[Resolvido] &nbspNão consigo executar programas

[Heder Lopes 0]

Wings, boa noite.

 

Cara, infelizmente estou com o mesmo problema do nosso amigo IuriMattos.

 

Espero que possa me ajudar...

 

Aqui, consegui executar o ComboFix normalmente, segue o relatório:

 

ComboFix 12-06-19.03 - Heder Lopes 19/06/2012 22:42:56.1.4 - x86

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3071.1837 [GMT -3:00]

Executando de: c:\downloads\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\program files\Adobe\Acrobat 8.0\Setup Files\{AC76BA86-1033-0000-7760-000000000003}\_desktop.ini

c:\windows\system32\tmpDF52.tmp

c:\windows\system32\tmpDF53.tmp

d:\musicas\Cesar Menotti e Fabiano Acustico\_desktop.ini

d:\musicas\rap\dj bob esponja\_desktop.ini

d:\musicas\rap\Pasificadores\_desktop.ini

d:\pc backup heder\Pictures\images\Frô\_desktop.ini

d:\pc backup heder\Pictures\vt's\pacotes\---ografico\_desktop.ini

d:\software\adobe master coletion\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\deployment\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeAcrobat8.1en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeAfterEffects8All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeAfterEffects8PresetsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeALMAnchorServiceAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeAssetServices3All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeAUM5.1All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeBridge2All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeBridgeTalkPluginAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeCameraRaw4.0All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeCMapsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorCommonSetAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorEU_ExtraSettingsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorEU_RecommendedAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorJA_ExtraSettingsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorJA_RecommendedAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorNA_ExtraSettingsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorNA_RecommendedAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeColorPhotoshopAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeContribute4.1en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeDefaultLanguageCS3All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeDeviceCentralAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeDeviceCentralAll\oem\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeDreamweaver9en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeEncore3All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeEncore3CodecsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeExtendScriptToolKitAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeExtensionManager1.8All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeFireworks9en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeFlash9en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeFlashPlayer9_axDbg_mul\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeFlashPlayer9_plDbg_mul\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeFlashVideoEncoder2en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeFontsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeHelpViewerAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeIllustrator13en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeInDesign5en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeInDesign5en_US\OEM_\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeInDesign5en_US\OEM_\Adobe InDesign CS3\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeInDesign5en_US\OEM_\Adobe InDesign CS3\Plug-Ins\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeInDesign5en_US\OEM_\Adobe InDesign CS3\Plug-Ins\InCopyWorkflow\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeInDesignCS3IconHandler\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeLinguisticsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeMasterCollectionSuiteen_US_Volume\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeMotionPictureAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobePDFL8All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobePDFSettingsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobePhotoshop10en_US\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobePremierePro3All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobePremierePro3FCAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobePremierePro3ProtectedAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeSINGAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeSoundboothAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeSoundboothCodecsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeStockPhotos1.5All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeTypeSupportAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeVersionCue3All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeVersionCueClient3All\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeVideoProfilesAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeWASAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeWinSoftLinguisticsPluginAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeXMPPanelsAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AdobeXMPPanelsDVAAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\AHVSTIAll\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\payloads\BridgeStartMeeting\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\redist\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\common\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\common\alert\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\common\scripts\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\media\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\media\css\_desktop.ini

d:\software\adobe master coletion\Adobe CS3\resources\media\img\_desktop.ini

d:\software\adobe master coletion\Adobe Partner Programs\_desktop.ini

d:\software\adobe master coletion\Adobe Partner Programs\International\_desktop.ini

d:\software\adobe master coletion\Adobe Partner Programs\North America\_desktop.ini

d:\software\adobe master coletion\Adobe Reader 8\_desktop.ini

d:\software\adobe master coletion\Autoplay\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\DE_DE\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\en_US\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\ES_ES\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\FR_FR\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\IT_IT\_desktop.ini

d:\software\adobe master coletion\Autoplay\langdata\JA_JP\_desktop.ini

d:\software\adobe master coletion\Autoplay\resdata\_desktop.ini

d:\software\adobe master coletion\Crack\_desktop.ini

d:\software\Nero 8\_desktop.ini

d:\software\Nero 8\Nero_8_Ultra_Edition_8.1.1.3_Keygen\_desktop.ini

d:\software\Nero 8\Nero_8_Ultra_Edition_8.1.1.3_Keygen\Ner0_8_KyGen\_desktop.ini

d:\software\Nero 8\Nero_8_Ultra_Edition_8.1.1.3_Keygen\Ner0_8_KyGen\Vista Wallpaper\_desktop.ini

.

.

(((((((((((((((( Arquivos/Ficheiros criados de 2012-05-20 to 2012-06-20 ))))))))))))))))))))))))))))

.

.

2012-06-20 01:33 . 2012-06-20 01:33 56200 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9D5C7D56-4D94-45ED-9018-192D8957A588}\offreg.dll

2012-06-20 01:33 . 2012-06-20 01:33 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9D5C7D56-4D94-45ED-9018-192D8957A588}\MpKsle54d3798.sys

2012-06-20 00:28 . 2012-05-31 03:41 6762896 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9D5C7D56-4D94-45ED-9018-192D8957A588}\mpengine.dll

2012-06-19 23:49 . 2012-05-08 16:40 6737808 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2012-06-14 01:33 . 2012-02-11 15:25 713784 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{77CBC640-6621-463F-94D7-EE3E3244A529}\gapaengine.dll

2012-06-12 21:10 . 2012-06-12 21:15 -------- d-----w- c:\users\Heder Lopes\MegaJogos

2012-06-12 19:45 . 2012-04-28 03:19 177152 ----a-w- c:\windows\system32\drivers\rdpwd.sys

2012-06-12 19:44 . 2012-04-07 11:34 2342400 ----a-w- c:\windows\system32\msi.dll

2012-06-12 19:44 . 2012-05-15 01:12 2342400 ----a-w- c:\windows\system32\win32k.sys

2012-06-12 19:44 . 2012-04-26 04:48 57856 ----a-w- c:\windows\system32\rdpwsx.dll

2012-06-12 19:44 . 2012-04-26 04:48 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll

2012-06-12 19:44 . 2012-04-26 04:43 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe

2012-06-12 19:44 . 2012-05-02 04:52 163328 ----a-w- c:\windows\system32\profsvc.dll

2012-06-12 19:44 . 2012-04-24 04:47 1156608 ----a-w- c:\windows\system32\crypt32.dll

2012-06-12 19:44 . 2012-04-24 04:47 139264 ----a-w- c:\windows\system32\cryptsvc.dll

2012-06-12 19:44 . 2012-04-24 04:47 103936 ----a-w- c:\windows\system32\cryptnet.dll

2012-05-30 16:59 . 2012-05-30 16:59 4966600 ----a-w- c:\program files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll

2012-05-29 11:53 . 2012-05-29 11:58 -------- d-----w- C:\Nova pasta (2)

.

.

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-05-05 14:56 . 2012-04-10 11:38 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-05-05 14:56 . 2012-04-10 11:38 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-04-04 21:47 . 2012-05-14 13:57 772504 ----a-w- c:\windows\system32\npDeployJava1.dll

2012-04-04 21:47 . 2011-01-04 19:42 687504 ----a-w- c:\windows\system32\deployJava1.dll

2012-04-02 04:46 . 2012-05-09 11:56 3902320 ----a-w- c:\windows\system32\ntoskrnl.exe

2012-04-02 04:46 . 2012-05-09 11:56 3958128 ----a-w- c:\windows\system32\ntkrnlpa.exe

2012-03-30 10:29 . 2012-05-09 11:57 1287024 ----a-w- c:\windows\system32\drivers\tcpip.sys

2010-01-26 13:11 . 2011-04-18 01:39 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe

.

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por padrão não são apresentadas.

REGEDIT4

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4DE0953E-490E-4D6F-BDDA-0516C372F3AF}]

2012-01-13 10:08 93088 ----a-w- c:\windows\System32\v9loader.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{742E70CF-7770-412d-86CB-230B322E807C}"= "c:\windows\system32\v9-toolbar.dll" [2012-01-13 567200]

.

[HKEY_CLASSES_ROOT\clsid\{742e70cf-7770-412d-86cb-230b322e807c}]

[HKEY_CLASSES_ROOT\V9_ToolBar.V9_ToolBar.1]

[HKEY_CLASSES_ROOT\TypeLib\{4CB82F8A-DC54-4be9-A5A4-CE8BF8F2962A}]

[HKEY_CLASSES_ROOT\V9_ToolBar.V9_ToolBar]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]

"NitroPC"="c:\program files\NitroPC\NitroPC.exe" [2009-01-11 3477504]

"Facebook Update"="c:\users\Heder Lopes\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-04-09 137536]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]

.

c:\users\Heder Lopes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Facebook Messenger.lnk - c:\users\Heder Lopes\AppData\Local\Facebook\Messenger\2.1.4520.0\FacebookMessenger.exe [2012-5-17 200704]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Acrobat Speed Launcher.lnk]

backup=c:\windows\pss\Adobe Acrobat Speed Launcher.lnk.CommonStartup

backupExtension=.CommonStartup

.

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Acrobat Synchronizer.lnk]

backup=c:\windows\pss\Adobe Acrobat Synchronizer.lnk.CommonStartup

backupExtension=.CommonStartup

.

[HKLM\~\startupfolder\C:^Users^Heder Lopes^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk]

backup=c:\windows\pss\MagicDisc.lnk.Startup

backupExtension=.Startup

.

[HKLM\~\startupfolder\C:^Users^Heder Lopes^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Recorte de tela e Iniciador do OneNote 2007.lnk]

backup=c:\windows\pss\Recorte de tela e Iniciador do OneNote 2007.lnk.Startup

backupExtension=.Startup

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{9F25D1E8-4D40-AD40-3F6E-6BC500AF48D8}

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]

2006-10-23 02:24 620152 ----a-w- c:\program files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]

2010-03-06 05:44 500208 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]

2010-11-10 02:29 12001224 ----a-w- c:\program files\Adobe\Adobe Bridge CS5\Bridge.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]

2010-07-23 00:10 402432 ----a-w- c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

2007-10-23 16:18 202024 ----a-w- c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2011-01-04 21:18 136176 ----atw- c:\users\Heder Lopes\AppData\Local\Google\Update\GoogleUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]

2008-10-25 13:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]

2007-09-20 10:51 1836328 ----a-w- c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

2007-03-01 16:57 153136 ----a-w- c:\program files\Common Files\Nero\Lib\NeroCheck.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

2012-04-05 14:41 17356424 ----a-r- c:\program files\Skype\Phone\Skype.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

2011-11-23 15:45 1242448 ----a-w- d:\modern warfare 3\int\steam.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

2012-01-17 14:07 252296 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]

2010-02-19 15:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-05-30 3048136]

R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-04-05 158856]

R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-05 257696]

R3 br3gmdm;BandLuxe 3.5G HSDPA Adapter - USB;c:\windows\system32\DRIVERS\br3gmdm.sys [2008-12-23 104448]

R3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\DRIVERS\ivusb.sys [2010-03-10 25112]

R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 74112]

R3 NisSrv;Inspeção de Rede da Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-26 214952]

R3 ONDAusbmdm6k;ONDA Proprietary USB Driver;c:\windows\system32\DRIVERS\ONDAusbmdm6k.sys [x]

R3 ONDAusbnmea;ONDA NMEA Port;c:\windows\system32\DRIVERS\ONDAusbnmea.sys [x]

R3 ONDAusbser6k;ONDA Diagnostic Port;c:\windows\system32\DRIVERS\ONDAusbser6k.sys [x]

R3 ONDAusbvoice;ONDA VoUSB Port;c:\windows\system32\DRIVERS\ONDAusbvoice.sys [x]

R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-05 1343400]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S1 MpKsle54d3798;MpKsle54d3798;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9D5C7D56-4D94-45ED-9018-192D8957A588}\MpKsle54d3798.sys [2012-06-20 29904]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-03-07 57688]

S2 BandLuxe_Service;BandLuxe Service;c:\program files\BandRich\BandLuxe HSDPA utility R11\BRService.exe [2009-01-09 87264]

S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]

S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-29 2348352]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272]

S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athur.sys [2010-10-10 1564160]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]

.

.

--- =Outros Serviços/Drivers Na Memória ---

.

*NewlyCreated* - MPKSLE54D3798

.

Conteúdo da pasta 'Tarefas Agendadas'

.

2012-06-20 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 14:56]

.

2012-06-17 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-620647702-3552431333-2235101656-1000Core.job

- c:\users\Heder Lopes\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-09 13:49]

.

2012-06-20 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-620647702-3552431333-2235101656-1000UA.job

- c:\users\Heder Lopes\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-09 13:49]

.

2012-06-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-620647702-3552431333-2235101656-1000Core.job

- c:\users\Heder Lopes\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-04 21:18]

.

2012-06-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-620647702-3552431333-2235101656-1000UA.job

- c:\users\Heder Lopes\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-04 21:18]

.

.

------- Scan Suplementar -------

.

uStart Page = www.v9.com/sof/sof_1334686544_655869

mStart Page = www.v9.com/sof/sof_1334686544_655869

IE: &Download by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/201

IE: &Grab video by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/204

IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

IE: Do&wnload selected by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/203

IE: Down&load all by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/202

IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.1.1

FF - ProfilePath - c:\users\Heder Lopes\AppData\Roaming\Mozilla\Firefox\Profiles\7m72qye3.default\

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - www.v9.com/sof/sof_1334686544_655869

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

.

- - - - ORFÃOS REMOVIDOS - - - -

.

URLSearchHooks-{b80f591e-fe9a-46cf-a13e-180377240586} - (no file)

WebBrowser-{B80F591E-FE9A-46CF-A13E-180377240586} - (no file)

AddRemove-{B531E735-8ED5-4270-ACCE-3809086FBD02}_is1 - d:\resident\bátima\Batman Arkham City\unins000.exe

.

.

.

--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------

.

[HKEY_USERS\S-1-5-21-620647702-3552431333-2235101656-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]

@Allowed: (Read) (RestrictedCode)

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Tempo para conclusão: 2012-06-19 22:55:39

ComboFix-quarantined-files.txt 2012-06-20 01:55

.

Pré-execução: 8.610.385.920 bytes disponíveis

Pós execução: 8.370.061.312 bytes disponíveis

.

- - End Of File - - C6A8AB4AB1053211FFC22811B375CD6C

 

Obrigado!

[wings 22]

Você salvou o Combofix em local errado.

 

Evite fazer uso de ferramentas para a remoção de malwares sem as devidas orientações.... :thumbsup:

 

 

1.

*Baixe o Kaspersky Virus Removal Tool Versão 11 e salve-o no desktop

 

*Execute-o. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

*Aguarde a instalação, aceite o contrato e clique [start]

 

 

 

*Clique

 

 

*Acrescente na pesquisa Meu computador

 

 

 

*Clique

 

 

*Clique [start scanning]

 

*Durante o scan, janelas surgirão.

 

*Caso encontre algo, selecione Apply to all objects e clique [skip]

 

 

 

 

 

 

*Ao término, clique

 

 

*Clique Detected threats > [save] e salve no desktop como log.txt

 

*Cole o relatório log.txt salvo no desktop

[Heder Lopes 0]

Wings, não foi encontrado nada, e nem salvo nenhum log.

 

*Executei o processo 2x.

[wings 22]

1.

*Delete o Kaspersky

 

 

2.

*Baixe o SecurityCheck (...de screen317) e salve-o no desktop (Área de Trabalho)

 

*Execute-o. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

*Tecle [Enter] e cole o relatório apresentado

 

 

3.

*Baixe o OTL (...de Old_Timer) e salve-o no desktop (Área de Trabalho)

 

*Execute-o. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

*Selecione as opções:

Verificar All Users

Verificar Lop

Verificar Purity

 

Imagem do OTL configurado

 

*Clique [Verificar]

 

*Acesse este link

 

*Clique [selecionar arquivo...]

 

*Localize o relatório OTL.txt no desktop (Área de Trabalho) e clique [Abrir]

 

*Clique [upload file]

 

*Cole o link gerado ao lado de Download link:

 

*Repita o procedimento para o relatório Extras.txt

[Heder Lopes 0]

Wings, ai vai o relatório do SecurityCheck:

 

Results of screen317's Security Check version 0.99.24

Windows 7 x86 (UAC is enabled)

Internet Explorer 9

``````````````````````````````

Antivirus/Firewall Check:

avast! Free Antivirus

Microsoft Security Essentials

WMI entry may not exist for antivirus; attempting automatic update.

```````````````````````````````

Anti-malware/Other Utilities Check:

JavaFX 2.1.0

Java 6 Update 22

Java 7 Update 4

Out of date Java installed!

Adobe Flash Player ( 10.0.45.2) Flash Player Out of Date!

````````````````````````````````

Process Check:

objlist.exe by Laurent

Windows Defender MSMpEng.exe

Microsoft Security Essentials msseces.exe

AVAST Software Avast AvastSvc.exe

AVAST Software Avast AvastUI.exe

``````````End of Log````````````

 

E o link do OTL: http://wikisend.com/download/444782/OTL.Txt

 

E dos extras: http://wikisend.com/download/264578/Extras.Txt

 

Obrigado.

[wings 22]

Bom dia Heder Lopes

 

 

Explique melhor o seu problema para que eu possa entender.

[Heder Lopes 0]

Wings, é o seguinte, meu computador a alguns dias vem apresentando muito travamento, porém os programas estavam abrindo normalmente (com um pouco de lag as vezes, mas abrindo).

 

Dai, resolvi passar o nitropc, programa que ja havia passado outras vezes, e que você deve conhecer.

 

Depois disso o computador voltou ao normal, porém quando vou tentar abrir o fifa12 original, que estava rodando perfeitamente ele inicia o processo (como nessa imagem), mas não abre a página de "inicio e configurações" do jogo, às vezes até abre essa janela mas quando clico para iniciar acontece o mesmo com a janela do jogo e o mesmo não abre de forma alguma.

 

Já tentei restauração de sistema mas não adiantou.

 

Obrigado.

[wings 22]

1.

*Baixe o createsrp (...de Ramesh Srinivasan) e salve-o no desktop (Área de Trabalho)

 

*Execute-o e clique [OK]

 

 

2.

*Desinstale o Ask.com Search Assistant

 

 

3.

*Baixe este arquivo e salve-o no Desktop (Área de Trabalho)

 

*Execute-o e cole o relatório apresentado

[Heder Lopes 0]

Wings, boa noite.

 

Segue o log:

 

Windows Registry Editor Version 5.00

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]

@="Bing"

"URL"="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"

"DisplayName"="@ieframe.dll,-12512"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}]

"DisplayName"="Elf 1.13 Customized Web Search"

"URL"="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2857573"

 

Windows Registry Editor Version 5.00

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{E9DAF610-B674-4492-A8F9-5FF572092DC5}"

"DownloadRetries"=dword:00000000

"Version"=dword:00000003

"UpgradeTime"=hex:3a,59,d8,26,a5,e9,cc,01

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]

"SuggestionsURLFallback"="http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IE8SSC&market={language}"

"FaviconURLFallback"="http://www.bing.com/favicon.ico"

"FaviconPath"="C:\\Users\\Heder Lopes\\AppData\\LocalLow\\Microsoft\\Internet Explorer\\Services\\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico"

"DisplayName"="Bing"

"URL"="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}]

"DisplayName"="Ask"

"URL"="http://www.plusnetwork.com/s/?q={searchTerms}&iesrc={referrer:source?}"

"Codepage"=dword:0000fde9

"FaviconPath"="C:\\Users\\Heder Lopes\\AppData\\LocalLow\\Microsoft\\Internet Explorer\\Services\\search_{18EAB056-9057-F224-FD4C-1F6569C4D8D2}.ico"

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]

"DisplayName"="v9"

"URL"="http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}"

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}]

"DisplayName"="Elf 1.13 Customized Web Search"

"URL"="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2857573"

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E9DAF610-B674-4492-A8F9-5FF572092DC5}]

"DisplayName"="Live Search"

"URL"="http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}"

 

 

 

Obrigado!

[wings 22]

Boa noite Heder Lopes

 

 

 

1.

*Baixe o Revo Uninstaller

 

*Extraia para o Desktop (Área de Trabalho)

 

 

2.

*Feche o Internet Explorer

 

 

3.

*Execute o Revo Uninstaller. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

 

*Localize o programa V9Software

 

*Dê duplo clique nele e clique [sim]

 

 

4.

*Execute o OTL. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

*Cole as linhas em azul no espaço abaixo de Exames Personalizados/Correções:

:OTL

FF - prefs.js..browser.startup.homepage: "www.v9.com/sof/sof_1334686544_655869"

[2011/01/04 18:51:08 | 000,001,681 | ---- | M] () -- C:\Users\Heder Lopes\AppData\Roaming\Mozilla\Firefox\Profiles\7m72qye3.default\searchplugins\ask.uk.xml

[2012/04/17 15:16:15 | 000,002,424 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml

O2 - BHO: (V9BHOLoader) - {4DE0953E-490E-4D6F-BDDA-0516C372F3AF} - C:\Windows\System32\v9loader.dll (Beijing Elex Technology Co., Ltd)

O4 - Startup: C:\Users\Heder Lopes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_30339170.lnk = C:\Users\Heder Lopes\AppData\Local\Temp\_uninst_30339170.bat ()

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-21-620647702-3552431333-2235101656-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-21-620647702-3552431333-2235101656-1002\Software\Policies\Microsoft\Internet Explorer\Control Panel present

[2012/06/20 07:50:50 | 000,001,017 | ---- | M] () -- C:\Users\Heder Lopes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_30339170.lnk

 

:Reg

[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}]

[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

 

:Commands

[EMPTYFLASH]

[EMPTYJAVA]

[EMPTYTEMP]

*Clique [Consertar]

 

*Clique [OK] e o PC será reiniciado

 

*Cole o relatório apresentado

[Heder Lopes 0]

Wings, taí:

 

All processes killed

========== OTL ==========

Prefs.js: "www.v9.com/sof/sof_1334686544_655869" removed from browser.startup.homepage

File C:\Users\Heder Lopes\AppData\Roaming\Mozilla\Firefox\Profiles\7m72qye3.default\searchplugins\ask.uk.xml not found.

File C:\Program Files\mozilla firefox\searchplugins\v9.xml not found.

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4DE0953E-490E-4D6F-BDDA-0516C372F3AF}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4DE0953E-490E-4D6F-BDDA-0516C372F3AF}\ not found.

File C:\Windows\System32\v9loader.dll not found.

C:\Users\Heder Lopes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_30339170.lnk moved successfully.

C:\Users\Heder Lopes\AppData\Local\Temp\_uninst_30339170.bat moved successfully.

Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.

Registry key HKEY_USERS\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.

Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.

Registry key HKEY_USERS\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.

Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.

Registry key HKEY_USERS\S-1-5-21-620647702-3552431333-2235101656-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.

Registry key HKEY_USERS\S-1-5-21-620647702-3552431333-2235101656-1002\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.

File C:\Users\Heder Lopes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_30339170.lnk not found.

========== REGISTRY ==========

Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}\ not found.

Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}\ not found.

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"|"{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" /E : value set successfully!

========== COMMANDS ==========

 

[EMPTYFLASH]

 

User: All Users

 

User: Default

->Flash cache emptied: 41620 bytes

 

User: Default User

->Flash cache emptied: 0 bytes

 

User: Heder Lopes

->Flash cache emptied: 157123 bytes

 

User: Public

 

User: Todos os Usuários

 

User: UpdatusUser

->Flash cache emptied: 41620 bytes

 

User: UpdatusUser.HederLopes-PC

->Flash cache emptied: 41620 bytes

 

User: Usuário Padrão

->Flash cache emptied: 0 bytes

 

Total Flash Files Cleaned = 0,00 mb

 

 

[EMPTYJAVA]

 

User: All Users

 

User: Default

 

User: Default User

 

User: Heder Lopes

->Java cache emptied: 6168549 bytes

 

User: Public

 

User: Todos os Usuários

 

User: UpdatusUser

 

User: UpdatusUser.HederLopes-PC

 

User: Usuário Padrão

 

Total Java Files Cleaned = 6,00 mb

 

 

[EMPTYTEMP]

 

User: All Users

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 67 bytes

->Flash cache emptied: 0 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Heder Lopes

->Temp folder emptied: 423711192 bytes

->Temporary Internet Files folder emptied: 18549082 bytes

->Java cache emptied: 0 bytes

->FireFox cache emptied: 45081308 bytes

->Google Chrome cache emptied: 303778446 bytes

->Flash cache emptied: 0 bytes

 

User: Public

->Temp folder emptied: 0 bytes

 

User: Todos os Usuários

 

User: UpdatusUser

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: UpdatusUser.HederLopes-PC

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 67 bytes

->Flash cache emptied: 0 bytes

 

User: Usuário Padrão

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 35246 bytes

RecycleBin emptied: 301267645 bytes

 

Total Files Cleaned = 1.042,00 mb

 

 

OTL by OldTimer - Version 3.2.50.0 log created on 06222012_204009

 

Files\Folders moved on Reboot...

 

Registry entries deleted on Reboot...

[wings 22]

1.

*Delete o SecurityCheck

 

 

2.

*Delete o createsrp

 

 

3.

*Execute o OTL. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

*Clique [Limpeza] > [OK]

 

*O PC será reiniciado

 

 

Informe se resolveu.

[Heder Lopes 0]

Wings, infelizmente, ainda não...

[wings 22]

Leia este link

 

É um risco de segurança....

[Heder Lopes 0]

Wings, percebi que é só com este programa que está acontecendo, tenho o fifa12 pirata, ainda instalado na máquina, tentei abrir ele, e abriu, normal.

 

Somente o original esta dando este problema, vou tentar desinstalar e reinstalar, pois talvez o nitropc deletou alguma pasta que a restauração não conseguiu recuperar.

 

Vou tentar aqui e te respondo amanhã.

 

Valeu demais!!!!

[wings 22]

Wings, percebi que é só com este programa que está acontecendo, tenho o fifa12 pirata, ainda instalado na máquina, tentei abrir ele, e abriu, normal.

 

Somente o original esta dando este problema, vou tentar desinstalar e reinstalar, pois talvez o nitropc deletou alguma pasta que a restauração não conseguiu recuperar.

É uma possibilidade....

 

Caso não consiga, parece ser um bug no programa:

http://www.hardware.com.br/comunidade/fifa-origin-inicio/1235858/

[Heder Lopes 0]

Ae, deu certo!!

 

Valeu demais Wings, consegui dessa forma:

 

"xZandrini wrote:

I solved..Close Origin and go to folder of Origin and rename IGO32.dll to IGO3211.dll restart Origin and enjoy FIFA!"

 

Traduzindo: Feche o Origin e vá até a pasta de instalação do Origin e renomeie IGO32.dll para IGO3211.dll, reinicie o Origin e abra o FIFA."

 

Obrigado pela atenção!

 

Um abraço!

[wings 22]

PROBLEMA RESOLVIDO

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.