Ir para conteúdo

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

luciovitorio

[Resolvido] &nbspJanela aparecendo quando clico em qualquer link.

Por , em Tópicos Resolvidos (Seguranca & Malwares)

Recommended Posts

luciovitorio    0

luciovitorio
Postado

Olá, boa tarde a todos do forum. Tenho tido problemas com meu PC, algumas vezes quando eu clico em algum link do nada aparece uma janela falando de promoções, ou produtos a venda. Segue a baixo o log do hijack:

 

 

 

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:50:44 PM, on 12/15/2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
D:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\LucioVitorio\Downloads\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: CrossriderApp0039200 - {11111111-1111-1111-1111-110311921100} - C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bho.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AVG_UI] "D:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"
O4 - HKCU\..\Run: [EADM] "d:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJKE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-3010 Series"
O4 - HKCU\..\Run: [steam] "D:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "d:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"
O4 - Startup: Dropbox.lnk = LucioVitorio\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://D:\PROGRA~3\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~3\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{8F9942FF-9B08-45CF-93D0-45C69FE5F858}: NameServer = 192.168.254.254
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: Watchdog do AVG (avgwd) - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Tecnologia de armazenamento Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KNet - Kurupira.net - C:\Windows\svcproxy\svcproxy.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SaveSenseLive Service (savesenselive) (savesenselive) - SaveSense - C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe
O23 - Service: SaveSenseLive Service (savesenselivem) (savesenselivem) - SaveSense - C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SVCProcess (svcprocess) - Kurupira.NET - C:\Windows\svcproxy\svcprocess.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update fanhoosh - fanhoosh - C:\Program Files (x86)\fanhoosh\updatefanhoosh.exe
O23 - Service: Util fanhoosh - fanhoosh - C:\Program Files (x86)\fanhoosh\bin\utilfanhoosh.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\Program Files (x86)\vmware\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12901 bytes

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

Olá.. boa noite.. obrigado pela resposta, porém, após ter seguido o passo-a-passo, no meu PC, logo após ter reinicializado, esta sumindo e aparecendo os ícones na área de trabalho, como se estivesse carregando alguma coisa. Verifiquei tbm que nesse processo, se eu abrir uma janela, ao atualizar ela fecha. Sabe o que eu possa ter feito de errado?

Eu uso o Win8.

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

O problema é que toda janela que abro, quando os ícones somem e aparecem, as janelas se fecham, então não tenho tempo de abrir nada. Vou tentar abrir em modo de segurança pra ver se consigo utilizar a restauração de sistema. Segura ae...

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

Consegui abrir no modo de segurança, e realizei uma restauração no sistema e voltou ao normal. Acha que devo realizar o procedimento novamente? ou tem alguma coisa que quer que eu faça de diferente?

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

:seta: Siga, por gentileza, as dicas do tutorial abaixo:

 

Tutorial do Junkware Removal Tool

 

* Na sua próxima resposta poste, por gentileza, o log do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt juntamente com novo log do Hijackthis e nos diga como está seu PC depois deste procedimento.

 

Ficamos na espera.

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado
Segue os logs como solicitado. E até agora a maquina esta com o funcionamento normal.



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.0.8 (11.05.2013:1)

OS: Windows 8 Pro x64

Ran by LucioVitorio on Sun 12/15/2013 at 23:01:50.54

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~





~~~ Services




~~~ Registry Values


Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1594185952-4280474690-3280135257-1006\Software\Microsoft\Internet Explorer\Main\\Start Page




~~~ Registry Keys


Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\escort.escortiepane

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\escort.escortiepane.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\esrv.funmoodsesrvc

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\esrv.funmoodsesrvc.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\f

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.dskbnd

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.dskbnd.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.funmoodshlpr

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.funmoodshlpr.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoodsapp.appcore

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoodsapp.appcore.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{562B9316-C08A-444A-9482-62080DD851AE}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{562B9317-C08A-444A-9482-62080DD851AE}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\addonsframework.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\buttonsite.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escort.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortapp.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escorteng.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortlbr.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\esrv.exe

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\iminent.webbooster.internetexplorer.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthost.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\dealplylive

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\iminent

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iminent

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iminentwebbooster.browserhelperobject

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iminentwebbooster.browserhelperobject.1

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iminentwebbooster.scriptextender

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iminentwebbooster.scriptextender.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0039200.BHO

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0039200.BHO.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0039200.Sandbox

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0039200.Sandbox.1

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110311921100}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220322922200}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550355925500}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660366926600}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440344924400}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{11111111-1111-1111-1111-110311921100}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220322922200}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550355925500}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660366926600}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440344924400}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0039200.BHO

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0039200.BHO.1

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0039200.Sandbox

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0039200.Sandbox.1

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550355925500}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660366926600}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440344924400}

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311921100}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550355925500}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660366926600}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440344924400}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311921100}

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{279423E8-D04E-4BC7-9DB9-4E94A03448D8}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8ef0781e-bf1a-4c9d-8315-c1cc1f148add}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{8ef0781e-bf1a-4c9d-8315-c1cc1f148add}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ECFCEA8D-502E-40E5-988C-010D4E465D67}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{ECFCEA8D-502E-40E5-988C-010D4E465D67}




~~~ Files


Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-4.1-chromeinstaller.job

Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-4.1-codedownloader.job

Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-4.1-enabler.job

Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-4.1-updater.job




~~~ Folders


Failed to delete: [Folder] "C:\Program Files (x86)\fanhoosh"




~~~ Event Viewer Logs were cleared






~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Sun 12/15/2013 at 23:05:55.69

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~















Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:09:46 PM, on 12/15/2013

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v10.0 (10.00.9200.16537)

Boot mode: Normal


Running processes:

C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe

C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe

C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe

C:\Program Files (x86)\Kurupira\WebFilter\kurupiraWF.exe

C:\Program Files (x86)\Kurupira\WebFilter\rcp.exe

D:\Program Files (x86)\AVG\AVG2014\avgui.exe

C:\Program Files (x86)\Mobogenie\DaemonProcess.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe

D:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

D:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe

D:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\LucioVitorio\Downloads\HiJackThis.exe


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [AVG_UI] "D:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [HP Software Update] D:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe

O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"

O4 - HKCU\..\Run: [EADM] "d:\Program Files (x86)\Origin\Origin.exe" -AutoStart

O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJKE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-3010 Series"

O4 - HKCU\..\Run: [steam] "D:\Program Files (x86)\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [DAEMON Tools Lite] "d:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"

O4 - Startup: Dropbox.lnk = LucioVitorio\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://D:\PROGRA~3\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~3\MICROS~1\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O17 - HKLM\System\CCS\Services\Tcpip\..\{8F9942FF-9B08-45CF-93D0-45C69FE5F858}: NameServer = 192.168.254.254

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe

O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe

O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe

O23 - Service: Watchdog do AVG (avgwd) - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Tecnologia de armazenamento Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: KNet - Kurupira.net - C:\Windows\svcproxy\svcproxy.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SaveSenseLive Service (savesenselive) (savesenselive) - SaveSense - C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe

O23 - Service: SaveSenseLive Service (savesenselivem) (savesenselivem) - SaveSense - C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: SVCProcess (svcprocess) - Kurupira.NET - C:\Windows\svcproxy\svcprocess.exe

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Update fanhoosh - fanhoosh - C:\Program Files (x86)\fanhoosh\updatefanhoosh.exe

O23 - Service: Util fanhoosh - fanhoosh - C:\Program Files (x86)\fanhoosh\bin\utilfanhoosh.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\Program Files (x86)\vmware\vmware-authd.exe

O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe

O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe

O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


--

End of file - 12956 bytes


Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

:) Vários problemas foram removidos.

__________________________

 

:seta: Siga, por gentileza, as dicas deste tutorial para fazer uma verificação completa de seu PC com o Malwarebytes:

http://www.caixadedicas.com/2009/10/tutorial-do-malwarebytes-anti-malware.html'>Tutorial do Malwarebytes Anti-Malware

Na sua próxima resposta poste este log do Malwarebytes juntamente com um novo log do Hijackthis e nos diga como está o seu PC após este procedimento.

Ficamos no aguardo.

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

Segue os logs solicitados, e até o momento nada de anormal no comportamento do PC....

 

 

 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Versão da Base de Dados: v2013.12.16.01
Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16750
LucioVitorio :: KEZZIA [administrador]
12/15/2013 11:22:50 PM
mbam-log-2013-12-15 (23-22-50).txt
Tipo de Verificação: Verificação Completa (C:\|D:\|E:\|F:\|)
Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opções de verificação desativadas: P2P
Objetos escaneados: 758865
Tempo decorrido: 1 hora(s), 16 minuto(s), 16 segundo(s)
Processos de Memória Detectados: 1
C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe (PUP.Optional.SaveSense) -> 4248 -> Será deletado na próxima inicialização.
Módulos de Memória Detectados: 1
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdate.dll (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
Chaves de Registro Detectadas: 68
HKCR\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\Typelib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{8EF0781E-BF1A-4C9D-8315-C1CC1F148ADD} (Adware.fanhoosh) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8EF0781E-BF1A-4C9D-8315-C1CC1F148ADD} (Adware.fanhoosh) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{ECFCEA8D-502E-40E5-988C-010D4E465D67} (PUP.Optional.BestToolbars) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{ECFCEA8D-502E-40E5-988C-010D4E465D67} (PUP.Optional.BestToolbars) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\TypeLib\{B53B842B-5A6E-4E84-9AC7-104B9C54283D} (PUP.Optional.BestToolbar) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 4 (PUP.Optional.7Go.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLive.OneClickCtrl.9 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLive.OneClickProcessLauncherMachine (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLive.OneClickProcessLauncherMachine.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLive.Update3WebControl.3 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CoCreateAsync (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CoCreateAsync.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CoreClass (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CoreClass.1 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CoreMachineClass (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CoreMachineClass.1 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CredentialDialogMachine (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.CredentialDialogMachine.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachine (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassSvc (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.ProcessLauncher (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.ProcessLauncher.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3COMClassService (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3COMClassService.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3WebMachine (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3WebMachine.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3WebMachineFallback (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3WebSvc (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\SaveSenseLiveUpdate.Update3WebSvc.1.0 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\AppID\SaveSenseLive.exe (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\SaveSenseLive (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Plus-HD-4.1 (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\SaveSenseLive (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Google\Chrome\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj (PUP.Optional.SpeedAnalysis3.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9 (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SYSTEM\CurrentControlSet\Services\savesenselive (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SAVESENSELIVE.EXE (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SYSTEM\CurrentControlSet\Services\savesenselivem (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-4.1 (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2} (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
Valores de Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
Itens de Dados no Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
Pastas Detectadas: 13
C:\Users\Kezia\AppData\Local\Temp\Iminent (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1 (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Program Files (x86)\SaveSenseLive\CrashReports (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0 (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Program Files (x86)\SaveSenseLive\Update\Download (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\Install (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\ProgramData\SaveSenseLive (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\ProgramData\SaveSenseLive\Update (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\ProgramData\SaveSenseLive\Update\Log (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Users\Kezia\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Enviado para a Quarentena e deletado com sucesso.
Arquivos Detectados: 149
C:\$Recycle.Bin\S-1-5-21-1594185952-4280474690-3280135257-1001\$RDEHDC4.exe (PUP.Optional.PCMega.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bg.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bho.dll.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bho64.dll.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-buttonutil.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-buttonutil64.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-chromeinstaller.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-codedownloader.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-enabler.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-updater.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bg.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bho.dll (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-bho64.dll (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-buttonutil.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-buttonutil64.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-chromeinstaller.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-codedownloader.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-enabler.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-updater.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Speed Analysis 4\BackgroundHost.exe (PUP.Optional.BestToolbar) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Speed Analysis 4\BackgroundHost64.exe (PUP.Optional.BestToolbar) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Speed Analysis 4\uninst.exe (PUP.Optional.7Go.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000 (PUP.Optional.Somoto) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2RRPZA4J\MinibarFirefox[1].exe (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9CZRJM3B\IminentMinibarIE[1].exe (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R7L16BGP\MinibarChrome[1].exe (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZQY232VV\metro[1].exe (PUP.Optional.Iminent) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Temp\291113_d.exe (PUP.Optional.PCMega.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Temp\291113_y.exe (PUP.Optional.SaveSense.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Temp\P8_v25.exe (Trojan.Dropper.SFX) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Temp\Umbrella.exe367e0aff (PUP.Optional.Iminent) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Local\Temp\RarSFX0\P8_v25.exe (HackTool.Activator) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\Babylon9_setup (1).exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\Babylon9_setup (2).exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\Babylon9_setup.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\IminentSetup{1.MWLwpmaP.1}.exe (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\SoftonicDownloader_para_darkwave-studio.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\SoftonicDownloader_para_hammerhead-rhythm-station.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\SoftonicDownloader_para_otsturntables.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Desktop\iphone\justin\musicas\Downloads\sweetimsetup.exe (PUP.Optional.SweetIM) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Downloads\BAIXANDOOARQUIVOSetup-0OiCZVa.exe (PUP.Optional.Somoto) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Downloads\minecraft-en-win-setup.exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Downloads\SoftonicDownloader_for_minecraft.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\Downloads\Street-Legal-Racing-Redline.exe (PUP.Optional.UltraDownloads) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\AppData\Local\Temp\bitool.dll (PUP.Optional.Somoto) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\AppData\Local\Temp\ICReinstall_foxit-pdf-reader-6040719-gerenciador-32-bits.exe (PUP.Optional.InstallCore.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\AppData\Local\Temp\nsi1556.tmp (PUP.Optional.Somoto.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\AppData\Local\Temp\P8_v25.exe (Trojan.Dropper.SFX) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\AppData\Local\Temp\is1504352489\24809608_stp.EXE (PUP.Optional.Bundler) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\AppData\Local\Temp\RarSFX0\P8_v25.exe (HackTool.Activator) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\Downloads\Ativador Windows 8 Permanente.rar (HackTool.Activator) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\Downloads\DTLite4471-0337.exe (PUP.Optional.OpenCandy) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\LucioVitorio\Downloads\Picasa.exe (PUP.Optional.Firseria) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\Babylon9_setup (1).exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\Babylon9_setup (2).exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\Babylon9_setup.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\IminentSetup{1.MWLwpmaP.1}.exe (PUP.Optional.Iminent.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\SoftonicDownloader_para_darkwave-studio.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\SoftonicDownloader_para_hammerhead-rhythm-station.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\SoftonicDownloader_para_otsturntables.exe (PUP.Optional.Softonic.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\BackDesktop\iphone\justin\musicas\Downloads\sweetimsetup.exe (PUP.Optional.SweetIM) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\ATIV. W8 by ArphanetBR.rar (HackTool.Activator) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\Cloud_labs.exe (PUP.Optional.4Shared) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\DTLite4471-0337.exe (PUP.Optional.OpenCandy) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\FlashPlayerSetup__3149_i89425367_il430345.exe (PUP.Optional.Amonetize.A) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\FreemakeVideoConverterSetup.exe (PUP.Optional.OpenCandy) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\notepad-622-32-bits.exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\pazera-free-mov-to-avi-converter-16-baixaki-32-bits.exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\PowerISO5.exe (PUP.Optional.OpenCandy) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\windows-movie-maker-2012-1643503728-baixaki-32-bits.exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
D:\backDownloads\ATIV. W8 by ArphanetBR\ATIVADOR WINDOWS 8 by ArphanetBR\ARQUIVOS\Ativador Windows 8.exe (HackTool.Activator) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Roaming\speedanalysis.ico (PUP.Optional.SpeedAnalysis2.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-buttonutil.dll (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-buttonutil64.dll (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1-helper.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Plus-HD-4.1.ico (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\Uninstall.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\Plus-HD-4.1\utils.exe (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdate.dll (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_am.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ar.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bg.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bn.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ca.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_cs.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_da.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_de.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_el.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en-GB.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es-419.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_et.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fa.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fi.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fil.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fr.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_gu.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hi.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hr.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hu.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_id.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_is.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_it.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_iw.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ja.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_kn.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ko.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lt.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lv.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ml.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_mr.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ms.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_nl.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_no.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pl.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-BR.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-PT.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ro.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ru.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sk.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sl.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sr.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sv.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sw.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ta.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_te.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_th.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_tr.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_uk.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ur.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_vi.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-CN.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-TW.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psmachine.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psuser.dll (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLive.exe (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveBroker.exe (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHandler.exe (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHelper.msi (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveOnDemand.exe (PUP.Optional.SaveSense) -> Enviado para a Quarentena e deletado com sucesso.
C:\ProgramData\SaveSenseLive\Update\Log\SaveSenseLive.log (PUP.Optional.SaveSense) -> Será deletado na próxima inicialização.
C:\Users\Kezia\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Kezia\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Enviado para a Quarentena e deletado com sucesso.
(fim)
----------------------------------------------------------------------------------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:06:57 AM, on 12/16/2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Kurupira\WebFilter\kurupiraWF.exe
D:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Kurupira\WebFilter\rcp.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\LucioVitorio\Downloads\HiJackThis.exe
C:\Program Files (x86)\Mobogenie\mgusb.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AVG_UI] "D:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"
O4 - HKCU\..\Run: [EADM] "d:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJKE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-3010 Series"
O4 - HKCU\..\Run: [steam] "D:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "d:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"
O4 - Startup: Dropbox.lnk = LucioVitorio\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://D:\PROGRA~3\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~3\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{8F9942FF-9B08-45CF-93D0-45C69FE5F858}: NameServer = 192.168.254.254
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: Watchdog do AVG (avgwd) - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Tecnologia de armazenamento Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KNet - Kurupira.net - C:\Windows\svcproxy\svcproxy.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SVCProcess (svcprocess) - Kurupira.NET - C:\Windows\svcproxy\svcprocess.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update fanhoosh - fanhoosh - C:\Program Files (x86)\fanhoosh\updatefanhoosh.exe
O23 - Service: Util fanhoosh - fanhoosh - C:\Program Files (x86)\fanhoosh\bin\utilfanhoosh.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\Program Files (x86)\vmware\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12484 bytes

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

:) Vários outros problemas foram removidos pelo Malwarebytes.

_____________________________

 

:seta: Siga também as dicas deste tutorial:

http://www.caixadedicas.com/2013/10/remova-adwares-e-outros-problemas-de.html'>Exclua adwares e outras ameaças de seus browsers com o aplicativo Zoek
_________________________
:seta: Após o procedimento acima poste o log do Zoek que estará em C:\zoek-results

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

Olá, boa noite.. desculpe pela demora, pois durante a semana é complicado por causa do trabalho. Segue abaixo o log que o programa gerou...

 

 

 

 

Zoek.exe v5.0.0.0 Updated 16-December-2013
Tool run by LucioVitorio on Mon 12/16/2013 at 22:26:43.06.
Microsoft Windows 8 Pro 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\LucioVitorio\Downloads\zoek\zoek.scr [scan all users] [script inserted]
==== System Restore Info ======================
12/16/2013 10:31:11 PM Zoek.exe System Restore Point Created Succesfully.
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1594185952-4280474690-3280135257-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ECFCEA8D-502E-40E5-988C-010D4E465D67} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110311921100} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311921100} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{ECFCEA8D-502E-40E5-988C-010D4E465D67} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ECFCEA8D-502E-40E5-988C-010D4E465D67} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1594185952-4280474690-3280135257-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{56444A2D-5637-006A-76A7-7A786E7484D7} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util fanhoosh deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util fanhoosh deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update fanhoosh deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update fanhoosh deleted successfully
==== Deleting Files \ Folders ======================
C:\Users\Kezia\daemonprocess.txt deleted
C:\Users\Kezia\.android deleted
C:\PROGRA~2\Speed Analysis 4 deleted
C:\Users\Kezia\AppData\Roaming\SpeedAnalysis4 deleted
C:\Users\LucioVitorio\AppData\Roaming\gns3.ini deleted
C:\ProgramData\Package Cache deleted
C:\Users\Kezia\AppData\Local\Mobogenie deleted
C:\Users\Kezia\AppData\Local\cache deleted
C:\Users\Kezia\AppData\LocalLow\LyricsBuddy-2 deleted
C:\windows\SysNative\tasks\Baidu PC Faster Update deleted
C:\Users\Kezia\Documents\Mobogenie deleted
C:\Users\Kezia\AppData\Roaming\Mozilla\Extensions\speedanalysis04@SpeedAnalysis.com deleted
"C:\Users\LucioVitorio\daemonprocess.txt" deleted
"C:\PROGRA~2\Mobogenie\DaemonProcess.exe" deleted
"C:\PROGRA~2\Mobogenie\libeay32.dll" deleted
"C:\PROGRA~2\Mobogenie\msvcp100.dll" deleted
"C:\PROGRA~2\Mobogenie\msvcr100.dll" deleted
"C:\PROGRA~2\Mobogenie\QtCore4.dll" deleted
"C:\PROGRA~2\Mobogenie\QtGui4.dll" deleted
"C:\PROGRA~2\Mobogenie\QtNetwork4.dll" deleted
"C:\PROGRA~2\Mobogenie\QtSql4.dll" deleted
"C:\PROGRA~2\Mobogenie\QtWebKit4.dll" deleted
"C:\PROGRA~2\Mobogenie\ssleay32.dll" deleted
"C:\PROGRA~2\fanhoosh\updatefanhoosh.exe" deleted
"C:\PROGRA~2\fanhoosh\bin\utilfanhoosh.exe" deleted
"C:\PROGRA~2\Mobogenie" deleted
"C:\PROGRA~2\fanhoosh" not deleted
"C:\PROGRA~2\fanhoosh\bin" not deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{845257EF-A892-484e-8EB0-47F563D75939}"="D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt" [12/16/2013 09:31 PM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{845257EF-A892-484e-8EB0-47F563D75939}"="D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt" [12/16/2013 09:31 PM]
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fjmlmchfbbnehdmgbmpfgebhgiocnall - C:\Program Files (x86)\fanhoosh\fjmlmchfbbnehdmgbmpfgebhgiocnall.crx[]
hlfeafapmnniobpffacckpddijdjgpmj - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRChromePlugin.crx[12/11/2013 01:48 PM]
khcceooakamlehbimaepcldnnlnkcmfk - C:\Program Files (x86)\SaveSense\SaveSense.crx[]
fanhoosh - Kezia - Default\Extensions\fjmlmchfbbnehdmgbmpfgebhgiocnall
HP Product Detection Plugin - LucioVitorio - Default\Extensions\aelbknmfcacjffmgnoaaonhgoghlmlkp
==== Chrome Fix ======================
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_minecraft.en.softonic.com_0.localstorage deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_minecraft.en.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjmlmchfbbnehdmgbmpfgebhgiocnall deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fjmlmchfbbnehdmgbmpfgebhgiocnall_0.localstorage deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fjmlmchfbbnehdmgbmpfgebhgiocnall_0.localstorage-journal deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fjmlmchfbbnehdmgbmpfgebhgiocnall deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiglpdbbmcnncekagalndhicllimchm deleted successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiglpdbbmcnncekagalndhicllimchm deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0.localstorage deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0.localstorage-journal deleted successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0.localstorage deleted successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0.localstorage-journal deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0 deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kpiglpdbbmcnncekagalndhicllimchm deleted successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0 deleted successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kpiglpdbbmcnncekagalndhicllimchm deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\speedanalysis04@SpeedAnalysis.com deleted successfully
==== shortcuts on Users Desktops ======================
C:\Users\Kezia\Desktop\GNS3.lnk - D:\Program Files\GNS3\gns3.exe
C:\Users\Kezia\Desktop\VirtualDJ Home FREE.lnk - C:\Program Files (x86)\VirtualDJ\virtualdj_home.exe
C:\Users\LucioVitorio\Desktop\Dropbox.lnk - C:\Users\LucioVitorio\AppData\Roaming\Dropbox\bin\Dropbox.exe /home
C:\Users\LucioVitorio\Desktop\gabarito_GalaxySIII - Atalho.lnk - D:\BackDesktop\gabarito_GalaxySIII.psd
C:\Users\LucioVitorio\Desktop\gabarito_iphone4_4s - Atalho.lnk - D:\BackDesktop\gabarito_iphone4_4s.psd
C:\Users\LucioVitorio\Desktop\gabarito_iphone5 - Atalho.lnk - D:\BackDesktop\gabarito_iphone5.psd
C:\Users\LucioVitorio\Desktop\GNS3.lnk - D:\Program Files\GNS3\gns3.exe
C:\Users\LucioVitorio\Desktop\µTorrent.lnk -
C:\Users\LucioVitorio\Desktop\Jogos\Battle.net.lnk - D:\Jogos\Battle.net\Battle.net Launcher.exe
C:\Users\LucioVitorio\Desktop\Jogos\Origin.lnk - D:\Program Files (x86)\Origin\Origin.exe
C:\Users\LucioVitorio\Desktop\Jogos\Steam.lnk - D:\Program Files (x86)\Steam\Steam.exe
C:\Users\UpdatusUser\Desktop\GNS3.lnk - D:\Program Files\GNS3\gns3.exe
==== shortcuts on All Users Desktop ======================
C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
C:\Users\Public\Desktop\AVG 2014.lnk - D:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Users\Public\Desktop\Central de Soluções HP.lnk -
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe
C:\Users\Public\Desktop\ImageShack Uploader.lnk - C:\Windows\Installer\{8BCD7AE7-F713-4D50-BAB9-7839B9386870}\ImageShackUploader.exe
C:\Users\Public\Desktop\iSkysoft Video Converter Ultimate.lnk - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\ISVCUSplash.exe
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\Public\Desktop\Picasa 3.lnk - C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
C:\Users\Public\Desktop\VMware Player.lnk - D:\Program Files (x86)\vmware\vmplayer.exe
==== shortcuts in Users Start Menu ======================
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iphone.lnk - C:\Users\Kezia\Desktop\iphone
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ Home FREE.lnk - C:\Program Files (x86)\VirtualDJ\virtualdj_home.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Mobogenie.lnk - C:\Program Files (x86)\Mobogenie\Mobogenie.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Uninstall.lnk - C:\Program Files (x86)\Mobogenie\uninst.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Website.lnk - C:\Program Files (x86)\Mobogenie\Mobogenie.url
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Rip DVD.lnk - C:\Program Files (x86)\VirtualDJ\ripdvd.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Rip Vinyl.lnk - C:\Program Files (x86)\VirtualDJ\ripvinyl.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Setup Audio.lnk - C:\Users\Kezia\Documents\VirtualDJ\VirtualDJ 7 - Audio Setup Guide.pdf
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Setup QuickStart.lnk - C:\Users\Kezia\Documents\VirtualDJ\VirtualDJ 7 - Getting Started.pdf
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Uninstall VirtualDJ Home FREE.lnk - C:\Windows\SysWOW64\msiexec.exe /x {A6AC699F-8315-40CA-8F70-E917494978AB}
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\User Guide.lnk - C:\Users\Kezia\Documents\VirtualDJ\VirtualDJ 7 - User Guide.pdf
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\VirtualDJ Home FREE.lnk - C:\Program Files (x86)\VirtualDJ\virtualdj_home.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -
==== shortcuts in All Users Start Menu ======================
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - D:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageShack Uploader\ImageShack Uploader.lnk - C:\Windows\Installer\{8BCD7AE7-F713-4D50-BAB9-7839B9386870}\ImageShackUploader.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft\Video Converter Ultimate\Como utilizar.lnk - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\VideoConverterUltimateHelp.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft\Video Converter Ultimate\Desinstalar iSkysoft Video Converter Ultimate.lnk - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft\Video Converter Ultimate\Encomendar online.lnk - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\VideoConverterUltimateOrder.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft\Video Converter Ultimate\iSkysoft Gravador de vídeo.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft\Video Converter Ultimate\Página inicia.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft\Video Converter Ultimate\Video Converter Ultimate.lnk - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\ISVCUSplash.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe -tab update
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kurupira\WebFilter\Desinstalar Kurupira WebFilter .lnk - C:\Program Files (x86)\Kurupira\WebFilter\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kurupira\WebFilter\Kurupira WebFilter.lnk - C:\Program Files (x86)\Kurupira\WebFilter\kurupiraWF.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kurupira\WebFilter\Sobre o Kurupira WebFilter.lnk - C:\Program Files (x86)\Kurupira\WebFilter\Sobre o Kurupira WebFilter.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Desinstalar Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm
==== shortcuts in Quick Launch ======================
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VMware Player.lnk - D:\Program Files (x86)\vmware\vmplayer.exe
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VMware Player.lnk - D:\Program Files (x86)\vmware\vmplayer.exe
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk - C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Windows\Libraries
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Kezia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iSkysoft Video Converter Ultimate.lnk - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\VideoConverterUltimate.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk - C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Wireshark.lnk - D:\Program Files (x86)\Wireshark\Wireshark.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Windows\Libraries
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\LucioVitorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk - C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Wireshark.lnk - D:\Program Files (x86)\Wireshark\Wireshark.exe
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VMware Player.lnk - D:\Program Files (x86)\vmware\vmplayer.exe
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fjmlmchfbbnehdmgbmpfgebhgiocnall deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\khcceooakamlehbimaepcldnnlnkcmfk deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7CB5ZR6L will be deleted at reboot
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QLQMLFKQ will be deleted at reboot
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WVAMGA36 will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Kezia\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Users\LucioVitorio\AppData\Local\Temp will be emptied at reboot
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\LUCIOV~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\PROGRA~2\fanhoosh" not found
"C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7CB5ZR6L" not found
"C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QLQMLFKQ" not found
"C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WVAMGA36" not found
==== EOF on Mon 12/16/2013 at 22:43:13.31 ======================

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

Mais problemas foram removidos.
_________________________________

:seta: Clique com o botão direito do mouse no Zoek e selecione 8vq7ma.jpg

*Copie e cole as linhas em marrom no espaço do Zoek

autoclean;

C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Mobogenie.lnk;f
C:\Program Files (x86)\Mobogenie\Mobogenie.exe;f
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Uninstall.lnk;f
C:\Program Files (x86)\Mobogenie\uninst.exe;f
C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Website.lnk;f
C:\Program Files (x86)\Mobogenie\Mobogenie.url;f
C:\Program Files (x86)\Mobogenie;fs

chrdefaults;
chromelook;
ffdefaults;
firefoxlook;
iedefaults;
resetieproxy;
resethosts;
hijackthis;

*Feche o seu navegador e clique [Run Script]

*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!

 

Zoek.exe is running now.

Do not start any browser windows, they will be closed automatically.

Please wait! This window will close when finished.

A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log

*Caso a reinicialização do PC seja solicitada, clique [OK]

*Poste o novo relatório que estará em C:\zoek-results.txt

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

Olá... boa tarde.. Segue os logs:

 

 

Zoek.exe v5.0.0.0 Updated 18-December-2013
Tool run by LucioVitorio on Thu 12/19/2013 at 14:24:29.69.
Microsoft Windows 8 Pro 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\LucioVitorio\Downloads\zoek\zoek.exe [scan all users] [script inserted]
==== Older Logs ======================
C:\zoek-results2013-12-17-004313.log 24811 bytes
==== Reset Hosts File ======================
# Copyright © 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Program Files (x86)\Mobogenie not found
"C:\Program Files (x86)\Mobogenie\Mobogenie.exe" not found
"C:\Program Files (x86)\Mobogenie\uninst.exe" not found
"C:\Program Files (x86)\Mobogenie\Mobogenie.url" not found
"C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Mobogenie.lnk" deleted
"C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Uninstall.lnk" deleted
"C:\Users\Kezia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie\Website.lnk" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{845257EF-A892-484e-8EB0-47F563D75939}"="D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt" [12/16/2013 09:31 PM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{845257EF-A892-484e-8EB0-47F563D75939}"="D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt" [12/16/2013 09:31 PM]
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
hlfeafapmnniobpffacckpddijdjgpmj - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRChromePlugin.crx[12/11/2013 01:48 PM]
Google Docs - Kezia - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Kezia - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Kezia - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Kezia - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
iSkysoft Video Converter Ultimate - Kezia - Default\Extensions\hlfeafapmnniobpffacckpddijdjgpmj
Plus-HD-4.1 - Kezia - Default\Extensions\kpiglpdbbmcnncekagalndhicllimchm
Google Wallet - Kezia - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Kezia - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
HP Product Detection Plugin - LucioVitorio - Default\Extensions\aelbknmfcacjffmgnoaaonhgoghlmlkp
Google Docs - LucioVitorio - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - LucioVitorio - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - LucioVitorio - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - LucioVitorio - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
iSkysoft Video Converter Ultimate - LucioVitorio - Default\Extensions\hlfeafapmnniobpffacckpddijdjgpmj
Google Wallet - LucioVitorio - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - LucioVitorio - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Chrome Fix ======================
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiglpdbbmcnncekagalndhicllimchm deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0.localstorage deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0.localstorage-journal deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_kpiglpdbbmcnncekagalndhicllimchm_0 deleted successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kpiglpdbbmcnncekagalndhicllimchm deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
==== Reset Google Chrome ======================
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Reset IE Proxy ======================
Value(s) before fix:
"ProxyEnable"=dword:00000000
Value(s) after fix:
"ProxyEnable"=dword:00000000
==== HijackThis Entries ======================
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: WsSVRIEHelper - {C7C3BC26-4F2B-4997-A3CB-163337FE975B} - D:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRIEPlugin.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AVG_UI] "D:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"
O4 - HKLM\..\Run: [browserPlugInHelper] d:\Program Files (x86)\iSkysoft\Video Converter Ultimate\BrowserPlugInHelper.exe
O4 - HKCU\..\Run: [EADM] "d:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJKE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-3010 Series"
O4 - HKCU\..\Run: [steam] "D:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "d:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KurupiraNet] "C:\Program Files (x86)\Kurupira\WebFilter\kurupirawf.exe"
O4 - Startup: Dropbox.lnk = LucioVitorio\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://D:\PROGRA~3\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~3\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~3\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\svcproxy.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{8F9942FF-9B08-45CF-93D0-45C69FE5F858}: NameServer = 192.168.254.254
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: Watchdog do AVG (avgwd) - AVG Technologies CZ, s.r.o. - D:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Tecnologia de armazenamento Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KNet - Kurupira.net - C:\Windows\svcproxy\svcproxy.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SVCProcess (svcprocess) - Kurupira.NET - C:\Windows\svcproxy\svcprocess.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\Program Files (x86)\vmware\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Kezia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IQK2HAPP will be deleted at reboot
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NL22IJ2A will be deleted at reboot
C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U4GOJ5FP will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Kezia\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\LucioVitorio\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Kezia\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Users\LucioVitorio\AppData\Local\Temp will be emptied at reboot
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\LUCIOV~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IQK2HAPP" not found
"C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NL22IJ2A" not found
"C:\Users\LucioVitorio\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U4GOJ5FP" not found
==== EOF on Thu 12/19/2013 at 14:33:49.24 ======================

Compartilhar este post

Link para o post
Compartilhar em outros sites

luciovitorio    0

luciovitorio
Postado

Olá.. muito obrigado.. eu achei que só teria um problema, pois apenas ficavam aparecendo uma janela quando clicava em algum link, mais pelo visto foram muitos..

Agradeço pela atenção.. e pode fechar esse tópico..

Obrigado.. Feliz Natal.. e Boas Festas a todos!!!

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

:) Fico feliz que o problema foi resolvido.

 

* Só mais um último procedimento:

 

:seta: Baixe o DelFix (...de Xplode) e salve-o no Desktop (Área de Trabalho)

 

*Execute-o, deixe selecionadas as opções Remove disinfection tools e Purge system restore

 

2vcyx06.png

 

*Clique [Run] e feche o relatório apresentado

 

:seta: Delete o DelFix e o arquivo C:\DelFix.txt

 

Feliz Natal.

 

PROBLEMA RESOLVIDOCaso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post

Link para o post
Compartilhar em outros sites
Ir para a lista de tópicos Tópicos Resolvidos (Seguranca & Malwares)
×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.

  Aceito