Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Robson Siqueira

computador acometido de 2 problemas: suspeito que seja vírus

Recommended Posts

 Bom dia! Meu notebook apresenta 2 problemas:

1) minha camera de vídeo é acusada como plugada mas não consigo acessar os seus arquivos. Da última vez que esse problema aconteceu, consegui acessar os arquivos indo na opção de pastas e configurando para mostrar arquivos ocultos, mas dessa vez não resolve.  

2) não consigo conectar meu notebook na internet. Acusa problemas no adaptador ou ponto de acesso sem fio.

 

Para ambos os casos todos os procedimentos de solução de problemas que são disponibilizados pela microsoft. Se for vírus, gostaria de resolver a questão.

 

Para postar aqui estou utilizando um outro computador.

 

Grato,

 

Robson Siqueira

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
Turco    634

Olá Robson Siqueira,

 

Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.
 
Por favor, atente para o seguinte:
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Respeite a ordem das instruções passadas.
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!
 
Peço que você continue com este tópico e faça uma resposta colocando o log do DDS e GMER de acordo com as instruções presentes na página  Leia Antes de Postar - Criando um novo Tópico
 
ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!
ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!
ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

Compartilhar este post


Link para o post
Compartilhar em outros sites
Robson Siqueira    0
  • Autor do tópico
  • DDS

     

     

    DDS (Ver_2012-11-20.01) - NTFS_AMD64 
    Internet Explorer: 11.0.9600.17126
    Run by Binho at 11:00:07 on 2014-08-20
    Microsoft Windows 7 Home Premium   6.1.7601.1.1252.55.1046.18.3999.2399 [GMT -3:00]
    .
    AV: avast! Antivirus *Disabled/Outdated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: avast! Antivirus *Disabled/Outdated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\PROGRA~2\GbPlugin\GbpSv.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\WLANExt.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
    C:\Program Files\LSI SoftModem\agr64svc.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    C:\Windows\Explorer.EXE
    C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
    c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
    C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
    C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Windows\system32\svchost.exe -k bthsvcs
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Program Files\IDT\WDM\sttray64.exe
    C:\Program Files\Apoint2K\ApMsgFwd.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
    C:\Users\Binho\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
    C:\Users\Binho\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
    C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
    C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
    C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
    C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
    C:\Windows\System32\WUDFHost.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com.br/
    uDefault_Page_URL = hxxp://www.portaldosites.com/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=hp&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797363
    mStart Page = hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    mDefault_Page_URL = hxxp://www.portaldosites.com/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=hp&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797363
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
    BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
    BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Auxiliar de Conexão do Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll
    uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
    uRun: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
    uRun: [Google Update] "C:\Users\Binho\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    uRun: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    mRun: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    mRun: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
    mRun: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
    mRun: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~2\Server\bin\VERSIO~2.EXE
    mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
    mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
    StartupFolder: C:\Users\Binho\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Binho\AppData\Roaming\Dropbox\bin\Dropbox.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\REALPL~1.LNK - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:189
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableLUA = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
    IE: Enviar imagem para Dispositivo &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Enviar página para Dispositivo &Bluetooth ... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    TCP: Interfaces\{2E26AC00-E681-440F-AE9C-CB5FD9DBDA72}\746545 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{2E26AC00-E681-440F-AE9C-CB5FD9DBDA72}\746545D213432453 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{2E26AC00-E681-440F-AE9C-CB5FD9DBDA72}\746545D263532493 : DHCPNameServer = 192.168.1.1
    Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    Notify:  GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll
    SSODL: WebCheck - <orphaned>
    SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll
    SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
    mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
    x64-mStart Page = hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    x64-mDefault_Page_URL = hxxp://www.portaldosites.com/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=hp&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797363
    x64-mSearchAssistant = hxxp://search.portaldosites.com/web/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=ds&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797367
    x64-mCustomizeSearch = hxxp://search.portaldosites.com/web/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=ds&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797367
    x64-BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
    x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
    x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe
    x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
    x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
    x64-Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
    x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
    x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-Notify: igfxcui - igfxdev.dll
    x64-SSODL: WebCheck - <orphaned>
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-7-10 65776]
    R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-7-10 208416]
    R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-7-23 56208]
    R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2012-6-19 28504]
    R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-7-10 1039096]
    R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-7-10 423240]
    R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
    R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-5-23 143120]
    R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2010-5-17 89600]
    R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-6-11 29208]
    R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-7-10 79184]
    R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-3-14 85328]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-6-11 50344]
    R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2011-7-23 208264]
    R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-3-15 39568]
    R2 RealPlayer Cloud Service;RealPlayer Cloud Service;C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [2014-3-31 1141848]
    R2 RealPlayerUpdateSvc;RealPlayer Update Service;C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-3-20 23552]
    R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2010-5-17 35104]
    R3 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-12-16 227896]
    R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;C:\Windows\System32\drivers\IntcHdmi.sys [2009-7-10 139264]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-5-17 239616]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
    S3 Adobe Version Cue CS4;Adobe Version Cue CS4;C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-8-15 284016]
    S3 BprotectEx;Baidu ProtectEx;C:\Windows\System32\drivers\BprotectEx.sys [2013-8-29 76096]
    S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-9-25 1038088]
    S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-6-20 48488]
    S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
    S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-6-11 111616]
    S3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2009-7-23 140712]
    S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
    S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
    S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
    S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-23 59392]
    S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-7-3 1255736]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
    .
    =============== Created Last 30 ================
    .
    2014-08-19 18:50:03 -------- d-----w- C:\SUPERDelete
    .
    ==================== Find3M  ====================
    .
    2014-06-11 17:31:07 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2014-06-11 17:31:07 699056 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2014-06-11 17:18:55 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
    2014-06-11 17:18:55 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
    2014-06-11 17:18:23 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
    2014-06-11 17:18:23 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
    2014-06-11 17:18:23 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
    2014-06-11 17:18:23 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
    2014-06-11 17:18:23 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
    2014-06-11 17:18:22 43152 ----a-w- C:\Windows\avastSS.scr
    2014-06-08 09:13:05 506368 ----a-w- C:\Windows\System32\aepdu.dll
    2014-06-08 09:08:04 424448 ----a-w- C:\Windows\System32\aeinv.dll
    2014-05-30 10:02:37 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
    2014-05-30 10:02:09 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
    2014-05-30 09:39:43 548352 ----a-w- C:\Windows\System32\vbscript.dll
    2014-05-30 09:39:23 66048 ----a-w- C:\Windows\System32\iesetup.dll
    2014-05-30 09:38:29 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
    2014-05-30 09:21:23 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
    2014-05-30 09:21:05 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
    2014-05-30 09:20:36 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
    2014-05-30 09:11:24 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
    2014-05-30 09:08:22 5782528 ----a-w- C:\Windows\System32\jscript9.dll
    2014-05-30 09:02:39 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2014-05-30 08:55:36 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
    2014-05-30 08:44:28 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
    2014-05-30 08:43:06 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
    2014-05-30 08:42:16 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
    2014-05-30 08:28:33 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2014-05-30 08:27:56 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
    2014-05-30 08:24:19 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
    2014-05-30 08:23:22 2040832 ----a-w- C:\Windows\System32\inetcpl.cpl
    2014-05-30 08:10:46 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
    2014-05-30 07:56:56 2266112 ----a-w- C:\Windows\System32\wininet.dll
    2014-05-30 07:56:50 4244992 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2014-05-30 07:50:09 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
    2014-05-30 07:49:38 1964544 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2014-05-30 07:21:10 1790976 ----a-w- C:\Windows\SysWow64\wininet.dll
    2010-06-05 21:20:56 51731232 ----a-w- C:\Program Files\setup_avast!_free.exe
    .
    ============= FINISH: 11:00:42,44 ===============

    ATTACH

     

     

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows 7 Home Premium 
    Boot Device: \Device\HarddiskVolume1
    Install Date: 15/06/2010 14:46:50
    System Uptime: 20/08/2014 10:39:55 (1 hours ago)
    .
    Motherboard: Hewlett-Packard |  | 3607
    Processor: Intel® Core2 Duo CPU     T6600  @ 2.20GHz | CPU | 2200/800mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 450 GiB total, 160,768 GiB free.
    D: is FIXED (NTFS) - 16 GiB total, 2,581 GiB free.
    E: is FIXED (FAT32) - 0 GiB total, 0,028 GiB free.
    F: is CDROM ()
    G: is Removable
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Adaptador de Túnel Teredo da Microsoft
    Device ID: ROOT\*TEREDO\0000
    Manufacturer: Microsoft
    Name: Adaptador de Túnel Teredo da Microsoft
    PNP Device ID: ROOT\*TEREDO\0000
    Service: tunnel
    .
    ==== System Restore Points ===================
    .
    RP447: 30/06/2014 16:34:24 - Windows Update
    RP448: 01/07/2014 22:01:51 - Operação de restauração
    RP449: 09/07/2014 23:27:07 - Ponto de Verificação Agendado
    RP450: 17/07/2014 14:24:31 - Ponto de Verificação Agendado
    RP451: 25/07/2014 10:49:48 - Ponto de Verificação Agendado
    RP452: 03/08/2014 02:19:27 - Ponto de Verificação Agendado
    RP453: 17/08/2014 14:27:03 - Ponto de Verificação Agendado
    .
    ==== Installed Programs ======================
    .
     Update for Microsoft Office 2007 (KB2508958)
    3ga to mp3 Converter version 1.2.1
    Acrobat.com
    Adobe After Effects CS4
    Adobe After Effects CS4 Presets
    Adobe AIR
    Adobe Anchor Service CS4
    Adobe Anchor Service x64 CS4
    Adobe Asset Services CS4
    Adobe Bridge CS4
    Adobe CMaps CS4
    Adobe CMaps x64 CS4
    Adobe Color - Photoshop Specific CS4
    Adobe Color EU Extra Settings CS4
    Adobe Color JA Extra Settings CS4
    Adobe Color NA Recommended Settings CS4
    Adobe Color Video Profiles AE CS4
    Adobe Color Video Profiles CS CS4
    Adobe Creative Cloud
    Adobe Creative Suite 4 Master Collection
    Adobe CS4 American English Speech Analysis Models
    Adobe CSI CS4
    Adobe CSI CS4 x64
    Adobe Default Language CS4
    Adobe Device Central CS4
    Adobe Drive CS4
    Adobe Drive CS4 x64
    Adobe Dynamiclink Support
    Adobe Encore CS4
    Adobe ExtendScript Toolkit CS4
    Adobe Extension Manager CS4
    Adobe Flash Player 11 Plugin
    Adobe Flash Player 14 ActiveX
    Adobe Fonts All
    Adobe Fonts All x64
    Adobe Help Manager
    Adobe Illustrator CS4
    Adobe Linguistics CS4
    Adobe Linguistics CS4 x64
    Adobe Media Encoder CS4
    Adobe Media Encoder CS4 Additional Exporter
    Adobe Media Encoder CS4 Dolby
    Adobe Media Encoder CS4 Exporter
    Adobe Media Encoder CS4 Importer
    Adobe Media Player
    Adobe MotionPicture Color Files CS4
    Adobe Output Module
    Adobe PDF Library Files CS4
    Adobe PDF Library Files x64 CS4
    Adobe Photoshop CS4
    Adobe Photoshop CS4 (64 Bit)
    Adobe Photoshop CS4 Support
    Adobe Premiere Pro CC
    Adobe Premiere Pro CS4
    Adobe Premiere Pro CS4 Functional Content
    Adobe Premiere Pro CS4 Third Party Content
    Adobe Reader 9.3
    Adobe Search for Help
    Adobe Service Manager Extension
    Adobe Setup
    Adobe Shockwave Player
    Adobe Shockwave Player 12.0
    Adobe Soundbooth CS4
    Adobe Type Support CS4
    Adobe Type Support x64 CS4
    Adobe Update Manager CS4
    Adobe Version Cue CS4 Server
    Adobe WinSoft Linguistics Plugin
    Adobe WinSoft Linguistics Plugin x64
    Adobe XMP Panels CS4
    AdobeColorCommonSetCMYK
    AdobeColorCommonSetRGB
    Alps Touch Pad Driver
    Apple Mobile Device Support
    Apple Software Update
    Applian FLV Player
    Arquivo do WinRAR
    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)
    Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)
    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)
    Atualização do produto Microsoft Office Word 2007 Help (KB963665)
    aTube Catcher
    avast! Free Antivirus
    BitTorrent
    bl
    Broadcom 802.11 Wireless LAN Adapter
    BrOffice.org 3.2
    CCleaner
    Connect
    Controle ActiveX do Windows Live Mesh para Conexões Remotas
    CyberLink DVD Suite
    CyberLink MediaShow
    CyberLink PowerDVD 8
    CyberLink YouCam
    D3DX10
    doPDF 7.1 printer
    DriverToolkit version 8.3.0.0
    Dropbox
    ESU for Microsoft Windows 7
    Facebook Video Calling 2.0.0.447
    GIMP 2.8.4
    Google Chrome
    Google Earth
    Google Update Helper
    HP Advisor
    HP Customer Experience Enhancements
    HP Integrated Module with Bluetooth wireless technology
    HP Quick Launch Buttons
    HP Setup
    HP Update
    HP User Guides 0146
    HP Wireless Assistant
    HSPA USB Modem
    IDT Audio
    Image Converter
    Image Editor Packages
    Instalação do DivX
    Intel® Graphics Media Accelerator Driver
    iTunes
    Jahshaka
    JMicron Flash Media Controller Driver
    Junk Mail filter update
    K-Lite Mega Codec Pack 6.5.0
    kuler
    LightScribe System Software
    LSI HDA Modem
    Mesh Runtime
    Messenger Companion
    Microsoft .NET Framework 4.5.1
    Microsoft .NET Framework 4.5.1 (Português do Brasil)
    Microsoft .NET Framework 4.5.1 (PTB)
    Microsoft Application Error Reporting
    Microsoft Office 2007 Service Pack 3 (SP3)
    Microsoft Office Access MUI (Portuguese (Brazil)) 2007
    Microsoft Office Enterprise 2007
    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007
    Microsoft Office File Validation Add-In
    Microsoft Office Groove MUI (Portuguese (Brazil)) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007
    Microsoft Office Office 64-bit Components 2007
    Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007
    Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007
    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007
    Microsoft Office PowerPoint Viewer 2007 (Portuguese (Brazil))
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (Portuguese (Brazil)) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (Portuguese (Brazil)) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
    Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007
    Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007
    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007
    Microsoft Office Word MUI (Portuguese (Brazil)) 2007
    Microsoft Search Enhancement Pack
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable (x64)
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
    Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
    Microsoft Works
    Microsoft_VC80_ATL_x86
    Microsoft_VC80_CRT_x86
    Microsoft_VC80_CRT_x86_x64
    Microsoft_VC80_MFC_x86
    Microsoft_VC80_MFC_x86_x64
    Microsoft_VC80_MFCLOC_x86
    Microsoft_VC80_MFCLOC_x86_x64
    Microsoft_VC90_ATL_x86
    Microsoft_VC90_ATL_x86_x64
    Microsoft_VC90_CRT_x86
    Microsoft_VC90_CRT_x86_x64
    Microsoft_VC90_MFC_x86
    Microsoft_VC90_MFC_x86_x64
    MSVCRT
    MSVCRT_amd64
    MSXML 4.0 SP3 Parser
    MSXML 4.0 SP3 Parser (KB2721691)
    MSXML 4.0 SP3 Parser (KB2758694)
    MSXML 4.0 SP3 Parser (KB973685)
    msxml4
    muvee Reveal
    Nero 7 Premium
    OpenLibraries
    PandaPDFConverter
    PDF Settings CS4
    ph
    Photoshop Camera Raw
    Photoshop Camera Raw_x64
    Pixel Bender Toolkit
    Portaldosties
    Power2Go
    PowerDirector
    PxMergeModule
    QLBCASL
    QuickTime
    RealDownloader
    RealNetworks - Microsoft Visual C++ 2008 Runtime
    RealNetworks - Microsoft Visual C++ 2010 Runtime
    RealPlayer Cloud
    Realtek Ethernet Controller Driver For Windows Vista and Later
    RealUpgrade 1.1
    Recovery Manager
    Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition 
    Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition 
    Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition 
    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 
    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
    Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition 
    Security Update for Microsoft Office Word 2007 (KB2880515) 32-Bit Edition 
    Skype™ 6.3
    Sony Sound Forge 9.0
    Sony Vegas Pro 8.0
    Suite Shared Configuration CS4
    SUPERAntiSpyware
    Suporte para Aplicativos Apple
    swMSM
    Update for 2007 Microsoft Office System (KB967642)
    Update for Image Editor
    Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
    Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
    Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
    Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition
    UpdateService
    VC80CRTRedist - 8.0.50727.6195
    Video Converter Packages
    VSDC Free Video Editor version 1.2.5.3
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Family Safety
    Windows Live Galeria de Fotos
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Language Selector
    Windows Live Mail
    Windows Live Mesh
    Windows Live Messenger
    Windows Live Messenger Companion Core
    Windows Live MIME IFilter
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live Remote Client
    Windows Live Remote Client Resources
    Windows Live Remote Service
    Windows Live Remote Service Resources
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live Sync
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    Windows Media Player Firefox Plugin
    WinPcap 4.1.3
    WinX Video Converter 4.5.11
    Wise Registry Cleaner 7.83
    .
    ==== End Of File ===========================

    prezado Carlos Turco, o resultado do GMER ficou muito grande, de modo que nem a décima parte do arquivo eu consigo postá-lo por ser tão grande. O salvei no bloco de notas. Devo lhe enviar o arquivo por algum outro caminho? Aguardo sua instrução

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

     

    prezado Carlos Turco, o resultado do GMER ficou muito grande, de modo que nem a décima parte do arquivo eu consigo postá-lo por ser tão grande. O salvei no bloco de notas. Devo lhe enviar o arquivo por algum outro caminho? Aguardo sua instrução

     

    Tente compacta-lo e anexar na sua resposta.

     

     

    Baixe o Farbar Recovery Scan Tool e salve na sua área de trabalho.

    32 bit (x86) ou 64 bit (x64)

    Dê um duplo-clique para executar a ferramenta. Aceite o contrato e depois clique no botão Scan.

    Aguarde e ao final, os logs FRST.txt e Addition.txt serão salvos no seu desktop.

    Anexe os logs na sua próxima resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Robson Siqueira    0
  • Autor do tópico
  • FRST

     

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-08-2014 01
    Ran by Binho (administrator) on BINHO-PC on 21-08-2014 11:44:19
    Running from C:\Users\Binho\Desktop
    Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Português (Brasil)
    Internet Explorer Version 11
    Boot Mode: Normal
     
    The only official download link for FRST:
    Download link from any site other than Bleeping Computer is unpermitted or outdated.
     
    ==================== Processes (Whitelisted) =================
     
    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
     
    ( ) C:\Program Files (x86)\GbPlugin\gbpsv.exe
    (IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    (Microsoft Corporation) C:\Windows\System32\wlanext.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
    (LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
    (RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
    () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Intel Corporation) C:\Windows\System32\igfxtray.exe
    (Intel Corporation) C:\Windows\System32\hkcmd.exe
    (Intel Corporation) C:\Windows\System32\igfxpers.exe
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
    (Intel Corporation) C:\Windows\System32\igfxsrvc.exe
    (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
    (Google Inc.) C:\Users\Binho\AppData\Local\Google\Update\GoogleUpdate.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    (RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
    (Dropbox, Inc.) C:\Users\Binho\AppData\Roaming\Dropbox\bin\Dropbox.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    ( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
    (RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe
    (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    () C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
    (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
     
     
    ==================== Registry (Whitelisted) ==================
     
    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
     
    HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [318464 2009-05-15] (Alps Electric Co., Ltd.)
    HKLM\...\Run: [sysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [450048 2009-07-21] (IDT, Inc.)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-13] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)
    HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
    HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
    HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
    HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-02-20] (Apple Inc.)
    HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2236816 2013-08-08] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [Adobe_ID0ENQBO] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-11] (AVAST Software)
    HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [296520 2014-03-31] (RealNetworks, Inc.)
    Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
    Winlogon\Notify\ GbPluginBb-x32: C:\Program Files (x86)\GbPlugin\gbieh.dll (Banco do Brasil)
    HKU\S-1-5-21-4175305143-3063073390-2193797984-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
    HKU\S-1-5-21-4175305143-3063073390-2193797984-1000\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
    HKU\S-1-5-21-4175305143-3063073390-2193797984-1000\...\Run: [Google Update] => C:\Users\Binho\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-02-01] (Google Inc.)
    HKU\S-1-5-21-4175305143-3063073390-2193797984-1000\...\Run: [sUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-06-07] (SUPERAntiSpyware)
    HKU\S-1-5-21-4175305143-3063073390-2193797984-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
    ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
    ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
    Startup: C:\Users\Binho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
    ShortcutTarget: Dropbox.lnk -> C:\Users\Binho\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
    ShellIconOverlayIdentifiers:  AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
    ShellIconOverlayIdentifiers:  AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
    ShellIconOverlayIdentifiers:  AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
    ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
    ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Binho\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
     
    ==================== Internet (Whitelisted) ====================
     
    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
     
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.br/
    HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
    SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
    SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKLM-x32 - {081230F8-EA50-42A9-983C-D22ABC2EED3B} URL = http://www.qemit.com/toolbar/hub.php?a=sb&did=8&pid=0&lan=pt&day=0&ver=1.01&q={searchTerms}
    SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
    SearchScopes: HKCU - {081230F8-EA50-42A9-983C-D22ABC2EED3B} URL = http://www.qemit.com/toolbar/hub.php?a=sb&did=8&pid=0&lan=pt&day=0&ver=1.01&q={searchTerms}
    SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
    BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
    BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} ->  No File
    BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
    BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
    BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
    BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
    BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
    BHO-x32: Auxiliar de Conexão do Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
    BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll (Banco do Brasil)
    Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
    Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
    Toolbar: HKCU - No Name - {081230F8-EA50-42A9-983C-D22ABC2EED3B} -  No File
    DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
    Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1685384 2011-07-18] (Banco do Brasil)
     
    FireFox:
    ========
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
    FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
    FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
    FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @real.com/nppl3260;version=17.0.8.22 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.8 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.8 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.8 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprpplugin;version=17.0.8.22 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
    FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Binho\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
    FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Binho\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Binho\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
    FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
    FF Extension: Search Helper Extension - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2011-09-09]
    FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
    FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-02-15]
    FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
    FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-03-31]
    FF HKLM-x32\...\Firefox\Extensions: [{0FAA5C82-A094-4541-8811-D3361F972A81}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
     
    Chrome: 
    =======
    CHR HomePage: hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    CHR RestoreOnStartup: "hxxp://www.portaldosites.com/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=hp&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797363"
    CHR DefaultSearchKeyword: portaldosites
    CHR DefaultSearchProvider: portaldosites
    CHR DefaultSuggestURL: 
    CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
    CHR Plugin: (Native Client) - C:\Users\Binho\AppData\Local\Google\Chrome\Application\26.0.1403.0\ppGoogleNaClPluginChrome.dll No File
    CHR Plugin: (Chrome PDF Viewer) - C:\Users\Binho\AppData\Local\Google\Chrome\Application\26.0.1403.0\pdf.dll No File
    CHR Plugin: (Shockwave Flash) - C:\Users\Binho\AppData\Local\Google\Chrome\Application\26.0.1403.0\gcswf32.dll No File
    CHR Plugin: (Shockwave Flash) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.132\pepflashplayer.dll No File
    CHR Plugin: (Babylon Chrome Plugin) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.4_0\BabylonChromePI.dll No File
    CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\PFiles\Plugins\np-mswmp.dll (Microsoft Corporation)
    CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
    CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
    CHR Plugin: (Java Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
    CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
    CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
    CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
    CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    CHR Plugin: (RealNetworks Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
    CHR Plugin: (RealPlayer HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
    CHR Plugin: (RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    CHR Plugin: (RealPlayer Version Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll No File
    CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
    CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
    CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll No File
    CHR Extension: (Ask Toolbar) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod [2013-09-01]
    CHR Extension: (Ask Toolbar) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoomnboffjcgcebabolakmhbblbk [2012-11-03]
    CHR Extension: (YouTube) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-02-18]
    CHR Extension: (Google Search) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-18]
    CHR Extension: (Bargain Workbench) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebcpofjimbbchggpnfcaiieolloeodp [2013-08-29]
    CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-04-27]
    CHR Extension: (avast! WebRep) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2013-01-18]
    CHR Extension: (RealDownloader) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-01-18]
    CHR Extension: (No Name) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo [2013-08-29]
    CHR Extension: (Wajam) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp [2013-08-29]
    CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-02-18]
    CHR Extension: (Gmail) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-02-18]
    CHR HKLM\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\Binho\AppData\Local\funmoods_2.3.crx [2013-05-16]
    CHR HKLM\...\Chrome\Extension: [gebcpofjimbbchggpnfcaiieolloeodp] - C:\Users\Binho\AppData\Local\BargainWorkbench.crx [2013-08-29]
    CHR HKCU\...\Chrome\Extension: [gebcpofjimbbchggpnfcaiieolloeodp] - C:\Users\Binho\AppData\Local\BargainWorkbench.crx [2013-08-29]
    CHR HKLM-x32\...\Chrome\Extension: [gebcpofjimbbchggpnfcaiieolloeodp] - C:\Users\Binho\AppData\Local\BargainWorkbench.crx [2013-08-29]
    CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-03-15]
    CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2013-08-29]
    CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
    CHR StartMenuInternet: Google Chrome - C:\Users\Binho\AppData\Local\Google\Chrome\Application\chrome.exe
     
    ==================== Services (Whitelisted) =================
     
    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
     
    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [143120 2013-05-23] (SUPERAntiSpyware.com)
    S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
    R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-11] (AVAST Software)
    R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [208264 2011-07-18] ( )
    R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
    S4 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
    R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-03-15] ()
    R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-03-31] (RealNetworks, Inc.)
    R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-03-20] () [File not signed]
    S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
    S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
    R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128 2009-07-21] (IDT, Inc.)
     
    ==================== Drivers (Whitelisted) ====================
     
    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
     
    U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
    R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-11] ()
    R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [28504 2012-03-06] (AVAST Software)
    R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-11] (AVAST Software)
    R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-11] (AVAST Software)
    R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-11] ()
    R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-11] (AVAST Software)
    R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-11] (AVAST Software)
    R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-11] (AVAST Software)
    R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2014-01-22] (AVAST Software)
    R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-11] ()
    S3 BprotectEx; C:\Windows\System32\drivers\BprotectEx.sys [76096 2013-08-08] (Baidu, Inc.)
    S0 GbpKm; C:\Windows\SysWOW64\drivers\gbpkm.sys [43600 2011-07-18] (GAS Tecnologia)
    R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    S1 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
    U4 eabfiltr; 
    S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
    S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
    S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
    S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
    S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
    S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
    S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
     
    ==================== NetSvcs (Whitelisted) ===================
     
    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
     
     
    ==================== One Month Created Files and Folders ========
     
    (If an entry is included in the fixlist, the file\folder will be moved.)
     
    2014-08-21 11:44 - 2014-08-21 11:44 - 00032781 _____ () C:\Users\Binho\Desktop\FRST.txt
    2014-08-21 11:22 - 2014-08-21 11:44 - 00000000 ____D () C:\FRST
    2014-08-21 11:21 - 2014-08-21 11:10 - 02101760 _____ (Farbar) C:\Users\Binho\Desktop\FRST64.exe
    2014-08-20 16:02 - 2014-08-20 16:02 - 1320008149 _____ () C:\Windows\MEMORY.DMP
    2014-08-20 16:02 - 2014-08-20 16:02 - 00457120 _____ () C:\Windows\Minidump\082014-16863-01.dmp
    2014-08-20 11:31 - 2014-08-20 11:31 - 00003098 _____ () C:\Windows\System32\Tasks\RealCreateProcessScheduledTask3074015S-1-5-21-4175305143-3063073390-2193797984-1000
    2014-08-20 10:55 - 2014-08-20 10:27 - 00688992 ____R (Swearware) C:\Users\Binho\Desktop\dds.com
    2014-08-20 10:53 - 2014-08-20 10:53 - 00000000 ____D () C:\Users\Binho\Desktop\dds
    2014-08-20 10:52 - 2014-08-20 11:07 - 00000000 ____D () C:\Users\Binho\Desktop\gmer
    2014-08-20 10:51 - 2014-08-20 12:19 - 00000000 ____D () C:\Users\Binho\Desktop\operação antivirus no nbook
    2014-08-19 15:50 - 2014-08-19 15:50 - 00000000 ____D () C:\SUPERDelete
    2014-08-18 08:40 - 2014-08-18 09:29 - 00000220 _____ () C:\Users\Binho\Desktop\Boi de Sapé - ultimas retificações.txt
    2014-08-17 14:36 - 2014-08-17 14:45 - 00000000 ____D () C:\Users\Binho\Desktop\Para Patrícia
    2014-08-11 23:16 - 2014-08-11 23:19 - 00000000 ____D () C:\Users\Binho\Desktop\músicas repertório
    2014-08-08 15:52 - 2014-08-08 15:52 - 00000000 ____D () C:\Users\Binho\Desktop\livro PRIMEIRO FILME
    2014-08-01 13:37 - 2014-08-01 13:37 - 00003098 _____ () C:\Windows\System32\Tasks\RealCreateProcessScheduledTask12692990S-1-5-21-4175305143-3063073390-2193797984-1000
    2014-07-23 15:52 - 2014-07-23 15:52 - 00000126 _____ () C:\Users\Binho\Desktop\dados valores cultura.txt
    2014-07-22 22:39 - 2014-07-22 23:23 - 692168708 _____ () C:\Users\Binho\Desktop\Homenagem Santos Juninos.mpg
     
    ==================== One Month Modified Files and Folders =======
     
    (If an entry is included in the fixlist, the file\folder will be moved.)
     
    2014-08-21 11:44 - 2014-08-21 11:44 - 00032781 _____ () C:\Users\Binho\Desktop\FRST.txt
    2014-08-21 11:44 - 2014-08-21 11:22 - 00000000 ____D () C:\FRST
    2014-08-21 11:28 - 2012-03-31 08:43 - 00000902 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2014-08-21 11:15 - 2009-07-14 01:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2014-08-21 11:15 - 2009-07-14 01:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2014-08-21 11:10 - 2014-08-21 11:21 - 02101760 _____ (Farbar) C:\Users\Binho\Desktop\FRST64.exe
    2014-08-21 11:09 - 2010-07-21 07:50 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2014-08-21 11:07 - 2012-02-18 07:00 - 00001078 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4175305143-3063073390-2193797984-1000UA.job
    2014-08-21 10:59 - 2010-06-16 09:57 - 00000000 ____D () C:\Users\Binho\AppData\Local\Adobe
    2014-08-21 10:54 - 2010-05-17 09:26 - 01074326 _____ () C:\Windows\WindowsUpdate.log
    2014-08-21 10:49 - 2014-06-18 16:04 - 00000376 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Binho.job
    2014-08-21 10:49 - 2014-06-11 14:22 - 00005712 _____ () C:\Windows\setupact.log
    2014-08-21 10:49 - 2010-07-21 07:50 - 00001062 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2014-08-21 10:49 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2014-08-20 16:02 - 2014-08-20 16:02 - 1320008149 _____ () C:\Windows\MEMORY.DMP
    2014-08-20 16:02 - 2014-08-20 16:02 - 00457120 _____ () C:\Windows\Minidump\082014-16863-01.dmp
    2014-08-20 16:02 - 2013-06-16 14:13 - 00000000 ____D () C:\Windows\Minidump
    2014-08-20 15:41 - 2012-05-22 21:30 - 00001074 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4175305143-3063073390-2193797984-1000UA.job
    2014-08-20 12:19 - 2014-08-20 10:51 - 00000000 ____D () C:\Users\Binho\Desktop\operação antivirus no nbook
    2014-08-20 11:31 - 2014-08-20 11:31 - 00003098 _____ () C:\Windows\System32\Tasks\RealCreateProcessScheduledTask3074015S-1-5-21-4175305143-3063073390-2193797984-1000
    2014-08-20 11:07 - 2014-08-20 10:52 - 00000000 ____D () C:\Users\Binho\Desktop\gmer
    2014-08-20 10:53 - 2014-08-20 10:53 - 00000000 ____D () C:\Users\Binho\Desktop\dds
    2014-08-20 10:51 - 2009-12-16 22:37 - 00708966 _____ () C:\Windows\system32\prfh0416.dat
    2014-08-20 10:51 - 2009-12-16 22:37 - 00148746 _____ () C:\Windows\system32\prfc0416.dat
    2014-08-20 10:51 - 2009-07-14 02:13 - 01643886 _____ () C:\Windows\system32\PerfStringBackup.INI
    2014-08-20 10:40 - 2014-06-11 14:22 - 00024994 _____ () C:\Windows\PFRO.log
    2014-08-20 10:27 - 2014-08-20 10:55 - 00688992 ____R (Swearware) C:\Users\Binho\Desktop\dds.com
    2014-08-19 16:09 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF
    2014-08-19 15:50 - 2014-08-19 15:50 - 00000000 ____D () C:\SUPERDelete
    2014-08-19 15:50 - 2013-08-29 13:00 - 00000000 ____D () C:\Users\Public\Documents\Baidu Security
    2014-08-19 15:50 - 2013-07-14 15:41 - 00000000 ____D () C:\Users\Todos os Usuários\Baidu Security
    2014-08-19 15:50 - 2013-07-14 15:41 - 00000000 ____D () C:\ProgramData\Baidu Security
    2014-08-19 15:50 - 2013-07-14 15:37 - 00000000 ____D () C:\Users\Binho\AppData\Roaming\Baidu Security
    2014-08-18 10:40 - 2010-11-16 08:53 - 00000000 ____D () C:\Users\Binho\AppData\Local\CrashDumps
    2014-08-18 09:29 - 2014-08-18 08:40 - 00000220 _____ () C:\Users\Binho\Desktop\Boi de Sapé - ultimas retificações.txt
    2014-08-17 23:19 - 2014-07-16 23:19 - 00000000 _____ () C:\Users\Binho\Desktop\para BOI DE SAPÉ - REVISAR.txt
    2014-08-17 14:45 - 2014-08-17 14:36 - 00000000 ____D () C:\Users\Binho\Desktop\Para Patrícia
    2014-08-11 23:19 - 2014-08-11 23:16 - 00000000 ____D () C:\Users\Binho\Desktop\músicas repertório
    2014-08-09 00:36 - 2014-06-09 23:40 - 00000000 ____D () C:\Users\Binho\Desktop\repertório
    2014-08-09 00:18 - 2014-06-18 13:53 - 00002960 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Binho
    2014-08-09 00:18 - 2014-06-18 13:53 - 00000366 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Binho.job
    2014-08-08 22:38 - 2012-05-22 21:30 - 00001052 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4175305143-3063073390-2193797984-1000Core.job
    2014-08-08 15:52 - 2014-08-08 15:52 - 00000000 ____D () C:\Users\Binho\Desktop\livro PRIMEIRO FILME
    2014-08-04 01:08 - 2014-03-12 13:27 - 00000000 ____D () C:\Users\Binho\Documents\EDITAIS
    2014-08-04 01:07 - 2012-02-18 07:00 - 00001026 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4175305143-3063073390-2193797984-1000Core.job
    2014-08-01 13:37 - 2014-08-01 13:37 - 00003098 _____ () C:\Windows\System32\Tasks\RealCreateProcessScheduledTask12692990S-1-5-21-4175305143-3063073390-2193797984-1000
    2014-07-25 10:11 - 2014-04-04 12:33 - 00000000 ____D () C:\Users\Binho\Documents\Emprestei
    2014-07-23 15:52 - 2014-07-23 15:52 - 00000126 _____ () C:\Users\Binho\Desktop\dados valores cultura.txt
    2014-07-22 23:26 - 2014-06-15 15:30 - 00000000 ____D () C:\Users\Binho\Desktop\RGV apresentação
    2014-07-22 23:23 - 2014-07-22 22:39 - 692168708 _____ () C:\Users\Binho\Desktop\Homenagem Santos Juninos.mpg
     
    Files to move or delete:
    ====================
    C:\Users\Binho\msn instalador.exe
     
     
    Some content of TEMP:
    ====================
    C:\Users\Binho\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpldioeo.dll
    C:\Users\Binho\AppData\Local\Temp\install_flashplayer14x32axau_mssd_aaa_aih.exe
     
     
    ==================== Bamital & volsnap Check =================
     
    (There is no automatic fix for files that do not pass verification.)
     
    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
     
     
    LastRegBack: 2014-08-17 14:20
     
    ==================== End Of Log ============================

    Addition.rar ADDITION

     

    resultado em anexo


    gmer 1.rar  GMER

     

    em anexo

     

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Ok,

     

    Baixe o anexo deste post e salve-o no desktop.

    Execute o FRST64 e clique no botão Fix.

    Aguarde e ao final, o log Fixlog.txt será salvo no seu desktop.

    Anexe o log na sua próxima resposta.

    fixlist.txt

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Robson Siqueira    0
  • Autor do tópico
  • Fixlog

     

     

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-08-2014 01
    Ran by Binho at 2014-08-23 00:13:36 Run:1
    Running from C:\Users\Binho\Desktop
    Boot Mode: Normal
    ==============================================
     
    Content of fixlist:
    *****************
    HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
    SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKLM-x32 - {081230F8-EA50-42A9-983C-D22ABC2EED3B} URL = http://www.qemit.com/toolbar/hub.php?a=sb&did=8&pid=0&lan=pt&day=0&ver=1.01&q={searchTerms}
    SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
    SearchScopes: HKCU - {081230F8-EA50-42A9-983C-D22ABC2EED3B} URL = http://www.qemit.com/toolbar/hub.php?a=sb&did=8&pid=0&lan=pt&day=0&ver=1.01&q={searchTerms}
    SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
    CHR HomePage: hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
    CHR RestoreOnStartup: "hxxp://www.portaldosites.com/?utm_source=b&utm_medium=cor&utm_campaign=&utm_content=hp&from=cor&uid=ST9500420AS_5VJ5L1F1&ts=1377797363"
    CHR DefaultSearchKeyword: portaldosites
    CHR DefaultSearchProvider: portaldosites
    CHR Extension: (Ask Toolbar) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod [2013-09-01]
    CHR Extension: (Ask Toolbar) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoomnboffjcgcebabolakmhbblbk [2012-11-03]
    CHR Extension: (Wajam) - C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp [2013-08-29]
    CHR HKLM\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\Binho\AppData\Local\funmoods_2.3.crx [2013-05-16]
    C:\Users\Binho\AppData\Local\funmoods_2.3.crx
    S3 BprotectEx; C:\Windows\System32\drivers\BprotectEx.sys [76096 2013-08-08] (Baidu, Inc.)
    2014-08-19 15:50 - 2013-08-29 13:00 - 00000000 ____D () C:\Users\Public\Documents\Baidu Security
    2014-08-19 15:50 - 2013-07-14 15:41 - 00000000 ____D () C:\Users\Todos os Usuários\Baidu Security
    2014-08-19 15:50 - 2013-07-14 15:41 - 00000000 ____D () C:\ProgramData\Baidu Security
    2014-08-19 15:50 - 2013-07-14 15:37 - 00000000 ____D () C:\Users\Binho\AppData\Roaming\Baidu Security
    Task: {0C95CC05-17BC-4B90-A3F4-38D132E101AC} - System32\Tasks\DealPlyUpdate => C:\Program Files (x86)\DealPly\DealPlyUpdate.exe <==== ATTENTION
    Task: {165DE659-4555-4EF8-A33F-BBB65EFC29BF} - System32\Tasks\DealPly => C:\Users\Binho\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
    Task: {2975F78E-D24B-438C-BD3C-4DDD73AA8FFF} - System32\Tasks\Funmoods => C:\Users\Binho\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
    Task: {EAB2C50F-0024-4FAA-A2EC-DAF454007CF5} - System32\Tasks\Browser Manager => Sc.exe start Browser Manager
    AlternateDataStreams: C:\ProgramData\Microsoft:GiM2rXdhsh4pmPsFj
    AlternateDataStreams: C:\ProgramData\Microsoft:Jr7xUHu9kupxnbz7iD8LTFdnehIIh
    AlternateDataStreams: C:\ProgramData\Temp:888AFB86
    AlternateDataStreams: C:\Users\Binho\AppData\Local\Temp:Cw6ssEihw7I1ags3D0vD0wNvrXN60
    AlternateDataStreams: C:\Users\Binho\AppData\Local\Temporary Internet Files:3oUTbJQ1qCjFHGaXd7EjACgBowzoi
    AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:GiM2rXdhsh4pmPsFj
    AlternateDataStreams: C:\Users\Todos os Usuários\Microsoft:Jr7xUHu9kupxnbz7iD8LTFdnehIIh
    AlternateDataStreams: C:\Users\Todos os Usuários\Temp:888AFB86
    Hosts:
    CMD: bitsadmin /reset /allusers
    CMD: netsh int ip reset all 
    CMD: netsh winsock reset
    CMD: netsh advfirewall reset 
    CMD: netsh advfirewall set allprofiles state ON
    Cmd: ipconfig /flushdns
    EmptyTemp:
    *****************
     
    HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
    HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
    HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
    HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
    "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
    "HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
    "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key Deleted successfully.
    "HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
    "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{081230F8-EA50-42A9-983C-D22ABC2EED3B}" => Key deleted successfully.
    "HKCR\Wow6432Node\CLSID\{081230F8-EA50-42A9-983C-D22ABC2EED3B}" => Key not found.
    "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
    "HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
    HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
    "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{081230F8-EA50-42A9-983C-D22ABC2EED3B}" => Key deleted successfully.
    "HKCR\CLSID\{081230F8-EA50-42A9-983C-D22ABC2EED3B}" => Key not found.
    "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully.
    "HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key not found.
    Chrome HomePage deleted successfully.
    Chrome RestoreOnStartup deleted successfully.
    Chrome DefaultSearchKeyword deleted successfully.
    CHR DefaultSearchProvider: portaldosites ==> The Chrome "Settings" can be used to fix the entry.
    C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod => Moved successfully.
    C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoomnboffjcgcebabolakmhbblbk => Moved successfully.
    C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp => Moved successfully.
    "HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh" => Key deleted successfully.
    C:\Users\Binho\AppData\Local\funmoods_2.3.crx => Moved successfully.
    "C:\Users\Binho\AppData\Local\funmoods_2.3.crx" => File/Directory not found.
    BprotectEx => Service deleted successfully.
    C:\Users\Public\Documents\Baidu Security => Moved successfully.
    C:\Users\Todos os Usuários\Baidu Security => Moved successfully.
    "C:\ProgramData\Baidu Security" => File/Directory not found.
    C:\Users\Binho\AppData\Roaming\Baidu Security => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C95CC05-17BC-4B90-A3F4-38D132E101AC}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C95CC05-17BC-4B90-A3F4-38D132E101AC}" => Key deleted successfully.
    C:\Windows\System32\Tasks\DealPlyUpdate => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{165DE659-4555-4EF8-A33F-BBB65EFC29BF}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{165DE659-4555-4EF8-A33F-BBB65EFC29BF}" => Key deleted successfully.
    C:\Windows\System32\Tasks\DealPly => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2975F78E-D24B-438C-BD3C-4DDD73AA8FFF}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2975F78E-D24B-438C-BD3C-4DDD73AA8FFF}" => Key deleted successfully.
    C:\Windows\System32\Tasks\Funmoods => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Funmoods" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EAB2C50F-0024-4FAA-A2EC-DAF454007CF5}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EAB2C50F-0024-4FAA-A2EC-DAF454007CF5}" => Key deleted successfully.
    C:\Windows\System32\Tasks\Browser Manager => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Manager" => Key deleted successfully.
    C:\ProgramData\Microsoft => ":GiM2rXdhsh4pmPsFj" ADS removed successfully.
    C:\ProgramData\Microsoft => ":Jr7xUHu9kupxnbz7iD8LTFdnehIIh" ADS removed successfully.
    C:\ProgramData\Temp => ":888AFB86" ADS removed successfully.
    C:\Users\Binho\AppData\Local\Temp => ":Cw6ssEihw7I1ags3D0vD0wNvrXN60" ADS removed successfully.
    "C:\Users\Binho\AppData\Local\Temporary Internet Files" => ":3oUTbJQ1qCjFHGaXd7EjACgBowzoi" ADS not found.
    "C:\Users\Todos os Usuários\Microsoft" => ":GiM2rXdhsh4pmPsFj" ADS not found.
    "C:\Users\Todos os Usuários\Microsoft" => ":Jr7xUHu9kupxnbz7iD8LTFdnehIIh" ADS not found.
    "C:\Users\Todos os Usuários\Temp" => ":888AFB86" ADS not found.
    C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
    Hosts was reset successfully.
     
    =========  bitsadmin /reset /allusers =========
     
     
    BITSADMIN version 3.0 [ 7.5.7601 ]
    BITS administration utility.
    © Copyright 2000-2006 Microsoft Corp.
     
    BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
    Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
     
    0 out of 0 jobs canceled.
     
    ========= End of CMD: =========
     
     
    =========  netsh int ip reset all =========
     
    Redefinindo Global, OK!
    Redefinindo Interface, OK!
    Reinicie o computador para concluir esta a��o.
     
     
    ========= End of CMD: =========
     
     
    =========  netsh winsock reset =========
     
     
    Cat�logo Winsock redefinido com �xito.
    Reinicie o computador para concluir a redefini��o.
     
     
    ========= End of CMD: =========
     
     
    =========  netsh advfirewall reset =========
     
    Ok.
     
     
    ========= End of CMD: =========
     
     
    =========  netsh advfirewall set allprofiles state ON =========
     
    Ok.
     
     
    ========= End of CMD: =========
     
     
    =========  ipconfig /flushdns =========
     
     
    Configura��o de IP do Windows
     
    Libera��o do Cache do DNS Resolver bem-sucedida.
     
    ========= End of CMD: =========
     
    EmptyTemp: => Removed 324.9 MB temporary data.
     
     
    The system needed a reboot. 
     
    ==== End of Fixlog ====

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Bom dia.

     

    1)

     

    Baixe o AdwCleaner e salve no desktop.
    https://toolslib.net/downloads/finish/1/

    Execute o arquivo adwcleaner.exe

    *** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo adwcleaner.exe, depois clique em execadmin.png.

    Clique no botão Examinar e aguarde o exame finalizar.

    Clique no botão Limpar.

    Abrirá um bloco de notas com o resultado. Anexe o log na sua próxima resposta.

    NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

    2)

    Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

    Baixe 1268r49.png e salve no desktop. Dê um duplo-clique para executar o Junkware Removal Tool (JRT).

    * No Windows Vista e Windows 7:

    Clique com o direito sobre o JRT.exe e selecione run_as_adm1.png

    A ferramenta começara o exame do seu sistema. Tenha paciência pois pode demorar um pouco dependendo da quantidades de ítens a examinar.

    Ao final, um log se abrirá. É salvo no desktop com o nome de JRT.txt.

    Anexe o log na sua próxima resposta.

    3)

     

    Baixe o Malwarebytes' Anti-Malware (MBAM)
    http://malwarebytes....am-download.php

    Dê um duplo-clique no mbam-setup.exe, para a instalação.

    • Desmarque a caixa Ativar trial gratuito do MalwareBytes Anti-Malware PRO.
    • Verifique se as caixas Atualizar Malwarebytes Anti-Malware (se houver) e Executar Malwarebytes Anti-Malware estão marcadas e clique então, em Concluir.
    • Se houver atualizações a serem feitas, serão baixadas e instaladas.
    • Ao final da atualização, caso o programa tenha sido instalado em Inglês, com o programa aberto, clique em Settings e no campo Language mude para Portuguese (Brasil).
    • Ainda na tela de Configurações, clique em Detecção e proteção, marque Verificar por Rootkits. Em Detecções PUP (programas potencialmente indesejados):, selecione Tratar detecções como malware.
    • Clique em Verificar em seguida Verificar ameaça por fim clique em Verificar agora.
    • Começará então o exame. Aguarde, pois pode demorar.
    • Ao acabar o exame, se houver ítens encontrados, clique no botão Mover todos para a Quarentena..
    • Clique em Aplicar ações.
    • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo)
    • O log é automaticamente salvo pelo MBAM e para vê-lo, clique na aba Histórico -> Logs de aplicativos na janela principal do programa. Utilize o formato .txt para exportar o log.
    • Anexe o log na sua próxima resposta..

    NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

    Editado por CarlosTurco

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Robson Siqueira    0
  • Autor do tópico
  • LOG ADWCLEANER
     
     
    # AdwCleaner v2.303 - Relatório criado em 21/06/2013 às 12:59:33
    # Atualizado em 08/06/2013 por Xplode
    # Sistema Operacional : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Usuário : Binho - BINHO-PC
    # Modo de Boot : Normal
    # Executado de : C:\Users\Binho\Desktop\AdwCleaner.exe
    # Opção [Verificar]
     
     
    ***** [serviços] *****
     
    Encontrado : Yontoo Desktop Updater
     
    ***** [Arquivos/Pastas] *****
     
    Arquivo Encontrado : C:\user.js
    Arquivo Encontrado : C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
    Arquivo Encontrado : C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
    Arquivo Encontrado : C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage
    Arquivo Encontrado : C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cjpglkicenollcignonpgiafdgfeehoj_0.localstorage
    Pasta Encontrado : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
    Pasta Encontrado : C:\Program Files (x86)\Red Sky
    Pasta Encontrado : C:\Program Files (x86)\Yontoo
    Pasta Encontrado : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeRIP3
    Pasta Encontrado : C:\Users\Binho\AppData\Local\APN
    Pasta Encontrado : C:\Users\Binho\AppData\Roaming\DSite
    Pasta Encontrado : C:\Users\Binho\AppData\Roaming\Yontoo
    Pasta Encontrado : C:\Windows\SysWOW64\Browser Manager
     
    ***** [Registro] *****
     
    Chave Encontrada : HKCU\Software\Ask&Record
    Chave Encontrada : HKCU\Software\DataMngr
    Chave Encontrada : HKCU\Software\InstallCore
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{081230F8-EA50-42A9-983C-D22ABC2EED3B}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{081230F8-EA50-42A9-983C-D22ABC2EED3B}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
    Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{081230F8-EA50-42A9-983C-D22ABC2EED3B}
    Chave Encontrada : HKLM\Software\AedgePerformanceBCN
    Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
    Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
    Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
    Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
    Chave Encontrada : HKLM\Software\DataMngr
    Chave Encontrada : HKLM\Software\InstallCore
    Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
    Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
    Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{081230F8-EA50-42A9-983C-D22ABC2EED3B}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{081230F8-EA50-42A9-983C-D22ABC2EED3B}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
    Chave Encontrada : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
    Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
    Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
    Chave Encontrada : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
    Chave Encontrada : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
    Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
    Chave Encontrada : HKLM\SOFTWARE\Tarma Installer
    Chave Encontrada : HKU\S-1-5-21-4175305143-3063073390-2193797984-1000\Software\Microsoft\Internet Explorer\SearchScopes\{081230F8-EA50-42A9-983C-D22ABC2EED3B}
    Valor Encontrada : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
    Valor Encontrada : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{081230F8-EA50-42A9-983C-D22ABC2EED3B}]
    Valor Encontrada : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
    Valor Encontrada : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
    Valor Encontrada : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
    Valor Encontrada : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{081230F8-EA50-42A9-983C-D22ABC2EED3B}]
     
    ***** [Navegadores] *****
     
    -\\ Internet Explorer v10.0.9200.16576
     
    [HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://search.babylon.com/?affID=115193&tt=3412_1&babsrc=HP_ss&mntrId=c2359d34000000000000000000000000
     
    -\\ Google Chrome v29.0.1541.0
     
    Arquivo : C:\Users\Binho\AppData\Local\Google\Chrome\User Data\Default\Preferences
     
    Encontrada [l.38] : search_url = "hxxp://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=01543&cd=2XzuyEtN2Y1L1Qzu0FtDyB0B0C0BzyyDyEyBtAtBzy0DtAyEtN0D0Tzu0CyDtDtBtN1L2XzutBtFtBtFtCtFyDyByBtN1L1CzutDtCyDyE&cr=745720804&ir=",
    Encontrada [l.1994] : homepage = "hxxp://searchfunmoods.com/?f=1&a=01543&cd=2XzuyEtN2Y1L1Qzu0FtDyB0B0C0BzyyDyEyBtAtBzy0DtAyEtN0D0Tzu0CyDtDtBtN1L2XzutBtFtBtFtCtFyDyByBtN1L1CzutDtCyDyE&cr=745720804&ir=",
    Encontrada [l.2495] : urls_to_restore_on_startup = [ "hxxp://searchfunmoods.com/?f=1&a=01543&cd=2XzuyEtN2Y1L1Qzu0FtDyB0B0C0BzyyDyEyBtAtBzy0DtAyEtN0D0Tzu0CyDtDtBtN1L2XzutBtFtBtFtCtFyDyByBtN1L1CzutDtCyDyE&cr=745720804&ir=" ],
     
    *************************
     
    AdwCleaner[R1].txt - [7544 octets] - [21/06/2013 12:56:03]
    AdwCleaner[R2].txt - [7489 octets] - [21/06/2013 12:59:33]
     
    ########## EOF - C:\AdwCleaner[R2].txt - [7549 octets] ##########

    LOG JRT

     

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 6.1.4 (04.06.2014:1)
    OS: Windows 7 Home Premium x64
    Ran by Binho on 24/08/2014 at 18:29:59,07
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
     
     
     
    ~~~ Services
     
     
     
    ~~~ Registry Values
     
     
     
    ~~~ Registry Keys
     
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-4175305143-3063073390-2193797984-1000\Software\sweetim
    Successfully deleted: [Registry Key] HKEY_USERS\.DEFAULT\Software\bProtector
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440044504460}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440044504460}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440044504460}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskHomePageReset_RASAPI32
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskHomePageReset_RASMANCS
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440044504460}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskHomePageReset_RASAPI32
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskHomePageReset_RASMANCS
     
     
     
    ~~~ Files
     
     
     
    ~~~ Folders
     
    Successfully deleted: [Folder] "C:\Users\Binho\AppData\Roaming\getrighttogo"
    Successfully deleted: [Empty Folder] C:\Users\Binho\appdata\local\{7C53A379-4982-44FC-960C-F0F039854453}
    Successfully deleted: [Empty Folder] C:\Users\Binho\appdata\local\{A27C629E-1D05-43AA-B98B-6D7BEDB36C5B}
    Successfully deleted: [Empty Folder] C:\Users\Binho\appdata\local\{B400EF74-FBFC-4076-9C6F-88DE92327111}
    Successfully deleted: [Empty Folder] C:\Users\Binho\appdata\local\{D57C9CD2-46CD-428B-BF30-0F658A1602E0}
     
     
     
    ~~~ Chrome
     
    Successfully deleted: [Folder] C:\Users\Binho\appdata\local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
     
     
     
    ~~~ Event Viewer Logs were cleared
     
     
     
     
     
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 24/08/2014 at 18:39:40,95
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    LOG MBAM

     

    Malwarebytes Anti-Malware
    www.malwarebytes.org
     
    Data de Verificação: 24/08/2014
    Hora da Verificação: 18:59:24
    Logfile: mbam log.txt
    Administrador: Sim
     
    Versão: 2.00.2.1012
    Malware Database: v2014.03.04.09
    Rootkit Database: v2014.02.20.01
    Licença: Grátis
    Proteção de Malware: Desabilitado
    Proteção de Site Malicioso: Desabilitado
    Self-protection: Desabilitado
     
    OS: Windows 7 Service Pack 1
    CPU: x64
    Sistema de Arquivo: NTFS
    Usuário: Binho
     
    Tipo da Verificação: Verificar Ameaça
    Resultado: Completado
    Arquivos Verificados: 282308
    Tempo Decorrido: 14 min, 20 seg
     
    Memória: Enabled
    Inicialização: Enabled
    Filesystem: Enabled
    Arquivos: Enabled
    Rootkits: Enabled
    Heuristics: Enabled
    PUP: Enabled
    PUM: Enabled
     
    Processos: 0
    (No malicious items detected)
     
    Módulos: 0
    (No malicious items detected)
     
    Chaves de Registro: 0
    (No malicious items detected)
     
    Valores de Registro: 0
    (No malicious items detected)
     
    Dados do Registro: 0
    (No malicious items detected)
     
    Pastas: 0
    (No malicious items detected)
     
    Arquivos: 0
    (No malicious items detected)
     
    Physical Sectors: 0
    (No malicious items detected)
     
     

     

    (end)

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Robson Siqueira,

     

    Você utilizou o botão "Limpar"do AdwCleaner? Se sim, poste o log correto.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Robson Siqueira    0
  • Autor do tópico
  • Creio que sim! Porque abri agora o programa para tentar visualizar registros de log e, se há, não consegui encontrar. Porém acessei o conteúdo de quarentena e há muitos registros, ou seja, muito conteúdo em quarentena. 

     

    Por equívoco posso não ter executado os seus comandos direito, mas não sei se sim ou não.

     

    Devo fazer o procedimento de examinar e limpar novamente?

     

     

    ps. desculpe a demora, pois não havia percebido sua resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Robson Siqueira

     

    Procure o seguinte log.

     

    C:\AdwCleaner[s1].txt

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Robson Siqueira    0
  • Autor do tópico
  • Carlos Turco,

     

    não há [s1].

    Há apenas [R2], [R0] e [s0]

    lhe envio em anexo: 1) pnt sc da pasta adwcleaner aberta. 2) o .txt dos registros da quarentena

    fiz os anexos para ajudá-lo a compreender se estou fazendo certo ou não.

    prt sc pasta adwcleaner.docx

    Quarantine adwCleaner.txt

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Ok,

     

    Já vi a informação que precisava. :)

     

    Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.
     
    Baixe 51a612a8b27e2-Zoek.pngzoek.exe (por Smeenk) e salve na sua área de trabalho.

    Execute o arquivo Zoek.exe

    *** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo Zoek.exe, depois clique em execadmin.png.

    Selecione estas linhas dentro do CODE, clique com o direito sobre a seleção e escolha a opção copiar.

    emptyclsid;msconfigcheck;ipconfig /flushdns >>"%temp%\log.txt";bshortcutfix;systemspecs;chrdefaults;ffdedaults;autoclean;resethosts;

    Clique com o direito em qualquer parte branca do Zoek e escolha a opção colar

    Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.

    Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.


    Clique [Run Script]

    Aguarde o scan. Ao final abrirá o bloco de notas com o relatório.

    Uma cópia também será salva no seu disco local com o nome zoek-results.txt

    Anexe o zoek-results.txt na sua próxima resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Ok,

     

    Para finalizar:
     
    # Etapa nº 1 #


    Baixe o Delfix by Xplode e salve na sua área de trabalho.

    Dê dois cliques no delfix.exe para executá-lo. Marque as caixas conforme imagem.

    ** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo delfix.exe, depois clique em execadmin.png.

    2mez6ld.png

    Clique no botão Executar.

    Ao final será gerado um log, mas não é necessário postar.

     

    # Etapa nº 2 #

     

    Atualize o Java.
     
    Atenção: Desinstale TODAS as versões antigas do Java.

    • Feche todos os programas especialmente o seu Navegador (IE, Firefox etc).
    • Acesse o site Java para Windows
    • Clique em 4531602912_e9606174d3_o.gif
    • Na janela que surgir clique em Executar;
    • Siga os procedimentos de instalação.

     
    # Etapa nº 3 #
     
    <<@>> Instale o CCleaner
     
    O CCleaner é um excelente utilitário de limpeza para o computador, que lhe ajudará no desempenho do computador. Faça o download dele aqui CCleaner

     

    IMPORTANTE: Após a instalação vá até o local onde o programa foi instalado, C:\Arquivos de programas\CCleaner, clique duas vezes na pasta, numa área vazia desta janela, clique com o botão direito do mouse e escolha Novo > pasta e crie uma nova pasta; coloque o nome de backups!

    • Abra o programa e clique em Executar Limpeza;
    • clique no botão Registro > Procurar Erros > Corrigir erro(s) seleciona(s)...

    Obs: Não se esqueça de aceitar o backup das correções, e salvá-los nas pasta criada acima!
    <<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!
     
    Abraços. thumbsup.gif

     

    Editado por CarlosTurco
    Post duplicado.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Robson Siqueira    0
  • Autor do tópico
  • Carlos Turco, continuo sem conseguir conectar a internet. Para comunicar-me com você e para fazer os downloads tenho usado outro notebook. Ou seja, a assistência é pra outro notebook (o meu) e não para esse que uso para nossa comunicação.

     

    quanto ao DELFIX, ok!

     

    quanto ao JAVA, fiz o download aqui e levei para meu notebook. Mas o programa não se instala sem conexão com a internet. Ele diz: "o instalador não pode prosseguir com as definições atuais para conexão com a internet. Visite o site a seguir para obter mais informações". Abaixo do aviso há um link que não consigo acessar por não conectar.

     

    sobre CONEXÃO COM A INTERNET: geralmente tento conectar, tento solucionar os problemas pelo próprio windows, e ele diz: "Problema no adaptador ou ponto de acesso sem fio". O problema não é no modem da GVT, porque há mais 2 notebooks em minha casa e conectam perfeitamente. Creio que seja problema no meu notebook, talvez tenha sido um dano causado por vírus, por isso pedi sua ajuda, mas sei que há danos que não são da ossada dos analistas desse fórum por serem de outra categoria de problemas.

     

    quanto ao CCLEANER   

     

     

     

     

     

     

     

    muito grato por seus esforços


    caramba, por acidente apertei na tecla arrada aqui e postei antes de concluir.  :D

     

    mas concluindo:

     

    quanto ao CCLEANER, fiz o que pediu, mas não pude atualizá-lo por não conectar a internet.

     

    bem, apenas achei por bem lhe informar tudo isso para você refletir se algo mais pode ser feito pelo viés do teu auxílio. Caso não haja mais nada, já estou muito grato pelo teu suporte, pois trata-se de um conjunto de procedimentos lógicos e exclusivos que eu não conseguiria fazer, e sei que limpou muita coisa e corrigiu muitas outras. 

     

    Grato e aguardo teu feedback


    Ah! e sua ultima postagem aqui foi para JULIO GABRIEL, acho que você se confundiu, não? 

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Robson Siqueira,

     

    Seus problemas não estão relacionados a malware. Caso queira, sugiro que abra um tópico na área Redes.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Turco    634

    Caso o autor necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×