Ir ao conteúdo
  • Cadastre-se
lanicchio

Computador lento e com muitos Pop ups

Recommended Posts

Olá @
 

Por favor, atente para o seguinte:
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Respeite a ordem das instruções passadas.
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

Launched: D:\Users\Telavive\Downloads\ZA-Scan.exe [Z-Analyse Scan]

 
O ZA não foi executado a partir de sua área de trabalho, conforme instrução.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o anexo desse post e salve no mesmo local do ZA-Scan.

 

Execute novamente o ZA-Scan.exe, aguarde e ao final um log se abrirá.

 

Anexe-o em sua próxima resposta.

zascript.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites
ZA-Scan V1.0.0.4 Updated 23-04-2015

Tool run by Telavive on 29/04/2015 at 17:32:07,61.

Microsoft Windows 7 Home Premium  6.1.7600  x86

Running in: Normal Mode No Internet Access Detected

Launched: D:\Users\Telavive\Desktop\ZA-Scan.exe

Script used: D:\Users\Telavive\Desktop\zascript.txt

 

==== System Restore Info ======================

 

29/04/2015 17:32:32 Zoek.exe System Restore Point Created Succesfully.

 

==== Empty Folders Check ======================

 

C:\Program Files\61747ac2-6816-457c-af9a-97e795d1961f deleted successfully

C:\Program Files\GUPlayer deleted successfully

C:\Program Files\predm deleted successfully

C:\Program Files\Common Files\SWF Studio deleted successfully

C:\PROGRA~2\Real deleted successfully

C:\Users\Telavive\AppData\Roaming\BavMini deleted successfully

C:\Users\Telavive\AppData\Roaming\MoboMarketUsbDriver deleted successfully

C:\Users\Telavive\AppData\Local\CUSTPDF Writer deleted successfully

C:\Users\Telavive\AppData\Local\Real deleted successfully

C:\Users\Telavive\AppData\Local\SmartWeb deleted successfully

C:\Users\Telavive\AppData\Local\VirtualStore deleted successfully

 

==== Deleting CLSID Registry Keys ======================

 

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{109F6EE9-B0F2-4457-9760-A2569319473} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{111E0A38-6BA5-4EAA-B82A-3BB6E1F690D6} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1182F5D9-894B-4C27-B79B-6142F2832E5E} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{14FCFE0A-71A6-465B-AD62-FE2040C8E9CF} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19878464-F7DC-4477-BA28-5ABD1FA7E6E} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1BA6C60A-6DD3-4E97-A2B3-F1135D99CEFF} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1CE41B3B-3AFC-440D-9EA0-13EF1E2CC772} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ECA16D4-2594-43D3-8C50-2AD7D2B2534} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F6786A2-120A-4035-8EEE-75B7E0A5F657} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20F3BA57-8B8E-4E81-B616-A7E33FBA2C50} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22186261-DB98-4726-AD4F-A91E1B6D30A8} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{284162A4-22A6-4B76-A75F-6C17C4BA6C69} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A7C1918-5012-4E65-8AD6-2825C22399D6} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C75DEEC-AC39-4DA1-A0A1-B95813E23795} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E0D60F8-CE4F-4E9F-AC5B-E9FBE9676181} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2EB5665F-2E13-45A9-A18E-C54AD9F2716F} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F04A7A1-6068-4D84-B1FD-3CE124D3CE8B} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{30372763-92-4521-89CE-E5543A94EDAE} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{30CFC39E-5287-400E-A2B-3F218726B4} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{32238A32-192A-4D52-BFB8-47F9F541BF7A} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{32999D-1DCD-4F02-819A-ACAEFA90A6E1} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3462F39C-12AB-42D2-97E9-CDB5B53A133B} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44090115-F0D8-4D60-B526-DE62E5A282D4} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{46BBDE54-7B58-48A4-985-4345F4D777A} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4BEC0F6F-9AB0-4440-98EA-EAB5CA31336D} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4FF71B2A-B474-4B2D-AEF5-D4B976EB58CF} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51DBCB1A-C8B9-437E-9642-716815242777} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{545FF3FE-97FC-4C33-902F-4D6148399161} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57847546-EC5C-4D36-B832-551E634C536D} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57F91371-B6CF-48D1-96B5-D1F270B19ED8} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5907981A-D452-44C3-B319-ED68572B3933} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5A757A1D-1C9E-4B67-8D26-65A79C23045} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C502A78-21F1-4D8B-ACD1-84DC21688788} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D4F2E6E-8D80-4D21-9F63-B7EF4AD71D3} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5DC068C9-F76D-461C-8C6E-A33818F6A2E2} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66C95F87-3C62-45A0-8784-1CD866B8BBB} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68416310-1B03-4A50-97CB-C1F3B3995CE2} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B38FF2-7B62-4E3A-9757-17864B5D4B52} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68D5FD10-6224-4601-B59C-E827C4D8644} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6ADBC222-FBE8-40DF-BB14-D62181BAD297} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6B221A67-7414-4B25-902-55905ECBA563} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6C39781E-DFC1-486C-BDF2-1FDB5769E6DF} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6E7513B2-F97F-49EE-B03A-B9937BB053AA} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F0C4B2B-D1CB-45E7-939F-9DF2E9AC38F8} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F5300AA-DDC1-4C55-B352-21B392374740} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F7B4DCF-BA2E-4C7C-BB89-71ECC2B8238F} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{735D3307-EE5E-4A07-876D-9483747D5886} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74974282-3618-4601-A6A1-2986A2FEFF85} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78A167D8-A772-4FE9-BB7C-E4467F945481} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80162323-734E-47E1-9F64-4E18E320B35F} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{824B4D6F-8AE8-4B4E-8FF1-FBEF813DBDF7} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83A149A8-B652-4443-9361-215BA41925EF} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{899842DE-F8CF-4FF9-BEAD-EA41D355E685} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8AF12A50-57DC-495F-8490-88778AFCFF98} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8D3D713F-4A85-4F8E-8058-317BA7C843C6} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E80283D-E056-4142-AD36-A0453175053} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8FB552BB-4329-4F36-B0FC-B797846C088} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8FF9982C-E09C-49D2-9361-BB9FB592173} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9130F2D-E2CB-473C-AE71-D6495E861EB} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{93709D25-BF6D-464E-967E-B50D44591E7} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9424AC9-A3FC-451D-B7B1-BCE410BB7B89} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95EB44E2-D382-46AA-81CF-15A37097610} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9881F3F7-4D8-4C3D-93C3-3C6123D71BCE} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C09D1E7-1442-42A1-8BC-3AF5A468B29} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF59531-6631-4916-9A7E-94E40E944D2} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A0CF679A-7980-4D82-8516-3DBCA5658965} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A1851A97-A451-42C4-9F7-6C2EB471D64B} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A1D8BDAA-7A1A-4D68-87B6-85D787E7C9BE} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A31A7B2-C3EE-441B-8990-D2B6D97AFFAC} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A3274056-B760-4FD8-A7DF-BD936584E1A5} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4C80FBD-8FD4-42FA-884B-3C1F518DC58D} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A56BF23A-F665-49C1-98B-8D7DA824D48} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A577AC0B-E508-4DC0-90FB-6EFCC8412E56} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AC7A0974-B528-4C3F-AD13-2A19BC91EF16} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AEED684-8E5A-433B-B935-379F34A6E24} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0DEEEEA-282E-4D3A-975B-AF52B78E56B5} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B3AAFA4C-A434-48B9-849D-DAF1736CAC62} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B56355D-EFCE-49FF-A348-F9E39579E28} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B575702D-26FE-4BD0-9538-C377ECE2F366} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B7AE0E9C-9EBC-41B2-A151-654E8F9657FA} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B925C72C-7247-42CC-90EB-FEA719CFE63} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BB28F283-F0D6-42E4-8C4-C0CE33B799E3} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BC4375C7-6DE-4D53-B27C-52336950B3DC} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDD3B8A1-1CF6-4153-8244-C24AF8CDF444} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C12CC627-716D-40C5-A89A-828FE3C0EDA1} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1B96858-5445-4B5D-ADE7-2D4997E080C7} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1C11ACA-C812-439F-A9D3-4D7439D16BF} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C49ED9FD-25A1-4A7B-8F5F-D7CDD2F26224} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C592BA79-B18-40C0-A198-14FA18485A1F} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C76913F5-B638-446C-A590-8677BCA01333} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C84569F0-6D6F-4181-96EA-124878BDAE7C} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CDC3D91-D618-4A6C-BFC0-CE34385627C8} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D3DCFEF4-A521-4578-AF84-307EE3F5CFD0} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D974E47E-5091-4297-928C-1C0835C83D4} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DABC3857-C110-40DA-8777-DAD8688D7359} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DE6D13C5-59D-4904-B3AC-2EF3234B5D5E} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E665449C-24A1-48DF-817C-49864ADDFC93} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB1BA528-35A2-413E-948C-CCD4E6169FD0} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE189807-D49B-4F0A-A43E-DFCC225816F5} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F6D18BB2-9C68-4845-A988-6F78D8BA919C} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FAE7BA1F-3925-4245-BF1A-D5FEF181BEE1} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC315E8E-3B29-47E8-9092-20C55B068CA} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC81C07B-F7CC-4038-ADD3-A3924296AC5B} deleted successfully

HKEY_USERS\S-1-5-21-2968903463-4030743777-2377343967-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC8CEA27-385-4FEB-8BF3-6419C3EC2BB8} deleted successfully

 

==== Deleting CLSID Registry Values ======================

 

 

==== Deleting Services ======================

 

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IHProtect Service deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\IHProtect Service deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WindowsMangerProtect deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WindowsMangerProtect deleted successfully

 

==== FireFox Fix ======================

 

Deleted from C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.<HTML>?type=hppppppppppppppppppppppp");

user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");

user_pref("browser.search.defaultenginename", "");

user_pref("browser.search.selectedEngine", "");


 

Added to C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\prefs.js:

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.newtab.url", "about:newtab");

 

ProfilePath: C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default

 

---- Lines nspdlsd removed from prefs.js ----

user_pref("extensions.nspdlsd.aflt", "spd_dsites05_14_20_ch");

user_pref("extensions.nspdlsd.cd", "2XzuyEtN2Y1L1QzuyC0CyCtByC0Dzy0CtC0C0CyBzyyByEzztN0D0Tzu0SzzyCyBtN1L2XzutBtFtBtDtFtCtAtFtCtN1L1CzutCyEtDtAtDyD1V1T

user_pref("extensions.nspdlsd.cr", "1171898480");

user_pref("extensions.nspdlsd.data._dy", "20140815");

user_pref("extensions.nspdlsd.data.595bc5612f014889cd3802fdc19a6f82", "1");

user_pref("extensions.nspdlsd.data.activeDate", "20150417");

user_pref("extensions.nspdlsd.data.aliveDate", "20150429");

user_pref("extensions.nspdlsd.data.cc", "br");

user_pref("extensions.nspdlsd.data.instlDate", "20140519");

user_pref("extensions.nspdlsd.data.ntopen", "23821323");

user_pref("extensions.nspdlsd.data.rprt", "0");

user_pref("extensions.nspdlsd.general.content", "favorites-ef28730a065f809138e9bffe4b013371");

user_pref("extensions.nspdlsd.general.firstRun", false);

user_pref("extensions.nspdlsd.general.guid", "52ce4bb0-ef98-4782-a098-4a1b3da64624");

user_pref("extensions.nspdlsd.general.version", "9.5.5");

user_pref("extensions.nspdlsd.instlRef", "140305_a");

---- Lines spdlapp removed from prefs.js ----

user_pref("extensions.spdlapp.aflt", "spd_dsites05_14_20_ch");

user_pref("extensions.spdlapp.cd", "2XzuyEtN2Y1L1QzuyC0CyCtByC0Dzy0CtC0C0CyBzyyByEzztN0D0Tzu0SzzyCyBtN1L2XzutBtFtBtDtFtCtAtFtCtN1L1CzutCyEtDtAtDyD1V1T

user_pref("extensions.spdlapp.cr", "1171898480");

user_pref("extensions.spdlapp.data._dy", "20140815");

user_pref("extensions.spdlapp.data.1475e97c0146bfb1c490339546d9e72ee", "1");

user_pref("extensions.spdlapp.data.aliveDate", "20140815");

user_pref("extensions.spdlapp.data.b._dy", "20140815");

user_pref("extensions.spdlapp.data.b.aliveDate", "20150429");

user_pref("extensions.spdlapp.data.b.instlDate", "20140815");

user_pref("extensions.spdlapp.data.cc", "br");

user_pref("extensions.spdlapp.data.instlDate", "20140815");

user_pref("extensions.spdlapp.general.guid", "a88b7544-7b61-406d-a9db-d7dbc7bc8fc6");

---- Lines quick_start removed from prefs.js ----

user_pref("extensions.quick_start.enable_search1", false);

user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

---- Lines crossrider removed from prefs.js ----

user_pref("extensions.crossrider.bic", "14cc3f304a81d06eb15fac5ccdd9a1b7");

---- Lines browser.startup.page removed from prefs.js ----

user_pref("browser.startup.page", 1);

---- Lines browser.startup.page removed from user.js ----

 

user_pref("browser.startup.page", 1);

 

---- FireFox user.js and prefs.js backups ---- 

 

user_042015_1741_.backup

prefs_042015_1741_.backup

 

==== Registry Fix Code ======================

 

Windows Registry Editor Version 5.00

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]

@="C:\\Program Files\\Internet Explorer\\iexplore.exe"

 

==== Batch Command(s) Run By Tool======================

 

 

Configura‡Æo de IP do Windows

 

Libera‡Æo do Cache do DNS Resolver bem-sucedida.

 

==== Deleting Files \ Folders ======================

 

C:\Program Files\61747ac2-6816-457c-af9a-97e795d1961f not found

C:\Program Files\GUPlayer not found

C:\Program Files\predm not found

C:\Program Files\Arquivos Comuns deleted

C:\Users\Telavive\.android deleted

C:\Program Files\Mozilla Firefox\browser\searchplugins\luckysearches.xml deleted

C:\Program Files\XTab deleted

C:\Program Files\Speedial deleted

C:\Program Files\RegClean Pro deleted

C:\Program Files\SupTab deleted

C:\Program Files\globalUpdate deleted

C:\Users\Telavive\AppData\Roaming\WB.CFG deleted

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\f3e1f2f6fc1a8b4b\BoBrowser.lnk deleted

C:\Users\Telavive\AppData\Roaming\AnyProtectEx deleted

C:\Users\Telavive\AppData\Roaming\00000000-1429201669-0000-0000-6C626D9C1CC7 deleted

C:\Users\Telavive\AppData\Roaming\DigitalSites deleted

C:\Users\Telavive\AppData\Roaming\sweet-page deleted

C:\Users\Telavive\AppData\Roaming\Speedial deleted

C:\Users\Telavive\AppData\Roaming\Systweak deleted

C:\PROGRA~2\Duplicaterecord.js deleted

C:\PROGRA~2\IePluginServices deleted

C:\PROGRA~2\boost_interprocess deleted

C:\PROGRA~2\IHProtectUpDate deleted

C:\PROGRA~2\WPM deleted

C:\PROGRA~2\WindowsMangerProtect deleted

C:\PROGRA~2\Package Cache deleted

C:\Users\Telavive\AppData\Local\nsgF6DF.tmp deleted

C:\Users\Telavive\AppData\Local\nsw4603.tmp deleted

C:\Users\Telavive\AppData\Local\00000000-1429191313-0000-0000-6C626D9C1CC7 deleted

C:\Users\Telavive\AppData\Local\BoBrowser deleted

C:\Users\Telavive\AppData\Local\globalUpdate deleted

C:\Users\Telavive\AppData\Local\CrashRpt deleted

C:\Windows\patsearch.bin deleted

C:\Windows\System32\Tasks\avast! Emergency Update deleted

C:\Users\Public\Documents\ShopperPro deleted

C:\Users\Telavive\AppData\LocalLow\Company deleted

C:\Users\Telavive\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A} deleted

C:\Windows\system32\tasks\060184C3-9766-46a0-B258-F4518A0B2633 deleted

C:\Windows\system32\tasks\94A46359-5537-4201-BEFD-1EC63DFD0941 deleted

C:\Windows\system32\tasks\Run_Bobby_Browser deleted

C:\Windows\tasks\Digital Sites.job deleted

C:\Windows\system32\tasks\SMupdate1 deleted

C:\Windows\system32\tasks\Microsoft\Windows\Maintenance\SMupdate2 deleted

C:\Windows\system32\tasks\Microsoft\Windows\Multimedia\SMupdate3 deleted

C:\Windows\system32\tasks\SmartWeb Upgrade Trigger Task deleted

C:\Windows\system32\roboot.exe deleted

C:\Windows\system32\GroupPolicy\Machine deleted

C:\Windows\system32\GroupPolicy\User deleted

C:\Windows\system32\GroupPolicy\gpt.ini deleted

C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\searchplugins\bingp.xml deleted

C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\.autoreg deleted

C:\Users\Telavive\AppData\Roaming\msx.exe deleted

C:\Users\Telavive\AppData\Roaming\unins000.exe deleted

C:\Users\Telavive\AppData\Roaming\unins001.exe deleted

C:\Users\Telavive\AppData\Roaming\unins002.exe deleted

C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\extensions\{fa95f577-07cb-4470-ac90-e843f5f83c52} deleted

C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\nspdlsd deleted

"C:\Users\Telavive\AppData\Roaming\FCNHVU" deleted

"C:\Users\Telavive\AppData\Roaming\MOPB" deleted

"C:\Users\Telavive\AppData\Roaming\TSKR" deleted

"C:\Users\Telavive\AppData\Roaming\XBPI" deleted

"C:\Users\Telavive\AppData\Roaming\XDZIPOCY" deleted

"C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\searchplugins\Speedial.xml" deleted

"C:\Program Files\Common Files\System\SysMenu.dll" deleted

"C:\Program Files\Common Files\System\SysMenu.dll" deleted

 

==== Firefox Start and Search pages ======================

 

ProfilePath: C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.newtab.url", "about:newtab");

 

==== Firefox Extensions Registry ======================

 

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"quick_searchff@gmail.com"="C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\extensions\quick_searchff@gmail.com" [16/04/2015 13:58]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"{87F8774F-B485-47E2-A755-A40A8A5E8874}"="C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\abn\xpi" [17/04/2015 10:58]

 

==== Firefox Extensions ======================

 

ProfilePath: C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default

- avast Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF

- Guardio - Ita 30 horas - C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\uni\xpi

- GBBD Banco Santander Brasil S.A. - C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\abn\xpi

- Fast Start - %ProfilePath%\extensions\faststartff@gmail.com

- QuickSearch - %ProfilePath%\extensions\quick_searchff@gmail.com

- Mdulo de Proteo - Banco do Estado do Esprito Santo - BANESTES - %ProfilePath%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8817}

- Search Application - %ProfilePath%\extensions\{16cd6b36-d79c-45a4-896c-a98072e32a5e}.xpi

- Pesquisa rxE1;pida - %ProfilePath%\extensions\{5ac06b33-81b8-468c-ad74-004a73d2c577}.xpi

 

AppDir: C:\Program Files\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi

 

==== Firefox Plugins ======================

 

Profilepath: C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default

154171217236D5F33E980C7314265EA7 - C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll - Módulo de Proteção - Banco Santander (Brasil) S.A.

98137411B9C632095F919E2CE70B288A - C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll - Google Update

F6419D3B99616C80C947B9D7B427348B - C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll - Guardião Itaú 30 horas

BFD1CDA328C83054154DD05EA233F79B - C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll - Módulo de Proteção - Banco do Brasil

2855AB5CC40D03B1F708C088123D2776 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java Platform SE 7 U55

8AD9933DE84627B4BF9CCD1191121240 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.550.13

6F120933F87E7DEC972476170288A267 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat

0BD343C45B4ECCF8D6AF94D6C3ADC310 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat

F0B8C822A200250EDF60049F07E4CC41 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll - RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit)

30257426F6DA31808C6698EC01DE2D97 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll - RealPlayer Version Plugin

3447F68CFA52BF8854FF05BADD5F4F17 - C:\Users\Telavive\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll - Módulo de Proteção - Banco Santander (Brasil) S.A.

 

 

==== Deleted Firefox Extensions ======================

 

C:\Users\Telavive\AppData\Roaming\Mozilla\Firefox\Profiles\g2gfyeem.default\extensions\faststartff@gmail.com deleted

 

==== Chromium Look ======================

 

Google Chrome Version: 42.0.2311.90 (Possible outdated, latest Stable version: 42.0.2311.135)

 

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

bakijjialdiiboeaknfpmflphhmljfkd - No path found[]

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx[28/05/2014 15:02]

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14/07/2014 17:22]

 

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

bakijjialdiiboeaknfpmflphhmljfkd - No path found[]

fcfenmboojpjinhpgggodefccipikbpd - No path found[]

 

Visualizador Online de Documentos - Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\egiddjejcnacdbcpinlddfnabgmimcjm

Bookmark Manager - Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik

GBBD Guardião - Itaú 30 horas - Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg

Chrome Hotword Shared Module - Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg

Skype Click to Call - Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

iLivid - Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf

 

==== Chromium Fix ======================

 

C:\Users\Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\egiddjejcnacdbcpinlddfnabgmimcjm deleted successfully

C:\Users\Telavive\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf deleted successfully

C:\Users\Telavive\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nafaimnnclfjfedmmabolbppcngeolgf_0.localstorage deleted successfully

 

==== Set IE to Default ======================

 

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]





[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]





[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]


 

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]





[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]





[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="about:newtab"

 

==== All HKCU SearchScopes ======================

 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}"

{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"

 

==== Reset Google Chrome ======================

 

C:\Users\Telavive\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\Telavive\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully

C:\Users\Telavive\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

C:\Users\Telavive\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

 

==== shortcuts on Users Desktops ======================

 

C:\Users\Telavive\Desktop\Any DWG DXF Converter.lnk - C:\Program Files\Any DWG DXF Converter\dwg_dxf.exe 

 

==== shortcuts on All Users Desktop ======================

 

C:\Users\Public\Desktop\Adobe Reader X.lnk - C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe 

C:\Users\Public\Desktop\AutoCAD 2010 - English.lnk - C:\Program Files\AutoCAD 2010\acad.exe 

C:\Users\Public\Desktop\Autodesk Design Review.lnk - C:\Program Files\Autodesk\Autodesk Design Review\DesignReview.exe 

C:\Users\Public\Desktop\avast Free Antivirus.lnk -  

C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe 

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk - C:\Program Files\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe -ScParameter=8  

C:\Users\Public\Desktop\Shop for HP Supplies.lnk - C:\Program Files\HP\HPSSUPPLY\hpqSSupply.exe 

C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe 

 

==== shortcuts in Users Start Menu ======================

 

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ragnarok\Ragnarok.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk - C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe 

 

==== shortcuts in All Users Start Menu ======================

 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe 

 

==== shortcuts in Quick Launch ======================

 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Any DWG DXF Converter.lnk - C:\Program Files\Any DWG DXF Converter\dwg_dxf.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Calculator.lnk - C:\Windows\system32\calc.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AutoCAD 2010 - English.lnk - C:\Program Files\AutoCAD 2010\acad.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe www.jogostempo.com?oem=mbtkv3&uid=S1RLJ50S313007_SAMSUNG HD322HJ&tm=1429269697

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Office Excel 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1

 

==== shortcuts After Repair ======================

 

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff

C:\Users\Telavive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ragnarok\Ragnarok.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

C:\Users\Telavive\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

 

==== Deleting Registry Keys ======================

 

HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully

 

==== Empty IE Cache ======================

 

C:\Users\Telavive\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Telavive\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

 

==== Empty FireFox Cache ======================

 

No FireFox Cache found

 

==== Empty Chrome Cache ======================

 

C:\Users\Telavive\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully

C:\Users\Telavive\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

 

==== Empty All Flash Cache ======================

 

Flash Cache Emptied Successfully

 

==== Empty All Java Cache ======================

 

Java Cache cleared successfully

 

==== Reset WMI ======================

 

Os seguintes servi‡os sÆo dependentes do servi‡o de Testador de instrumenta‡Æo de gerenciam. do Windows.

Finalizar o servi‡o Testador de instrumenta‡Æo de gerenciam. do Windows tamb‚m finalizar  estes servi‡os.

 

   Central de Seguran‡a

   Auxiliar de IP

 

O servi‡o de Central de Seguran‡a est  sendo finalizado .

O servi‡o de Central de Seguran‡a foi finalizado com ˆxito.

 

O servi‡o de Auxiliar de IP est  sendo finalizado .

O servi‡o de Auxiliar de IP foi finalizado com ˆxito.

 

O servi‡o de Testador de instrumenta‡Æo de gerenciam. do Windows est  sendo finalizado .

O servi‡o de Testador de instrumenta‡Æo de gerenciam. do Windows foi finalizado com ˆxito.

 

C:\Windows\system32\wbem\repository renamed to repository.old

 

==== Empty Temp Folders ======================

 

C:\Users\Telavive\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

 

==== After Reboot ======================

 

==== Empty Temp Folders ======================

 

C:\Windows\Temp successfully emptied

C:\Users\Telavive\AppData\Local\Temp successfully emptied

 

==== Empty Recycle Bin ======================

 

C:\$RECYCLE.BIN successfully emptied

 

==== Deleting Files / Folders ======================

 

"C:\Users\Telavive\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

 

==== EOF on 29/04/2015 at 18:11:14,80 ======================

Compartilhar este post


Link para o post
Compartilhar em outros sites

@

 

Alguma dificuldade em anexar os logs?

 

1)

 

Faça o download do Farbar Service Scanner e salve em seu Desktop
 

  • Marque as caixas:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Clique em Scan
  • Será criado um log (FSS.txt) no Desktop
  • Anexe o do log em sua próxima resposta.

2)

 

Baixe o RogueKiller e salve em sua área de trabalho.
32 bit (x86) ou 64 bit (x64)

Execute o arquivo RogueKiller.exe.

*** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo RogueKiller.exe, depois clique em execadmin.png.

Clique no botão Scan e aguarde o exame finalizar.

Clique no botão Relatório. Abrirá um bloco de notas com informações.

Anexe-o na sua próxima resposta.

OBS: não use o botão Deletar pois precisamos avaliar os itens antes de fazer isso.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Tópico Arquivado

Como o autor não respondeu ao tópico por mais de 10 dias, o mesmo foi arquivado.

Caso você seja o autor do tópico e quer que o mesmo seja reaberto, entre em contato com um Analista de Segurança do Fórum solicitando o desbloqueio.

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×