use: 77%
- Total physical RAM: 4095.18 MB
- Available physical RAM: 940.59 MB
- Total Virtual: 8188.55 MB
- Available Virtual: 2845.7 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:264.49 GB) (Free:193.93 GB) NTFS
- Drive e: () (Removable) (Total:14.53 GB) (Free:10.53 GB) FAT32
- Drive l: (Software & Stuff) (Fixed) (Total:297.99 GB) (Free:217.02 GB) NTFS
- Drive z: (Backup) (Fixed) (Total:201.17 GB) (Free:156.31 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: DDC76F67)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=264.5 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=201.2 GB) - (Type=07 NTFS)
- ========================================================
- Disk: 1 (MBR Code: Windows 7 or 8) (Size: 14.5 GB) (Disk ID: 0026C32F)
- Partition 1: (Active) - (Size=14.5 GB) - (Type=0C)
- ========================================================
- Disk: 2 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: F08CBD00)
- Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement