Ir ao conteúdo
  • Comunicados

    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.

Rock na Veia

Membros Plenos
  • Total de itens

    36
  • Registro em

  • Última visita

  • Qualificações

    0%

Reputação

0

Sobre Rock na Veia

  • Data de Nascimento 16-09-1991 (26 anos)

Informações gerais

  • Cidade e Estado
    Goiania/GO
  • Sexo
    Masculino

Meu PC

  • Processador
    PentiumG 3258
  • Sistema Operacional
    Windows 10 pro
  • Antivírus
    ComboFix :D
  1. Amigo, fiz de todo jeito possível, fora usar o método que mencionei anteriormente
  2. Boa noite pessoal, recentemente adicionei mais um roteador em minha rede, e comecei a ter alguns problemas, queda de sinal e etc, atualmente está da seguinte forma: modem da oi > 2x roteadores saindo da lan do modem e conectado da wan dos roteadores com faixas de ip diferentes e dhcp conectado, sei que esse método é horrível, mas foi o único jeito que funcionou, gostaria de saber se com esse modem eu consigo configurar ele como Bridge e a partir dele configurar um dlink pra distribuir o ip com dhcp ativado que disponibiliza wifi pra casa e a partir dele distribuir para os outros 2 roteadores, cujo um é dlink e o outro tplink, um num quarto de visitas e outro numa edicula
  3. Boa noite amigo, Elias, gostaria de pedir para que fechar ou excluir o tópico, esse final de semana caiu um raio aqui perto de casa e infelizmente mesmo desligado meu pc foi pro saco, ainda não sei quais componentes queimaram e nem quais foram salvos, assim que resolver tudo se os discos estiverem bem vou abrir novamente o tópico, obrigado. @Elias Pereira
  4. Boa noite pessoal, apos consertar o smartphone de mnha namorada no pc, eis que logo em seguida que coloquei meu pendrive já apareceu uma pasta com 40mb e 4 atalhos, no modo de segurança eu consegui deletar os arquivos, o autorun e criar outro autorun configurado como somente leitura, também consegui deletar o ``winscript`` na pasta system 32, mas sinto que o pc ainda continua infectado, pois quando abro alguns aplicativos eles fecham rapiado, e as vezes quando inicio, o som de login ele da tipo uma ``freezada`` ZA-Scan.txt
  5. Veja, mesmo estando aqui estou em duvida, vou desativar a auto inicialização
  6. mas e normal aparecer assim, sem nem ter atualizado ?
  7. Boa noite pessoal, de repente aqui quando inicio o pc aparece a imagem abaixo, fiquei na duvida, estaria meu pc infectado ?
  8. @Elias Pereira não, felizmente! Fico muito agradecido pelo seu empenho!
  9. ZA-Scan V1.0.0.5 Updated 30-09-2015 Tool run by Vinicius on 14/06/2017 at 4:01:30,86. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode No Internet Access Detected Launched: C:\Users\Vinicius\Desktop\ZA-Scan.exe Script used: C:\Users\Vinicius\Desktop\zascript.txt ==== System Restore Info ====================== 14/06/2017 04:01:41 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\Users\Vinicius\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== Deleted from C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\mxbe0sds.dev-edition-default\prefs.js: Added to C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\mxbe0sds.dev-edition-default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\848c191e_0] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\xfirefox.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\xfirefox_RASAPI32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\xfirefox_RASMANCS] [-HKEY_USERS\S-1-5-21-1104762297-3592132124-247639654-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\848c191e_0] ==== Batch Command(s) Run By Tool====================== Configura‡Æo de IP do Windows Libera‡Æo do Cache do DNS Resolver bem-sucedida. ==== Deleting Files \ Folders ====================== C:\Users\Vinicius\AppData\Roaming\discord deleted C:\Users\Vinicius\.android deleted C:\PROGRA~3\Package Cache deleted C:\Users\Vinicius\AppData\Local\updater.log deleted C:\Users\Vinicius\AppData\Roaming\b92d1f4afe8de305dc819cea12e128b2.exe deleted "C:\PROGRA~2\Skillbrains\lightshot\5.4.0.10\Lightshot.dll" deleted "C:\PROGRA~2\Skillbrains\lightshot\5.4.0.10\Lightshot.exe" deleted "C:\PROGRA~2\Skillbrains\lightshot\5.4.0.10\uploader.dll" deleted "C:\PROGRA~2\Skillbrains" deleted "C:\PROGRA~2\Skillbrains\lightshot" deleted "C:\PROGRA~2\Skillbrains\lightshot\5.4.0.10" deleted ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\mxbe0sds.dev-edition-default user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [24/05/2017 01:30] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [24/05/2017 01:30] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 44.0.2403.107 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions efaidnbmnnnibpcajpcglclefindmkaj - No path found[] Chrome Media Router - Vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Chromium Fix ====================== C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage deleted successfully C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal deleted successfully C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_directx.softonic.com.br_0.localstorage deleted successfully C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_directx.softonic.com.br_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Reset Google Chrome ====================== C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot ==== shortcuts on Users Desktops ====================== C:\Users\Vinicius\Desktop\Cabal Veteris - Atalho.lnk - C:\Program Files (x86)\Cliente Cabal Veteris\Cabal Veteris.exe C:\Users\Vinicius\Desktop\Discord.lnk - C:\Users\Vinicius\AppData\Local\Discord\Update.exe --processStart Discord.exe C:\Users\Vinicius\Desktop\League.lnk - C:\Riot Games\League of Legends\LeagueClient.exe C:\Users\Vinicius\Desktop\MSI Afterburner.lnk - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe C:\Users\Vinicius\Desktop\MSI Kombustor 3.lnk - C:\Program Files (x86)\MSI Kombustor 3\MSI_Kombustor.exe C:\Users\Vinicius\Desktop\The Crew.lnk - D:\Program Files (x86)\Ubisoft Games\games\The Crew (Worldwide)\TheCrewLauncher.exe C:\Users\Vinicius\Desktop\µTorrent.lnk - ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Acrobat Reader DC.lnk - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe C:\Users\Public\Desktop\Battlefield 1.lnk - C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe C:\Users\Public\Desktop\Bloody6.lnk - C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe C:\Users\Public\Desktop\Central de Soluções HP.lnk - C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk - C:\Program Files (x86)\Euro Truck Simulator 2 [BR-Repacks]\ETS2Launcher.exe C:\Users\Public\Desktop\Fraps.lnk - C:\Fraps\fraps.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Public\Desktop\Grand Theft Auto V + Enhanced Native Trainer.lnk - D:\Program Files (x86)\Grand Theft Auto V + Enhanced Native Trainer\GTAVLauncher.exe C:\Users\Public\Desktop\Loja de Suprimentos HP.lnk - C:\Program Files (x86)\HP\HPSSUPPLY\hpqSSupply.exe C:\Users\Public\Desktop\Need for Speed™.lnk - C:\Users\Public\Desktop\Sapphire TRIXX.lnk - C:\Program Files (x86)\Sapphire TRIXX\TRIXX.exe C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk - C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win64.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc\Discord.lnk - C:\Users\Vinicius\AppData\Local\Discord\Update.exe --processStart Discord.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\MSI Afterburner.lnk - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\ReadMe.lnk - C:\Program Files (x86)\MSI Afterburner\Doc\ReadMe.pdf C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\Uninstall.lnk - C:\Program Files (x86)\MSI Afterburner\Uninstall.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\MSI Afterburner localization reference.lnk - C:\Program Files (x86)\MSI Afterburner\SDK\Doc\Localization reference.pdf C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\MSI Afterburner skin format reference.lnk - C:\Program Files (x86)\MSI Afterburner\SDK\Doc\USF skin format reference.pdf C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\Samples.lnk - C:\Program Files (x86)\MSI Afterburner\SDK\Samples C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\ReadMe.lnk - C:\Program Files (x86)\RivaTuner Statistics Server\Doc\ReadMe.pdf C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\RivaTuner Statistics Server.lnk - C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\Uninstall.lnk - C:\Program Files (x86)\RivaTuner Statistics Server\Uninstall.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\SDK\RivaTuner Statistics Server localization reference.lnk - C:\Program Files (x86)\RivaTuner Statistics Server\SDK\Doc\Localization reference.pdf C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\SDK\RivaTuner Statistics Server skin format reference.lnk - C:\Program Files (x86)\RivaTuner Statistics Server\SDK\Doc\USF skin format reference.pdf C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\SDK\Samples.lnk - C:\Program Files (x86)\RivaTuner Statistics Server\SDK\Samples C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z\TechPowerUp GPU-Z.lnk - C:\Program Files (x86)\GPU-Z\GPU-Z.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z\Uninstall.lnk - C:\Program Files (x86)\GPU-Z\uninstall.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Ajuda do WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.chm C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Manual do Console RAR.lnk - C:\Program Files (x86)\WinRAR\Rar.txt C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\O que há de novo na última versão.lnk - C:\Users\Vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Central de Soluções HP.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}\SC_Reader.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 17.lnk - C:\Program Files\Farming Simulator 17\FarmingSimulator2017.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk - C:\Windows\ehome\ehshell.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sapphire TRIXX.lnk - C:\Program Files (x86)\Sapphire TRIXX\TRIXX.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\SIGNINOPTIONS.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk - C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk - C:\Windows\system32\mstsc.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk - C:\Windows\system32\printmanagement.msc C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard\Run AMD Problem Report Wizard.lnk - C:\Program Files (x86)\AMD\PRW\amdprw.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard\Uninstall AMD Problem Report Wizard.lnk - C:\Windows\SysWOW64\msiexec.exe /x {53F192CB-4FD9-281B-5255-E6DC6A10775C} C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings\AMD Settings.lnk - C:\Program Files (x86)\AMD\CNext\CNext\RadeonSettings.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody\Bloody6\Bloody6.lnk - C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody\Bloody6\Desinstalar Bloody6.lnk - C:\ProgramData\Microsoft\Windows\Templates\Bloody6\Setup.exe uninstall C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cliente Cabal Veteris\Cabal Veteris.lnk - C:\Program Files (x86)\Cliente Cabal Veteris\Cabal Veteris.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite\DAEMON Tools Lite.lnk - C:\Program Files (x86)\DAEMON Tools Lite\DTLauncher.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 v1.25.2.6 (Multi42 + 44 DLCs + OST)\Desinstalar Euro Truck Simulator 2 v1.25.2.6 (Multi42 + 44 DLCs + OST).lnk - C:\Program Files (x86)\Euro Truck Simulator 2 [BR-Repacks]\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 v1.25.2.6 (Multi42 + 44 DLCs + OST)\Euro Truck Simulator 2.lnk - C:\Program Files (x86)\Euro Truck Simulator 2 [BR-Repacks]\ETS2Launcher.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps\Fraps.lnk - C:\Fraps\fraps.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps\Uninstall.lnk - C:\Fraps\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\The Crew (Worldwide).lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V + Enhanced Native Trainer\Desinstalar Grand Theft Auto V + Enhanced Native Trainer.lnk - D:\Program Files (x86)\Grand Theft Auto V + Enhanced Native Trainer\unins001.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V + Enhanced Native Trainer\Grand Theft Auto V + Enhanced Native Trainer.lnk - D:\Program Files (x86)\Grand Theft Auto V + Enhanced Native Trainer\GTAVLauncher.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Atualização HP.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Central de Soluções HP.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Loja de Suprimentos HP.lnk - C:\Program Files (x86)\HP\HPSSUPPLY\hpqSSupply.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Smart Web Printing\Ajuda da HP Smart Web Printing.lnk - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\Help\hpsmartprint.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet 4000 K210\Adicionar dispositivo.lnk - C:\Program Files (x86)\HP\Digital Imaging\{D6E2AB83-0446-4749-A52A-5AD59299A69C}\hpzstub.exe -addadevice C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet 4000 K210\Ajuda.lnk - C:\Program Files (x86)\HP\Digital Imaging\HelpViewer\hpqhvshm.exe /product-class=HP Officejet 4000 K210 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet 4000 K210\Desinstalar.lnk - C:\Program Files (x86)\HP\Digital Imaging\{D6E2AB83-0446-4749-A52A-5AD59299A69C}\setup\hpzscr40.exe -datfile hphscr54.dat -onestop -forcereboot C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet 4000 K210\Leiame.lnk - C:\Program Files (x86)\HP\Digital Imaging\help\OJ_SF_07_K210_readme\readme.html C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet 4000 K210\Registro do produto.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe "HP Officejet 4000 K210" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet 4000 K210\Site de suporte a produtos.lnk - C:\Program Files (x86)\HP\Digital Imaging\HP Officejet 4000 K210\help\HP Product Support Website.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot\Desinstalar Lightshot.lnk - C:\Program Files (x86)\Skillbrains\lightshot\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot\Lightshot.lnk - C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\xlicons.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\outicon.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\pptico.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\wordicon.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Ferramentas do Office 2013\Centro de Carregamento do Office 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\msouc.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Ferramentas do Office 2013\Database Compare 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\dbcicons.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Ferramentas do Office 2013\Spreadsheet Compare 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\sscicons.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot\Minimal ADB and Fastboot.lnk - C:\Program Files (x86)\Minimal ADB and Fastboot\MAF32.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot\Uninstall Minimal ADB and Fastboot.lnk - C:\Program Files (x86)\Minimal ADB and Fastboot\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\MSI Kombustor 3.lnk - C:\Program Files\MSI Kombustor 3\MSI_Kombustor.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\Uninstall MSI Kombustor v3.lnk - C:\Program Files\MSI Kombustor 3\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Ajuda do WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Manual do Console RAR.lnk - C:\Program Files (x86)\WinRAR\Rar.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\O que há de novo na última versão.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.exe ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Cabal Veteris - Atalho.lnk - C:\Program Files (x86)\Cliente Cabal Veteris\Cabal Veteris.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Paint.lnk - C:\Windows\system32\mspaint.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Origin.lnk - C:\Program Files (x86)\Origin\Origin.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Uplay launcher.lnk - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe C:\Users\Vinicius\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSN Toolbar deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Vinicius\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Vinicius\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Vinicius\AppData\Local\Mozilla\Firefox\Profiles\mxbe0sds.dev-edition-default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== Reset WMI ====================== Os seguintes servi‡os sÆo dependentes do servi‡o de Testador de instrumenta‡Æo de gerenciam. do Windows. Finalizar o servi‡o Testador de instrumenta‡Æo de gerenciam. do Windows tamb‚m finalizar estes servi‡os. Central de Seguran‡a Auxiliar de IP O servi‡o de Central de Seguran‡a est sendo finalizado . O servi‡o de Central de Seguran‡a foi finalizado com ˆxito. O servi‡o de Auxiliar de IP est sendo finalizado . O servi‡o de Auxiliar de IP foi finalizado com ˆxito. O servi‡o de Testador de instrumenta‡Æo de gerenciam. do Windows est sendo finalizado . O servi‡o de Testador de instrumenta‡Æo de gerenciam. do Windows foi finalizado com ˆxito. C:\Windows\system32\wbem\repository renamed to repository.old C:\Windows\syswow64\wbem\repository renamed to repository.old ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Public\AppData\Local\temp emptied successfully C:\Users\Vinicius\AppData\Local\Temp will be emptied at reboot C:\Users\USURIO~1\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Vinicius\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted "C:\Users\Vinicius\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted ==== EOF on 14/06/2017 at 4:14:02,75 ====================== @Elias Pereira
  10. SystemLook 30.07.11 by jpshortstuff Log created at 17:48 on 11/06/2017 by Vinicius Administrator - Elevation successful ========== folderfind ========== Searching for "xfirefox" No folders found. Searching for "xfirefox64" No folders found. ========== filefind ========== Searching for "xfirefox" No files found. Searching for "xfirefox64" No files found. ========== regfind ========== Searching for "xfirefox" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\848c191e_0] @="{0.0.0.00000000}.{27ae72b2-534b-4a49-803e-d61a8c696179}|\Device\HarddiskVolume1\Windows\SysWOW64\x32\App\Firefox64\xfirefox.exe%b{00000000-0000-0000-0000-000000000000}" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\xfirefox.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\xfirefox_RASAPI32] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\xfirefox_RASMANCS] [HKEY_USERS\S-1-5-21-1104762297-3592132124-247639654-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\848c191e_0] @="{0.0.0.00000000}.{27ae72b2-534b-4a49-803e-d61a8c696179}|\Device\HarddiskVolume1\Windows\SysWOW64\x32\App\Firefox64\xfirefox.exe%b{00000000-0000-0000-0000-000000000000}" Searching for "xfirefox64" No data found. -= EOF =-@Elias Pereira
  11. RogueKiller V12.11.1.0 (x64) [Jun 4 2017] (Free) por Adlice Software mail : http://www.adlice.com/contact/ Feedback : https://forum.adlice.com Site : http://www.adlice.com/download/roguekiller/ Blog : http://www.adlice.com Sistema Operacional : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Iniciou : Modo normal Usuário : Vinicius [Administrador] Started from : C:\Users\Vinicius\Desktop\RogueKiller_portable64.exe Modo : Deletar -- Data : 06/10/2017 14:18:25 (Duration : 00:09:50) ¤¤¤ Processos : 0 ¤¤¤ ¤¤¤ Registro : 6 ¤¤¤ [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5EB8E964-5B46-4F5E-9A35-2CF1012E0BEC} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Deletado [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {17097DE0-4BD6-4F6B-9742-8CA7720C7B0D} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Deletado [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5EB8E964-5B46-4F5E-9A35-2CF1012E0BEC} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Deletado [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {17097DE0-4BD6-4F6B-9742-8CA7720C7B0D} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Deletado [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Substituído (2) [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Substituído (2) ¤¤¤ Tarefas : 0 ¤¤¤ ¤¤¤ Arquivos : 1 ¤¤¤ [Tr.Gen0][Arquivo] C:\Users\Vinicius\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe -> Deletado ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Arquivos de hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Carregado) ¤¤¤ ¤¤¤ Navegadores : 1 ¤¤¤ [PUP.Gen1][Chrome:Config] Default [SecurePrefs] : homepage [http://searchfunmoods.com/?f=1&a=pc0102&cd=2XzuyEtN2Y1L1QzutDtD0F0FzyyCtDtCtC0F0EtAzyyD0AzztN0D0Tzu0SzzyEzztN1L2XzutBtFtCzztFyCtFtDtN1L1Czu1E1RtDtCtDtBtN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0AtAzzyEyCtGyC0AtByBtGzztDyEzztG0Czy0BzytGtA0BtDtAtB0A0D0DtCzztB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0DyCzyzz0D0AyEtGtBtByBzytG0F0A0ByDtG0FyEtAyEtGyE0AyD0BtBtB0Ezy0B0AtAzz2Q&cr=548427134&ir=] -> Deletado ¤¤¤ Verificação da MBR : ¤¤¤ +++++ PhysicalDrive0: KINGSTON SUV300S37A240G ATA Device +++++ --- User --- [MBR] 80096092b9d2081036082ecd1c7596cd [BSP] b79e327f6b2b5e14310261cdbef129f1 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 228022 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 1 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 466993152 | Size: 459 MB 2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 467935232 | Size: 450 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: ST320DM000-1BD14C ATA Device +++++ --- User --- [MBR] fc8ba36628012373ed3bdd16b8e14989 [BSP] 52685773c1f147c885b6efb0114a0328 : Compressed BootMgr|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 305243 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK
  12. @elias pereira editado para o correto
  13. @Elias Pereira RogueKiller V12.11.1.0 (x64) [Jun 4 2017] (Free) por Adlice Software mail : http://www.adlice.com/contact/ Feedback : https://forum.adlice.com Site : http://www.adlice.com/download/roguekiller/ Blog : http://www.adlice.com Sistema Operacional : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Iniciou : Modo normal Usuário : Vinicius [Administrador] Started from : C:\Users\Vinicius\Desktop\RogueKiller_portable64.exe Modo : Escanear -- Data : 06/09/2017 09:46:42 (Duration : 00:10:15) ¤¤¤ Processos : 0 ¤¤¤ ¤¤¤ Registro : 6 ¤¤¤ [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5EB8E964-5B46-4F5E-9A35-2CF1012E0BEC} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Encontrado [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {17097DE0-4BD6-4F6B-9742-8CA7720C7B0D} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Encontrado [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5EB8E964-5B46-4F5E-9A35-2CF1012E0BEC} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Encontrado [PUP.HackTool] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {17097DE0-4BD6-4F6B-9742-8CA7720C7B0D} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\KMSpico\KMSELDI.exe|Name=KMS Emulator: KMSELDI.exe| [x] -> Encontrado [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Encontrado [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Encontrado ¤¤¤ Tarefas : 0 ¤¤¤ ¤¤¤ Arquivos : 1 ¤¤¤ [Tr.Gen0][Arquivo] C:\Users\Vinicius\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe -> Encontrado ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Arquivos de hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Carregado) ¤¤¤ ¤¤¤ Navegadores : 1 ¤¤¤ [PUP.Gen1][Chrome:Config] Default [SecurePrefs] : homepage [http://searchfunmoods.com/?f=1&a=pc0102&cd=2XzuyEtN2Y1L1QzutDtD0F0FzyyCtDtCtC0F0EtAzyyD0AzztN0D0Tzu0SzzyEzztN1L2XzutBtFtCzztFyCtFtDtN1L1Czu1E1RtDtCtDtBtN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0AtAzzyEyCtGyC0AtByBtGzztDyEzztG0Czy0BzytGtA0BtDtAtB0A0D0DtCzztB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0DyCzyzz0D0AyEtGtBtByBzytG0F0A0ByDtG0FyEtAyEtGyE0AyD0BtBtB0Ezy0B0AtAzz2Q&cr=548427134&ir=] -> Encontrado ¤¤¤ Verificação da MBR : ¤¤¤ +++++ PhysicalDrive0: KINGSTON SUV300S37A240G ATA Device +++++ --- User --- [MBR] 80096092b9d2081036082ecd1c7596cd [BSP] b79e327f6b2b5e14310261cdbef129f1 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 228022 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 1 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 466993152 | Size: 459 MB 2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 467935232 | Size: 450 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: ST320DM000-1BD14C ATA Device +++++ --- User --- [MBR] fc8ba36628012373ed3bdd16b8e14989 [BSP] 52685773c1f147c885b6efb0114a0328 : Compressed BootMgr|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 305243 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×