Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Casprov

Remoção de Hao123

Recommended Posts

Não estou conseguindo remover o Hao123, ele não se encontra em extensions e plugins do chrome, e nem em desinstaladores como iobit e revo.

 

Outro problema que estou encontrando é que em dado momento o '~' é acionado sozinho como aconteceu quando eu estava digitando o título deste tópico.

attach.txt

dds.txt

Novo Documento de Texto (2).txt

Editado por Casprov

Compartilhar este post


Link para o post
Compartilhar em outros sites
Olá

 

Preciso que refaça os logs seguindo os procedimentos abaixo: Leia Antes de Postar - Criando um novo Tópico

 

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

ATENÇÃO 4: Não anexe os logs, obrigado!

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • DDS (Ver_2012-11-20.01) - NTFS_AMD64 
    Internet Explorer:   BrowserJavaVersion: 10.71.2
    Run by Lucas at 0:51:56 on 2014-10-27
    Microsoft Windows 7 Home Basic   6.1.7601.1.1252.55.1046.18.4040.2047 [GMT -2:00]
    .
    AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    AV: Baidu Antivirus *Enabled/Updated* {10616E6C-0E20-8594-D377-A7D03F6128A6}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Baidu Antivirus *Disabled/Updated* {AB008F88-281A-8A1A-E9C7-9CA244E6621B}
    SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
    .
    ============== Running Processes ===============
    .
    C:\windows\system32\lsm.exe
    C:\windows\system32\svchost.exe -k DcomLaunch
    C:\windows\system32\svchost.exe -k RPCSS
    C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\windows\system32\svchost.exe -k LocalService
    C:\windows\system32\svchost.exe -k netsvcs
    C:\windows\system32\svchost.exe -k GPSvcGroup
    C:\windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\windows\system32\Dwm.exe
    C:\windows\Explorer.EXE
    C:\windows\System32\spoolsv.exe
    C:\windows\system32\taskhost.exe
    C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
    C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
    C:\windows\system32\taskeng.exe
    C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
    C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
    C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
    C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
    C:\windows\system32\mfevtps.exe
    C:\Program Files (x86)\Common Files\SHAPE Services\Mobiola Wave Service\MobiolaWaveService.exe
    C:\windows\system32\svchost.exe -k imgsvc
    C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
    C:\windows\System32\svchost.exe -k secsvcs
    C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
    C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
    C:\windows\system32\wbem\wmiprvse.exe
    C:\windows\system32\wbem\unsecapp.exe
    C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe
    C:\windows\system32\svchost.exe -k SDRSVC
    C:\windows\system32\SearchIndexer.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\windows\System32\alg.exe
    C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
    C:\Jogos\Glyph\GlyphClient.exe
    C:\Jogos\Glyph\glyphcrashhandler.exe
    C:\windows\system32\taskmgr.exe
    C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
    C:\Program Files (x86)\Mobiola Headset for iPhone\HeadsetForIPhone.exe
    C:\windows\system32\wuauclt.exe
    C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\windows\system32\taskhost.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://br.hao123.com/?tn=incore_pay_hp_01_hao123_br
    mStart Page = hxxp://br.hao123.com/?tn=incore_pay_hp_01_hao123_br
    BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
    BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20120829162749.dll
    BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Auxiliar de Conexão do Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
    BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
    mRun: [updatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
    mRun: [updateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
    mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOLREC~1.LNK - C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
    uPolicies-Explorer: NoDrives = dword:0
    mPolicies-Explorer: NoDrives = dword:0
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    mPolicies-System: PromptOnSecureDesktop = dword:0
    IE: &Enviar para o OneNote - C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
    IE: E&xportar para o Microsoft Excel - C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
    IE: Enviar imagem para Dispositivo &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Enviar página para Dispositivo &Bluetooth ... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
    IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
    TCP: NameServer = 8.8.8.8 8.8.4.4
    TCP: Interfaces\{C3E4B71E-BF23-462B-AA35-0827D7589B41} : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{C3E4B71E-BF23-462B-AA35-0827D7589B41} : DHCPNameServer = 192.168.1.1 0.0.0.0
    TCP: Interfaces\{DD1FAD8D-786D-4F0B-AB62-AE6C7440BF5E} : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{DD1FAD8D-786D-4F0B-AB62-AE6C7440BF5E} : DHCPNameServer = 8.8.8.8 8.8.4.4
    TCP: Interfaces\{DD1FAD8D-786D-4F0B-AB62-AE6C7440BF5E}\14C6369646563735164757 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{DD1FAD8D-786D-4F0B-AB62-AE6C7440BF5E}\B456C6C69702D2025467F6 : DHCPNameServer = 192.168.1.1 192.168.1.1
    TCP: Interfaces\{DD1FAD8D-786D-4F0B-AB62-AE6C7440BF5E}\B656C6C697 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{DD1FAD8D-786D-4F0B-AB62-AE6C7440BF5E}\F496F56556C6F687F575966496F503030313 : DHCPNameServer = 192.168.1.1 192.168.1.1
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    SSODL: WebCheck - <orphaned>
    SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    x64-mStart Page = hxxp://br.hao123.com/?tn=incore_pay_hp_01_hao123_br
    x64-BHO: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
    x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    x64-BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\SystemCore\ScriptSn.20120829162749.dll
    x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
    x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
    x64-Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe
    x64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
    x64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
    x64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
    x64-Run: [igfxTray] "C:\windows\System32\igfxtray.exe"
    x64-Run: [HotKeysCmds] "C:\windows\System32\hkcmd.exe"
    x64-Run: [Persistence] "C:\windows\System32\igfxpers.exe"
    x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
    x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
    x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-Notify: igfxcui - igfxdev.dll
    x64-SSODL: WebCheck - <orphaned>
    x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\0nd4i1ss.default\
    FF - prefs.js: browser.startup.homepage - hxxp://br.hao123.com/?tn=incore_pay_hp_01_hao123_br
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 aswRvrt;avast! Revert;C:\windows\System32\drivers\aswRvrt.sys [2013-3-13 65776]
    R0 aswVmm;avast! VM Monitor;C:\windows\System32\drivers\aswVmm.sys [2013-3-13 224896]
    R0 fbfmon;fbfmon;C:\windows\System32\drivers\fbfmon.sys [2012-8-29 57952]
    R0 LHDmgr;LHDmgr;C:\windows\System32\drivers\LhdX64.sys [2012-8-29 39008]
    R0 mfehidk;McAfee Inc. mfehidk;C:\windows\System32\drivers\mfehidk.sys [2011-3-13 771096]
    R0 mfewfpk;McAfee Inc. mfewfpk;C:\windows\System32\drivers\mfewfpk.sys [2011-3-13 339776]
    R1 aswSnx;aswSnx;C:\windows\System32\drivers\aswSnx.sys [2012-11-28 1041168]
    R1 aswSP;aswSP;C:\windows\System32\drivers\aswsp.sys [2012-11-28 427360]
    R1 Bfilter;Baidu Antivirus Minifilter Driver;C:\windows\System32\drivers\Bfilter.sys [2014-3-24 56640]
    R1 Bfmon;Baidu FS Monitor Driver;C:\windows\System32\drivers\Bfmon.sys [2014-3-24 37696]
    R1 Bnbase;Bnbase;C:\windows\System32\drivers\bnbasex64.sys [2014-4-17 91616]
    R1 Bndef;Baidu NetDefense;C:\windows\System32\drivers\bndef64.sys [2014-4-17 70912]
    R1 BPntDrv;BPntDrv;C:\windows\System32\drivers\BPntDrv.sys [2012-8-29 13408]
    R1 Bprotect;Baidu Protect;C:\windows\System32\drivers\Bprotect.sys [2014-3-24 144960]
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\windows\System32\drivers\dtsoftbus01.sys [2012-11-29 283200]
    R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
    R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672]
    R2 aswHwid;avast! HardwareID;C:\windows\System32\drivers\aswHwid.sys [2014-8-4 29208]
    R2 aswMonFlt;aswMonFlt;C:\windows\System32\drivers\aswMonFlt.sys [2012-11-28 79184]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-8-4 50344]
    R2 BAVSvc;Baidu Antivirus Service;C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe [2014-6-16 2038248]
    R2 BHipsSvc;Baidu Hips Service;C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe [2014-6-16 481432]
    R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-10-18 2529616]
    R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2013-8-1 9216]
    R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-8-29 13336]
    R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-10-18 417552]
    R2 McShield;McAfee McShield;C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe [2012-8-29 241016]
    R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2012-8-29 218320]
    R2 mfevtp;McAfee Validation Trust Protection Service;C:\windows\System32\mfevtps.exe [2012-8-29 177680]
    R2 Mobiola Wave Service;Mobiola Wave Service;C:\Program Files (x86)\Common Files\SHAPE Services\Mobiola Wave Service\MobiolaWaveService.exe [2014-8-14 125088]
    R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\drivers\AcpiVpc.sys [2010-10-25 29792]
    R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2011-1-28 31088]
    R3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;C:\windows\System32\drivers\InputFilter_FlexDef2b.sys [2010-6-19 17920]
    R3 IntcDAud;Áudio do vídeo Intel®;C:\windows\System32\drivers\IntcDAud.sys [2012-8-29 317440]
    R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2012-8-29 77424]
    R3 mfeavfk;McAfee Inc. mfeavfk;C:\windows\System32\drivers\mfeavfk.sys [2011-3-13 309400]
    R3 mfefirek;McAfee Inc. mfefirek;C:\windows\System32\drivers\mfefirek.sys [2011-3-13 515528]
    R3 MOBIOLA_Wave;Mobiola Wave Audio Device (WDM);C:\windows\System32\drivers\mobiolawave.sys [2014-8-14 29120]
    R3 SPUVCbv;SPUVCb Driver Service;C:\windows\System32\drivers\usbvideo.sys [2013-10-10 185344]
    R3 XSplit_Dummy;XSplit  Stream  Audio  Renderer;C:\windows\System32\drivers\xspltspk.sys [2014-7-2 26200]
    S2 aswStm;aswStm;C:\windows\System32\drivers\aswstm.sys [2014-1-5 92008]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
    S2 KMService;KMService;C:\windows\System32\srvany.exe --> C:\windows\System32\srvany.exe [?]
    S2 LiveUpdateSvc;LiveUpdate;C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-10-21 2283296]
    S3 BTWAMPFL;BTWAMPFL;C:\windows\System32\drivers\btwampfl.sys [2012-8-29 349224]
    S3 btwl2cap;Bluetooth L2CAP Service;C:\windows\System32\drivers\btwl2cap.sys [2012-8-29 39464]
    S3 cfwids;McAfee Inc. cfwids;C:\windows\System32\drivers\cfwids.sys [2011-3-13 69672]
    S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-4-9 289256]
    S3 mferkdet;McAfee Inc. mferkdet;C:\windows\System32\drivers\mferkdet.sys [2011-3-13 106112]
    S3 mobiolavs;Mobiola Web Camera Video Source;C:\windows\System32\drivers\mobiolavs.sys [2014-8-14 28304]
    S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2014-1-20 19456]
    S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2012-8-29 299520]
    S3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
    S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);C:\windows\System32\drivers\ss_bbus.sys [2009-9-19 127488]
    S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);C:\windows\System32\drivers\ss_bmdfl.sys [2009-9-19 18944]
    S3 ss_bmdm;SAMSUNG USB Mobile Modem;C:\windows\System32\drivers\ss_bmdm.sys [2009-9-19 161280]
    S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2014-1-20 57856]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2014-1-20 30208]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2014-7-28 54784]
    S3 wsvd;wsvd;C:\windows\System32\drivers\wsvd.sys [2009-7-21 121840]
    S4 PSafeLockBoxSvc;PSafeLockBoxSvc;C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe [2013-2-21 1212104]
    S4 PSafeSVC;PSafeSVC;C:\Program Files (x86)\PSafe\PSafesvc.exe [2012-12-22 1180872]
    S4 PSafeWD;PSafeWD;C:\Program Files (x86)\PSafe\PSafeWD.exe [2012-12-22 249032]
    .
    =============== Created Last 30 ================
    .
    2014-10-26 21:18:15 -------- d-----w- C:\Program Files (x86)\Overwolf
    2014-10-25 15:00:06 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AC2C07FE-4E4D-4E77-A802-2F13DA81332F}\offreg.dll
    2014-10-24 08:15:21 11627712 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AC2C07FE-4E4D-4E77-A802-2F13DA81332F}\mpengine.dll
    2014-10-21 19:59:34 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi
    2014-10-21 19:47:10 -------- d-----w- C:\Users\Lucas\AppData\Roaming\ProductData
    2014-10-21 19:47:03 -------- d-----w- C:\ProgramData\IObit
    2014-10-21 19:47:00 -------- d-----w- C:\ProgramData\ProductData
    2014-10-21 19:46:52 -------- d-----w- C:\Program Files (x86)\IObit
    2014-10-21 19:46:45 -------- d-----w- C:\Users\Lucas\AppData\Roaming\IObit
    2014-10-21 18:42:00 -------- d-sh--w- C:\$RECYCLE.BIN
    2014-10-21 18:23:53 98816 ----a-w- C:\windows\sed.exe
    2014-10-21 18:23:53 256000 ----a-w- C:\windows\PEV.exe
    2014-10-21 18:23:53 208896 ----a-w- C:\windows\MBR.exe
    2014-10-21 14:30:09 98216 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
    2014-10-15 19:14:55 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
    2014-10-15 19:14:55 -------- d-----w- C:\Program Files\iTunes
    2014-10-15 19:14:55 -------- d-----w- C:\Program Files\iPod
    2014-10-15 19:14:55 -------- d-----w- C:\Program Files (x86)\iTunes
    2014-10-15 10:21:30 3198976 ----a-w- C:\windows\System32\win32k.sys
    2014-10-15 10:21:27 1943696 ----a-w- C:\windows\System32\dfshim.dll
    2014-10-15 10:21:27 156824 ----a-w- C:\windows\SysWow64\mscorier.dll
    2014-10-15 10:21:27 156312 ----a-w- C:\windows\System32\mscorier.dll
    2014-10-15 10:21:27 1131664 ----a-w- C:\windows\SysWow64\dfshim.dll
    2014-10-15 10:21:26 81560 ----a-w- C:\windows\SysWow64\mscories.dll
    2014-10-15 10:21:26 73880 ----a-w- C:\windows\System32\mscories.dll
    2014-10-15 10:19:59 9728 ----a-w- C:\windows\System32\spwmp.dll
    2014-10-15 10:18:58 3241472 ----a-w- C:\windows\System32\msi.dll
    2014-10-15 10:17:59 455168 ----a-w- C:\windows\System32\winlogon.exe
    2014-10-15 10:17:58 86528 ----a-w- C:\windows\System32\TSpkg.dll
    2014-10-15 10:17:57 65536 ----a-w- C:\windows\SysWow64\TSpkg.dll
    2014-10-15 10:17:55 22016 ----a-w- C:\windows\System32\credssp.dll
    2014-10-15 10:17:55 17408 ----a-w- C:\windows\SysWow64\credssp.dll
    2014-10-15 10:17:53 39936 ----a-w- C:\windows\System32\drivers\tssecsrv.sys
    2014-10-15 10:16:30 77312 ----a-w- C:\windows\System32\packager.dll
    2014-10-15 10:16:29 67072 ----a-w- C:\windows\SysWow64\packager.dll
    2014-10-03 17:09:30 -------- d-----w- C:\Users\Lucas\AppData\Local\{1C2AC833-6644-4DCC-984E-B63E27A87057}
    2014-10-03 16:18:47 -------- d-----w- C:\tmp
    2014-10-01 12:26:13 371712 ----a-w- C:\windows\System32\qdvd.dll
    2014-10-01 12:26:12 519680 ----a-w- C:\windows\SysWow64\qdvd.dll
    2014-09-30 04:05:22 -------- d-----w- C:\Users\Lucas\AppData\Roaming\AutoKeyboard
    .
    ==================== Find3M  ====================
    .
    2014-10-10 02:05:59 276480 ----a-w- C:\windows\System32\generaltel.dll
    2014-10-10 02:05:42 507392 ----a-w- C:\windows\System32\aepdu.dll
    2014-10-10 02:00:38 424448 ----a-w- C:\windows\System32\aeinv.dll
    2014-10-02 17:53:02 278152 ------w- C:\windows\System32\MpSigStub.exe
    2014-09-18 01:32:52 2363904 ----a-w- C:\windows\SysWow64\msi.dll
    2014-09-09 22:11:04 2048 ----a-w- C:\windows\System32\tzres.dll
    2014-09-09 21:47:10 2048 ----a-w- C:\windows\SysWow64\tzres.dll
    2014-09-04 05:23:20 424448 ----a-w- C:\windows\System32\rastls.dll
    2014-09-04 05:04:15 372736 ----a-w- C:\windows\SysWow64\rastls.dll
    2014-08-29 02:07:13 44032 ----a-w- C:\windows\System32\tsgqec.dll
    2014-08-29 02:07:13 3179520 ----a-w- C:\windows\System32\rdpcorets.dll
    2014-08-29 02:07:12 5780480 ----a-w- C:\windows\System32\mstscax.dll
    2014-08-29 02:07:10 322560 ----a-w- C:\windows\System32\aaclient.dll
    2014-08-29 02:06:47 1125888 ----a-w- C:\windows\System32\mstsc.exe
    2014-08-29 01:44:52 37376 ----a-w- C:\windows\SysWow64\tsgqec.dll
    2014-08-29 01:44:51 4922368 ----a-w- C:\windows\SysWow64\mstscax.dll
    2014-08-29 01:44:49 269312 ----a-w- C:\windows\SysWow64\aaclient.dll
    2014-08-29 01:44:19 1050112 ----a-w- C:\windows\SysWow64\mstsc.exe
    2014-08-23 02:07:00 404480 ----a-w- C:\windows\System32\gdi32.dll
    2014-08-23 01:45:55 311808 ----a-w- C:\windows\SysWow64\gdi32.dll
    2014-08-19 03:11:28 693176 ----a-w- C:\windows\System32\winload.efi
    2014-08-19 03:10:10 616352 ----a-w- C:\windows\System32\winresume.efi
    2014-08-19 03:08:04 503808 ----a-w- C:\windows\System32\srcore.dll
    2014-08-19 03:08:04 50176 ----a-w- C:\windows\System32\srclient.dll
    2014-08-19 03:08:03 63488 ----a-w- C:\windows\System32\setbcdlocale.dll
    2014-08-19 03:07:51 58880 ----a-w- C:\windows\System32\appidapi.dll
    2014-08-19 03:07:51 32256 ----a-w- C:\windows\System32\appidsvc.dll
    2014-08-19 03:07:33 296960 ----a-w- C:\windows\System32\rstrui.exe
    2014-08-19 03:07:11 17920 ----a-w- C:\windows\System32\appidcertstorecheck.exe
    2014-08-19 03:07:11 146944 ----a-w- C:\windows\System32\appidpolicyconverter.exe
    2014-08-19 02:41:39 43008 ----a-w- C:\windows\SysWow64\srclient.dll
    2014-08-19 02:41:22 50688 ----a-w- C:\windows\SysWow64\appidapi.dll
    2014-08-19 02:06:56 61440 ----a-w- C:\windows\System32\drivers\appid.sys
    2014-08-04 23:15:19 92008 ----a-w- C:\windows\System32\drivers\aswstm.sys
    2014-08-04 23:15:19 79184 ----a-w- C:\windows\System32\drivers\aswMonFlt.sys
    2014-08-04 23:15:19 65776 ----a-w- C:\windows\System32\drivers\aswRvrt.sys
    2014-08-04 23:15:19 29208 ----a-w- C:\windows\System32\drivers\aswHwid.sys
    2014-08-04 23:15:19 224896 ----a-w- C:\windows\System32\drivers\aswVmm.sys
    2014-08-04 23:15:19 1041168 ----a-w- C:\windows\System32\drivers\aswSnx.sys
    2014-08-04 23:15:18 93568 ----a-w- C:\windows\System32\drivers\aswRdr2.sys
    2014-08-04 23:15:18 43152 ----a-w- C:\windows\avastSS.scr
    2014-08-01 11:53:22 1031168 ----a-w- C:\windows\System32\TSWorkspace.dll
    2014-08-01 11:35:06 793600 ----a-w- C:\windows\SysWow64\TSWorkspace.dll
    .
    ============= FINISH:  0:55:45,25 ===============

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows 7 Home Basic 
    Boot Device: \Device\HarddiskVolume1
    Install Date: 28/11/2012 18:29:35
    System Uptime: 25/10/2014 03:20:38 (45 hours ago)
    .
    Motherboard: LENOVO |  | Base Board Product Name
    Processor: Intel® Core i5-2520M CPU @ 2.50GHz | CPU1 | 2475/1333mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 655 GiB total, 423,264 GiB free.
    D: is FIXED (NTFS) - 29 GiB total, 26,475 GiB free.
    F: is CDROM ()
    G: is CDROM (CDFS)
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
    Description: BlueStacks Hypervisor
    Device ID: ROOT\LEGACY_BSTHDDRV\0000
    Manufacturer: 
    Name: BlueStacks Hypervisor
    PNP Device ID: ROOT\LEGACY_BSTHDDRV\0000
    Service: BstHdDrv
    .
    Class GUID: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
    Description: Broadcom Bluetooth 2.1 USB
    Device ID: USB\VID_0489&PID_E00D\7CE9D3CA914B
    Manufacturer: Broadcom
    Name: Broadcom Bluetooth 2.1 USB
    PNP Device ID: USB\VID_0489&PID_E00D\7CE9D3CA914B
    Service: BTHUSB
    .
    ==== System Restore Points ===================
    .
    RP593: 16/10/2014 10:52:36 - Windows Update
    RP595: 17/10/2014 12:09:24 - Instalador de Módulos do Windows
    RP596: 18/10/2014 03:00:39 - Windows Update
    RP597: 19/10/2014 10:19:27 - Windows Update
    RP598: 19/10/2014 21:10:42 - Backup do Windows
    RP599: 20/10/2014 03:00:38 - Windows Update
    RP600: 21/10/2014 12:18:34 - Windows Update
    RP601: 21/10/2014 12:28:25 - Installed Java 7 Update 71
    RP602: 22/10/2014 03:00:39 - Windows Update
    RP603: 23/10/2014 03:00:39 - Windows Update
    RP604: 24/10/2014 06:06:04 - Windows Update
    RP605: 25/10/2014 03:00:26 - Windows Update
    RP607: 26/10/2014 11:43:02 - Instalador de Módulos do Windows
    RP609: 26/10/2014 19:09:05 - Backup do Windows
    .
    ==== Installed Programs ======================
    .
    ¿ìÓÃÆ»¹ûÖúÊÖ 2.1.0.7
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 13 Plugin
    Apple Mobile Device Support
    Apple Software Update
    Archeage
    Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
    µTorrent
    aTube Catcher
    Auto Keyboard version 10.0
    avast! Free Antivirus
    Baidu Antivirus
    BattleBlock Theatre
    Battlelog Web Plugins
    Blender
    Bonjour
    Borland Delphi 7
    Camtasia Studio 7
    CCleaner
    Conexant HD Audio
    Controle ActiveX do Windows Live Mesh para Conexões Remotas
    Curse
    D3DX10
    DAEMON Tools Lite
    Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
    Energy Management
    Facebook Video Calling 3.1.0.521
    Foxit Reader
    Glyph
    Google Chrome
    Google Update Helper
    Guia de Usuário
    Hi-Rez Studios Authenticate and Update Service
    Hitman Absolution
    Intel® Control Center
    Intel® Management Engine Components
    Intel® Processor Graphics
    Intel® Rapid Storage Technology
    IObit Uninstaller
    iTunes
    Java 7 Update 71
    Java Auto Updater
    Junk Mail filter update
    K-Lite Codec Pack 10.2.6 Basic
    Lenovo Bluetooth with Enhanced Data Rate Software
    Lenovo EasyCamera
    Lenovo EE Boot Optimizer
    Lenovo OneKey Recovery
    Lenovo PowerDVD 10
    Lenovo YouCam
    LogMeIn Hamachi
    LOLReplay
    McAfee Security Scan Plus
    Mesh Runtime
    Microsoft .NET Framework 4.5.1
    Microsoft .NET Framework 4.5.1 (Português do Brasil)
    Microsoft .NET Framework 4.5.1 (PTB)
    Microsoft Application Error Reporting
    Microsoft Office 2010
    Microsoft Office Access MUI (Portuguese (Brazil)) 2010
    Microsoft Office Excel MUI (Portuguese (Brazil)) 2010
    Microsoft Office Groove MUI (Portuguese (Brazil)) 2010
    Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010
    Microsoft Office Office 32-bit Components 2010
    Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010
    Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010
    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010
    Microsoft Office Professional Plus 2010
    Microsoft Office Proof (English) 2010
    Microsoft Office Proof (Portuguese (Brazil)) 2010
    Microsoft Office Proof (Spanish) 2010
    Microsoft Office Proofing (Portuguese (Brazil)) 2010
    Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010
    Microsoft Office Shared 32-bit MUI (Portuguese (Brazil)) 2010
    Microsoft Office Shared MUI (Portuguese (Brazil)) 2010
    Microsoft Office Word MUI (Portuguese (Brazil)) 2010
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
    Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
    Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
    Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
    Minecraft1.7.8
    Minecraft1.7.9
    Mobiola Headset for iPhone 1.1.11
    Mozilla Firefox 20.0.1 (x86 en-US)
    Mozilla Maintenance Service
    MSVCRT
    MSVCRT_amd64
    NirSoft BlueScreenView
    NVIDIA PhysX
    Origin
    osu!
    Overwolf
    Pacote de Driver do Windows - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1)
    Portal 2
    Power2Go
    RaidCall
    Realtek USB 2.0 Reader Driver
    Revo Uninstaller 1.95
    Rockstar Games Social Club
    Rome - Total War
    Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
    Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
    Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2760781) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition
    Security Update for Microsoft Word 2010 (KB2883013) 64-Bit Edition
    Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
    Shared C Run-time for x64
    Skype™ 6.20
    Smite
    SUPERAntiSpyware
    Suporte para Aplicativos Apple
    Synaptics Pointing Device Driver
    System Requirements Lab CYRI
    TeamSpeak 3 Client
    Tomb Raider version 5.1
    Unity Web Player
    Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
    Update for Microsoft Excel 2010 (KB2889836) 64-Bit Edition
    Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition
    Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition
    Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2687502) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition
    Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition
    Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition
    Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition
    Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition
    Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition
    Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition
    Uplay
    UserGuide
    VeriFace
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Galeria de Fotos
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Language Selector
    Windows Live Mail
    Windows Live Mesh
    Windows Live Messenger
    Windows Live MIME IFilter
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live Remote Client
    Windows Live Remote Client Resources
    Windows Live Remote Service
    Windows Live Remote Service Resources
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    Windows Mobile Device Updater Component
    WinRAR 4.20 (64-bit)
    XSplit Gamecaster
    Zune
    Zune Language Pack (CHS)
    Zune Language Pack (CHT)
    Zune Language Pack (CSY)
    Zune Language Pack (DAN)
    Zune Language Pack (DEU)
    Zune Language Pack (ELL)
    Zune Language Pack (ESP)
    Zune Language Pack (FIN)
    Zune Language Pack (FRA)
    Zune Language Pack (HUN)
    Zune Language Pack (IND)
    Zune Language Pack (ITA)
    Zune Language Pack (JPN)
    Zune Language Pack (KOR)
    Zune Language Pack (MSL)
    Zune Language Pack (NLD)
    Zune Language Pack (NOR)
    Zune Language Pack (PLK)
    Zune Language Pack (PTB)
    Zune Language Pack (PTG)
    Zune Language Pack (RUS)
    Zune Language Pack (SVE)
    .
    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Caro Casprov

     

    Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.

     

    Por favor, atente para o seguinte:
    • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);

    O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;

    Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;

    Sempre coloque suas respostas neste tópico... Não abra outro!

    Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.

    Respeite a ordem das instruções passadas.

    Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

    # Etapa nº 1 #


     

    O Baidu está mais para malware do que antivírus, portanto desinstale-o mesmo, e instale um novo antivírus de sua preferência.

     

    Depois disso, me informe qual antivírus instalou.

     

    Note: caso o Baidu não desinstale, apenas instale o antivírus e me avise. ;)

     

    Abraços :D

    • Curtir 1

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Tópico Arquivado

    Como o autor não respondeu ao tópico por mais de 10 dias, o mesmo foi arquivado.

    Caso você seja o autor do tópico e quer que o mesmo seja reaberto, entre em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Tópico reaberto conforme o pedido do autor.

    Caso o autor necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • ~Desinstalei o Baidu. Eu uso o Avast, devo ter instalado o baidu sem prestar atençao na instalação de alguns programas.

    • Curtir 1

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro Casprov

     

    Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.
     
    Por favor, atente para o seguinte:
    • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
    O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
    Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
    Sempre coloque suas respostas neste tópico... Não abra outro!
    Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
    Respeite a ordem das instruções passadas.
    Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

    # Etapa nº 1 #

     
    Faça o download Junkware Removal Tool e salve em seu Desktop.
    • Desative seus programas de proteção (antivírus etc) para evitar qualquer conflito.
    • Clique duas vezes JRT.exe
      • Se seu sistema for Windows Vista ou Windows 7 ou Windows 8, clique com o botão direito do mouse e peça para Executar como Administrador.

      [*]Seja paciente e aguarde o scan terminar.[*]Abra o log JRT.txt que está em seu Desktop.[*]Copie todo conteúdo e cole em sua próximo mensagem.

     
    # Etapa nº 2 #
     

    • Clique duas vezes no adwcleaner.exe
    • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png

    • Clique em Pesquisar
    No final do scan será aberto um log com o resultado.
    Caso algo seja detectado, clique então no botão Remover.
    Novamente, no final do scan será aberto um log com o resultado.
    Copie todo seu conteúdo e cole em sua próxima resposta.

     
    # Etapa nº 3 #
     
    Faça o download do Zoek e salve em seu Desktop
    • Abra o seu Bloco de Notas e copie (control + c), cole (control + v) todo o texto abaixo:
    standardsearch;torpigcheck;silentrunners;installedprogs;msconfigcheck;shortcutfix;emptyfolderscheck;delete;srinfo;emptyalltemp;
    • Salve este arquivo como: zoekscript.txt e feche-o.
    Desative TODOS os programas de prevenção (antivírus, antispyware).
    Tal com exemplificado na animação abaixo, arraste o arquivo zoekscript.txt para dentro do Zoek.exe.
    51dd31d8563a6-output_TD9fmK.gif
    Na janela que aparecer clique em Sim.
    Quando o scan terminar irá gerar um log.
    Poste todo o conteúdo desse log.
    Caso o log fique muito grande coloque no anexo.

     

    Observação:
    Aprove qualquer alerta do
    Controle da Conta de Usuário (UAC)
    para permitir a execução desta ferramenta.

     
    Abraços :D
    • Curtir 1

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 6.4.0 (11.29.2014:1)
    OS: Windows 7 Home Basic x64
    Ran by Lucas on 04/12/2014 at  0:00:50,75
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
     
     
     
    ~~~ Services
     
     
     
    ~~~ Registry Values
     
    Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2117177290-1286805651-1572350529-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs
     
     
     
    ~~~ Registry Keys
     
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\APN_ATU3__RASAPI32
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\APN_ATU3__RASMANCS
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricemeter_RASAPI32
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricemeter_RASMANCS
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASAPI32
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASMANCS
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\pricemeter_RASAPI32
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\pricemeter_RASMANCS
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4B0C9E3A-1129-48D0-963D-B609947A44D2}
     
     
     
    ~~~ Files
     
    Successfully deleted: [File] C:\windows\prefetch\DRIVEROPT_X64.EXE-EE4C3D97.pf
     
     
     
    ~~~ Folders
     
    Successfully deleted: [Folder] "C:\ProgramData\baidu"
    Successfully deleted: [Folder] "C:\ProgramData\baidu security"
    Successfully deleted: [Folder] "C:\Users\Lucas\AppData\Roaming\baidu"
    Successfully deleted: [Folder] "C:\Program Files (x86)\baidu security"
    Successfully deleted: [Folder] "C:\windows\syswow64\ai_recyclebin"
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{019EAA1F-184B-4AF6-8856-BE4A80AC6F30}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{031F2ACF-363F-47BF-9D83-98CCFB6CB1D1}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{0389C36E-DD34-427D-A5A6-C40569C89C42}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{03AEF063-9C7C-443E-A9E8-187856A04FDA}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{06A9172A-ECEA-4FFD-BC52-B9F72D09BB69}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{0EB7853F-D1F3-4F22-A76D-8080BFDCE2E3}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{15738534-8216-4C39-AC2F-62DAFF11A27E}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{1C2AC833-6644-4DCC-984E-B63E27A87057}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{246E31F1-4037-4281-A0C7-09B34784E46B}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{2B912918-2EF1-4DB7-BE46-3616AFA1A762}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{394CA643-797C-4C98-84BE-FC98DFAFD3CC}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{3FD4CF15-11C7-4330-B96B-53E3B2970B6F}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{42C236A3-3D49-4EC9-AFF5-F6027ACC27BF}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{4303ECDD-352C-4A4E-965E-11E0C5C5E7FB}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{45CA01A2-7116-4638-9088-A092772C3CAB}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{460F04DA-5124-4848-8A78-DA058CBBDAB8}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{48FF67ED-5C35-40CD-AB39-9B4A9D7ACD5D}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{4C743878-3D88-400E-9299-92F017F23B25}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{4EF6E00E-7618-4DAA-A322-8FFBD976BA5C}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{5D1B22A7-FC78-40CA-A857-7C7F9210FEA1}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{5DEF5578-8D48-42A8-AD04-EF92D7336C08}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{655A6AEF-7BE7-44DF-96E8-2CE803BFF1D6}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{66B69777-22E3-46CE-AE9B-828644C02B92}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{76016E04-9BAE-4BE7-9508-801CB857B55F}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{7E18CDDF-BEFC-4057-A003-AE84903B3D0C}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{8773E43B-E2DA-4AB1-8284-6B3340D5ED12}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{88A43542-F680-44EB-99E8-059416DDCF12}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{8A46EEE9-4A07-4558-999E-8885EA219197}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{985D0075-5278-4343-979A-74EADBA462EB}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{A154C224-6FC2-424E-B1F5-A4C25A9F0AC2}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{A6861FEA-73CD-44D7-A35F-C3F1E63B255C}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{B44FC3A4-89EA-4117-B830-9283D8CB3795}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{B61B8852-7E96-4D06-9E0F-32B8E252FDE0}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{BA629311-AA61-417D-A5DF-63D7CC17C6A1}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{BC911B4A-2AF5-4E00-A06B-05834F624D97}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{C143F225-0ABC-4EDD-900D-2E9DC5304CA9}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{C8702D16-E747-413A-B423-FA829B286817}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{E45ACB2C-FFD0-4691-BA44-F4B3B0254EFB}
    Successfully deleted: [Empty Folder] C:\Users\Lucas\appdata\local\{F10D7A33-347F-4DF1-8154-F95E941E1CC8}
     
     
     
    ~~~ FireFox
     
    Successfully deleted: [Folder] "C:\Program Files (x86)\Mozilla Firefox\extensions\quiknowledge@quiknowledge.com"
    Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\quiknowledge@quiknowledge.com
    Successfully deleted the following from C:\Users\Lucas\AppData\Roaming\mozilla\firefox\profiles\0nd4i1ss.default\prefs.js
     
    user_pref("browser.startup.homepage", "hxxp://br.hao123.com/?tn=incore_pay_hp_01_hao123_br");
     
     
     
    ~~~ Event Viewer Logs were cleared
     
     
     
     
     
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 04/12/2014 at  0:10:53,42
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    # AdwCleaner v4.103 - Relatório criado 04/12/2014 às 00:15:34
    # Atualizado 01/12/2014 por Xplode
    # Database : 2014-12-03.1 [Live]
    # Sistema Operacional : Windows 7 Home Basic Service Pack 1 (64 bits)
    # Usuário : Lucas - LUCAS-PC
    # Executando de : C:\Users\Lucas\Desktop\adwcleaner_4.103.exe
    # Opção : Limpar
     
    ***** [ Serviços ] *****
     
     
    ***** [ Arquivos / Pastas ] *****
     
    [x] Não Deletada : C:\Program Files (x86)\kuaiyong
    [x] Não Deletada : C:\Users\Lucas\AppData\Roaming\kuaiyong
    Pasta Deletada : C:\Users\Public\Documents\baidu
    Arquivo Deletada : C:\Users\Lucas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Hao123.lnk
     
    ***** [ Tarefas ] *****
     
    Tarefa Deletedo : pricemeterdownloader
    Tarefa Deletedo : PriceMeterLiveUpdateUpdateTaskMachineCore
    Tarefa Deletedo : PriceMeterLiveUpdateUpdateTaskMachineUA
    Tarefa Deletedo : pricemetertask
    Tarefa Deletedo : PriceMeterUpdater
    Tarefa Deletedo : pricemeterwatcher
     
    ***** [ Atalhos ] *****
     
     
    ***** [ Registro ] *****
     
    Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\PriceMeterLiveUpdate.exe
    Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{126C78A0-36E7-4697-A3AB-32706144398B}
    Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{8D73A258-9787-4AE7-9232-41036673FD0E}
    Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{00A154AE-6C33-4F1E-9057-242350540936}
    Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{126C78A0-36E7-4697-A3AB-32706144398B}
    Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{45F8961E-1314-421E-9F00-BDDE18CF8EA0}
    Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{5B60D1C0-453A-485D-AE91-61FAC9203719}
    Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{8D73A258-9787-4AE7-9232-41036673FD0E}
    Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89449F37-4AB2-46ED-A566-BB3A7797701B}
    Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F509ADC2-B40E-470F-A7B7-45191486B5CB}
    Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{30D1E30D-B7F5-4C7A-8EDA-9F02966538A8}
    Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89449F37-4AB2-46ED-A566-BB3A7797701B}
    Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F509ADC2-B40E-470F-A7B7-45191486B5CB}
    Chave Deletedo : HKCU\Software\PriceMeter
    Chave Deletedo : HKCU\Software\PriceMeterLiveUpdate
    Chave Deletedo : HKCU\Software\PriceMeterUpdater
    Chave Deletedo : HKLM\SOFTWARE\PriceMeterLiveUpdate
     
    ***** [ Navegadores ] *****
     
    -\\ Internet Explorer v0.0.0.0
     
    Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page]
     
    -\\ Mozilla Firefox v20.0.1 (en-US)
     
     
    -\\ Google Chrome v39.0.2171.71
     
     
    -\\ Chromium v
     
     
    *************************
     
    AdwCleaner[R0].txt - [9157 octets] - [09/06/2014 22:25:12]
    AdwCleaner[R1].txt - [3314 octets] - [04/12/2014 00:11:58]
    AdwCleaner[s0].txt - [9028 octets] - [09/06/2014 22:29:10]
    AdwCleaner[s1].txt - [2955 octets] - [04/12/2014 00:15:34]
     
    ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [3015 octets] ##########

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro Casprov

     

    # Etapa nº 1 #

     

    Desinstale: McAfee Security Scan Plus

     

    # Etapa nº 2 #

     

    Conhece?

     

    C:\Program Files (x86)\kuaiyong

     

    # Etapa nº 3 #

     

    Novamente com o Zoek
    • Abra o seu Bloco de Notas e copie (control + c), cole (control + v) todo o texto abaixo:
    C:\Program Files\McAfee Security Scan;fC:\Program Files\Common Files\McAfee;fC:\windows\system32\mfevtps.exe;f fpknlgclcjbgepbagcobhdainldkgggl;chr {7DB2D5A0-7241-4E79-B68D-6309F01C5231};c McComponentHostService;sMcShield;smfefire;smfevtp;s services-list;createsrpoint;
    • Salve este arquivo como: zoekscript.txt e feche-o.
    Desative TODOS os programas de prevenção (antivírus, antispyware).
    Tal com exemplificado na animação abaixo, arraste o arquivo zoekscript.txt para dentro do Zoek.exe.
    51dd31d8563a6-output_TD9fmK.gif
    Na janela que aparecer clique em Yes.
    Quando o scan terminar irá gerar um log.
    Poste todo o conteúdo desse log.
    Caso o log fique muito grande coloque no anexo.

     

    Observação:
    Aprove qualquer alerta do
    Controle da Conta de Usuário (UAC)
    para permitir a execução desta ferramenta.

     
    Abraços :D
    • Curtir 1

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • 1 - Desinstalado.

    2 - Conheço.

    3 - Próximo post.


     
    Zoek.exe v5.0.0.0 Updated 06-December-2014
    Tool run by Lucas on 07/12/2014 at 23:05:35,73.
    Microsoft Windows 7 Home Basic  6.1.7601 Service Pack 1 x64
    Running in: Normal Mode Internet Access Detected
    Launched: C:\Users\Lucas\Desktop\zoek.exe
    Script used: C:\Users\Lucas\Desktop\ZOEKSCRIPT.txt
     
    ==== Older Logs ======================
     
    C:\zoek-results2014-12-04-134938.log 57220 bytes
     
    ==== System Restore Info ======================
     
    07/12/2014 23:08:01 Zoek.exe System Restore Point Created Succesfully.
     
    ==== Deleting CLSID Registry Keys ======================
     
    HKEY_USERS\S-1-5-21-2117177290-1286805651-1572350529-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} deleted successfully
    HKEY_USERS\S-1-5-21-2117177290-1286805651-1572350529-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} deleted successfully
    HKEY_CLASSES_ROOT\CLSID\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} deleted successfully
    HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} deleted successfully
    HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} deleted successfully
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} deleted successfully
     
    ==== Deleting CLSID Registry Values ======================
     
     
    ==== Services(whitelist) ======================
    Powered by E Dev
     
    R2 - [!SASCORE] - SAS Core Service - c:\program files\superantispyware\sascore64.exe
    R2 - [Apple Mobile Device] - Apple Mobile Device - c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
    R2 - [bonjour Service] - Serviço do Bonjour - c:\program files\bonjour\mdnsresponder.exe
    R2 - [btwdins] - Bluetooth Service - c:\program files\lenovo\bluetooth software\btwdins.exe
    R2 - [HiPatchService] - Hi-Rez Studios Authenticate and Update Service - c:\program files (x86)\hi-rez studios\hipatchservice.exe
    R2 - [iAStorDataMgrSvc] - Intel® Rapid Storage Technology - c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe
    R2 - [KYDeviceServer] - ¿ìÓÃÉ豸·þÎñ - c:\program files (x86)\kuaiyong\drm\kydeviceserver.exe
    R2 - [LMIGuardianSvc] - LMIGuardianSvc - c:\program files (x86)\logmein hamachi\lmiguardiansvc.exe
    R2 - [LMS] - Intel® Management and Security Application Local Management Service - c:\program files (x86)\intel\intel® management engine components\lms\lms.exe
    R2 - [McShield] - McAfee McShield - c:\program files\common files\mcafee\systemcore\\mcshield.exe
    R2 - [mfefire] - McAfee Firewall Core Service - c:\program files\common files\mcafee\systemcore\\mfefire.exe
    R2 - [mfevtp] - McAfee Validation Trust Protection Service - c:\windows\system32\mfevtps.exe
    R2 - [Mobiola Wave Service] - Mobiola Wave Service - c:\program files (x86)\common files\shape services\mobiola wave service\mobiolawaveservice.exe
    R2 - [uNS] - Intel® Management and Security Application User Notification Service - c:\program files (x86)\intel\intel® management engine components\uns\uns.exe
    R2 - [wlidsvc] - Windows Live ID Sign-in Assistant - c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
    R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
    R3 - [ALG] - Serviço Gateway de Camada de Aplicativo - c:\windows\system32\alg.exe
    R3 - [iPod Service] - iPod Service - c:\program files\ipod\bin\ipodservice.exe
    R3 - [TrustedInstaller] - Instalador de Módulos do Windows - c:\windows\servicing\trustedinstaller.exe
    R3 - [VSS] - Cópia de Sombra de Volume - c:\windows\system32\vssvc.exe
    R3 - [WMPNetworkSvc] - Serviço de Compartilhamento de Rede do Windows Media Player - c:\program files\windows media player\wmpnetwk.exe
    S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
    S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe
    S2 - [gupdate] - Serviço do Google Update (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
    S2 - [KMService] - KMService - c:\windows\system32\srvany.exe [x]
    S2 - [LiveUpdateSvc] - LiveUpdate - c:\program files (x86)\iobit\liveupdate\liveupdate.exe
    S2 - [sppsvc] - Proteção de Software - c:\windows\system32\sppsvc.exe
    S3 - [aspnet_state] - Serviço de estado do ASP.NET - c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe
    S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
    S3 - [cphs] - Intel® Content Protection HECI Service - c:\windows\syswow64\intelcphecisvc.exe
    S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe
    S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
    S3 - [gupdatem] - Serviço do Google Update (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
    S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - c:\program files\microsoft office\office14\groove.exe
    S3 - [MozillaMaintenance] - Mozilla Maintenance Service - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
    S3 - [MSDTC] - Coordenador de transações distribuídas - c:\windows\system32\msdtc.exe
    S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
    S3 - [ose64] - Office 64 Source Engine - c:\program files\common files\microsoft shared\source engine\ose.exe
    S3 - [osppsvc] - Office Software Protection Platform - c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe
    S3 - [OverwolfUpdater] - Overwolf Updater Windows SCM - c:\program files (x86)\overwolf\overwolfupdater.exe
    S3 - [PerfHost] - Host de DLL de Contador de Desempenho - c:\windows\syswow64\perfhost.exe
    S3 - [RpcLocator] - Alocador Remote Procedure Call (RPC) - c:\windows\system32\locator.exe
    S3 - [sNMPTRAP] - Interceptação SNMP - c:\windows\system32\snmptrap.exe
    S3 - [steam Client Service] - Steam Client Service - c:\program files (x86)\common files\steam\steamservice.exe
    S3 - [vds] - Disco Virtual - c:\windows\system32\vds.exe
    S3 - [wbengine] - Serviço de Mecanismo de Backup em Nível de Bloco - c:\windows\system32\wbengine.exe
    S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe
    S3 - [WMZuneComm] - Zune Windows Mobile Connectivity Service - c:\program files\zune\wmzunecomm.exe
    S3 - [ZuneNetworkSvc] - Zune Network Sharing Service - c:\program files\zune\zunenss.exe
    S3 - [ZuneWlanCfgSvc] - Zune Wireless Configuration Service - c:\program files\zune\zunewlancfgsvc.exe
    S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe
    S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - c:\windows\microsoft.net\framework64\v2.0.50727\mscorsvw.exe
    S4 - [PSafeLockBoxSvc] - PSafeLockBoxSvc - c:\program files (x86)\psafe\psafecategoryfinder.exe
    S4 - [PSafeSVC] - PSafeSVC - c:\program files (x86)\psafe\psafesvc.exe
    S4 - [PSafeWD] - PSafeWD - c:\program files (x86)\psafe\psafewd.exe
    S4 - [wlcrasvc] - Windows Live Mesh remote connections service - c:\program files\windows live\mesh\wlcrasvc.exe
     
    ==== Deleting Services ======================
     
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\McComponentHostService deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\SafeBoot\Network\mfefire deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\SafeBoot\Network\mfevtp deleted successfully
     
    ==== Deleting Files \ Folders ======================
     
    "C:\Program Files\McAfee Security Scan" not found
    "C:\windows\SysNative\mfevtps.exe" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\ftl.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\fwinfo.exe" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\lockdown.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mcshield.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfeapfa.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfeavfa.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfeelama.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfefwctl.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfehidin.exe" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfehidk_messages.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mferkda.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfevtpa.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mytilus3.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mytilus3_server.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mytilus3_worker.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\naevent.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\naievent.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\rkscan.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20120829162749.dll" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\vscan.bof" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\vtp_catcache" not deleted
    "C:\Program Files\Common Files\mcafee" not deleted
    "C:\Program Files\Common Files\mcafee\systemcore" not deleted
     
    ==== Chromium Look ======================
     
    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
    fpknlgclcjbgepbagcobhdainldkgggl - C:\Program Files (x86)\PSafe\ClikSeguro\chext\clikseguro.crx[]
    gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[04/08/2014 21:15]
     
    AdBlock - Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
    Avast Online Security - Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
    Google Wallet - Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
     
    ==== Deleting CLSID Registry Keys ======================
     
     
    ==== Deleting CLSID Registry Values ======================
     
    HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\clikseguro@psafe.com deleted successfully
     
    ==== Deleting Registry Keys ======================
     
    HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fpknlgclcjbgepbagcobhdainldkgggl deleted successfully
     
    ==== C:\zoek_backup content ======================
     
    C:\zoek_backup (files=26 folders=2 3802127 bytes)
     
    ==== After Reboot ======================
     
    ==== Deleting Files / Folders ======================
     
    "C:\windows\SysNative\mfevtps.exe"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\ftl.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\fwinfo.exe"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\lockdown.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mcshield.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfeapfa.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfeavfa.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfeelama.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfefwctl.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfehidin.exe"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfehidk_messages.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mferkda.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mfevtpa.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mytilus3.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mytilus3_server.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\mytilus3_worker.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\naevent.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\naievent.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\rkscan.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20120829162749.dll"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\vscan.bof"  not deleted
    "C:\Program Files\Common Files\mcafee\systemcore\vtp_catcache"  not deleted
    "C:\Program Files\Common Files\mcafee"  not deleted
     
    ==== EOF on 07/12/2014 at 23:21:20,92 ======================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro Casprov

     

    Novamente com o Zoek
    • Abra o seu Bloco de Notas e copie (control + c), cole (control + v) todo o texto abaixo:
    c:\program files\common files\mcafee;fc:\windows\system32\mfevtps.exe;fc:\program files (x86)\psafe;f McShield;smfefire;smfevtp;sPSafeLockBoxSvc;sPSafeSVC;sPSafeWD;s services-list;createsrpoint;emptyalltemp;
    • Salve este arquivo como: zoekscript.txt e feche-o.
    Desative TODOS os programas de prevenção (antivírus, antispyware).
    Tal com exemplificado na animação abaixo, arraste o arquivo zoekscript.txt para dentro do Zoek.exe.
    51dd31d8563a6-output_TD9fmK.gif
    Na janela que aparecer clique em Yes.
    Quando o scan terminar irá gerar um log.
    Poste todo o conteúdo desse log.
    Caso o log fique muito grande coloque no anexo.

     

    Observação:
    Aprove qualquer alerta do
    Controle da Conta de Usuário (UAC)
    para permitir a execução desta ferramenta.

     
    Abraços :D
    • Curtir 1

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro Casprov

     

    Faça o download do Malwarebytes Anti-Malware:

    • Link1
    • Link alternativo
      • Clique duas vezes em mbam-setup.exe, escolha a linguagem e siga as instruções para o software ser instalado.
      • Certifique-se que esteja marcada a caixa Atualizar Malwarebytes Anti-Malware e Executar Malwarebytes Anti-Malware, e clique em concluir.
      • Se existirem atualizações, elas serão baixadas e instaladas.
      • Quando as atualizações terminarem, abrirá uma janela do programa. Marque "Verificação Rápida", e depois clique no botão Verificar.
      • O scan iniciará e poderá ser demorado. Por favor seja paciente.
      • Quando o scan estiver completo, clique em Ok, depois em Mostrar Resultados para ver o log.
      • Se algo for encontrado, certifique-se que tudo está marcado e clique em Remover.
      • Quando a desinfecção terminar, automaticamente um log surgirá aberto num documento do Bloco de Notas e pode ser questionado para reiniciar o PC. (Leia a nota)
      • O log é automaticamente guardado e pode ser consultado clicando na tab Logs do menu principal.
      • Copie e cole o conteúdo desse log na sua próxima resposta.

    Nota: Em infecções mais complicadas, poderá haver a necessidade de reiniciar o PC. Caso lhe seja pedido para reiniciar, por favor, faça-o imediatamente.

     

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Malwarebytes Anti-Malware

    www.malwarebytes.org

     

    Scan Date: 20/12/2014

    Scan Time: 13:25:52

    Logfile: 

    Administrator: Yes

     

    Version: 2.00.4.1028

    Malware Database: v2014.12.20.03

    Rootkit Database: v2014.12.14.01

    License: Trial

    Malware Protection: Enabled

    Malicious Website Protection: Enabled

    Self-protection: Disabled

     

    OS: Windows 7 Service Pack 1

    CPU: x64

    File System: NTFS

    User: Lucas

     

    Scan Type: Hyper Scan

    Result: Completed

    Objects Scanned: 285908

    Time Elapsed: 17 min, 14 sec

     

    Memory: Enabled

    Startup: Enabled

    Filesystem: Disabled

    Archives: Enabled

    Rootkits: Disabled

    Heuristics: Enabled

    PUP: Enabled

    PUM: Enabled

     

    Processes: 0

    (No malicious items detected)

     

    Modules: 0

    (No malicious items detected)

     

    Registry Keys: 1

    PUP.Optional.Quiknowledge.A, HKLM\SOFTWARE\WOW6432NODE\QUIKNOWLEDGE, No Action By User, [b2613134e696bc7aa750cec1c63d936d], 

     

    Registry Values: 1

    PUP.Optional.Quiknowledge.A, HKLM\SOFTWARE\WOW6432NODE\QUIKNOWLEDGE|ie-ver, 9.0.8112.16421, No Action By User, [b2613134e696bc7aa750cec1c63d936d]

     

    Registry Data: 0

    (No malicious items detected)

     

    Folders: 0

    (No malicious items detected)

     

    Files: 0

    (No malicious items detected)

     

    Physical Sectors: 0

    (No malicious items detected)

     

     

    (end)

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro Casprov

     

    # Etapa nº 1 #
     
    Desative temporiariamente seu AntiVirus
    Segure o botão Ctrl e clique neste link para abrir o ESET Online Scanner em uma nova janela.
    Clique neste botão: j9Byf.png?1
    Para navegadores alternativos: (Caso use o Internet Explorer, pule esta etapa)esetsmartinstaller_enu.png
    Clique em esetsmartinstaller_enu.exe para baixar o ESET Smart Intaller. Salve-o em seu desktop.
    Duplo clique no ícone em seu desktop.

    [*]Marque "YES, I accept the Terms of Use."
    [*]Clique em Start.
    [*]Aceite qualquer aviso de segurança de seu browser.
    [*]Em scan settings, marque "Scan Archives" e "Remove found threats"
    [*]Clique em Advanced settings e marque o seguinte:
    Scan potentially unwanted applications
    Scan for potentially unsafe applications
    Enable Anti-Stealth technology

    [*]Clique Change e marque também a caixa Computador.
    [*]Clique em Start.
    [*]Ele vai atualizar por conta própria, e escanear o computador. Tenha paciência, o processo pode demorar horas.
    [*]Quando o scan terminar, clique em List of found threats
    [*]Clique em Export to text file e salve o log na sua área de trabalho.
    [*]Clique em Back.
    [*]Clique em Finish.
    [*]Poste o conteúdo do log.

     
    # Etapa nº 2 #
     
    Faça o download do SecurityCheck e salve em seu Desktop
     
    Clique duas vezes no SecurityCheck.exe
    • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png

    Pressione qualquer tecla para continuar... será aberto um relatório
    Copie todo seu conteúdo e cole em sua próxima resposta

    Abraços  :natal:

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Tópico Arquivado

    Como o autor não respondeu ao tópico por mais de 10 dias, o mesmo foi arquivado.

    Caso você seja o autor do tópico e quer que o mesmo seja reaberto, entre em contato com um Analista de Segurança do Fórum solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×