CrBonet 0 Denunciar post Postado Abril 27, 2013 Olá pessoal, gostaria que me ajudassem, analisando meu LOG. O meu pc tá travando muito, e do nada ele aparece uma tela azul e se desliga. Isso tem acontecido com bastante frequência. Começou depois de umas atualizações do sistema, não sei se pode ter algo a ver. Agradeço desde já a ajuda. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:00:31, on 26/04/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16476) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskhost.exe C:\Windows\Explorer.EXE C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\Users\Ricardo\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe C:\Program Files\Hotkey\Hotkey.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\TeamViewer\Version7\TeamViewer.exe C:\HJT\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [GfxServiceInstall] C:\Windows\system32\GfxCUIServiceInstall.vbs O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Ricardo\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [skyDrive] "C:\Users\Ricardo\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SISTEMA') O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user') O4 - Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Hotkey.lnk = C:\Program Files\Hotkey\Hotkey.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Incluir no Blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Incluir no Blog no Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: PowerBiosServer - Unknown owner - C:\Program Files\Hotkey\PowerBiosServer.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- End of file - 7912 bytes Compartilhar este post Link para o post Compartilhar em outros sites
DigRam 144 Denunciar post Postado Abril 27, 2013 Bom Dia! CrBonet< http://www.microsoft.com/brasil/resolucao/'>KB2823324 >|- Se for esta a atualização que recebeu,tente a correção lendo o link logo àcima.A+ Compartilhar este post Link para o post Compartilhar em outros sites
CrBonet 0 Denunciar post Postado Abril 28, 2013 Amigo DigRam, tentei fazer cfe estava no link que vc me mandou mas não consegui executar. Pela restauração do sistema, está dando que não tem ponto de restauração disponível para restaurar. Já pelo prompt de comando deu que o comando não existe ou uma das linhas foi digitada incorretamente. O note continua travando muito e do nada se desligando e dando tela azul. Att, Compartilhar este post Link para o post Compartilhar em outros sites
DigRam 144 Denunciar post Postado Abril 28, 2013 Boa Tarde! CrBonet|- Baixe: < > ( ... par Xplode )|- Ao acessar,clique na imagem: |- Ps: Se utilizar o navegador IE9,desabilite o filtro "SmartScreen".|- Salve-o no desktop!|- Clique direito em adwcleaner.exe,e escolha sua execução como |- Ps: Dê início ao scan,clicando em "Remover". < >|- Ao concluir,poste o relatório: C:\AdwCleaner[S1].txt-/-|- Baixe: < > ( ... par Nicolas Coolman )|- Salve-o no desktop!|- Ou clique direto na imagem,e escolha: "Abrir link em uma nova guia"|- Salve-o no desktop!|- Desabilite seu antivírus!|- Caso utilize o Avast,estabeleça esta configuração à SandBox.|- Para Windows Vista ou 7,clique direito e execute o arquivo como |- Aguarde a conclusão do scan e clique em "Copier". <- Aguarde!|- Além do relatório,teremos no desktop: ZHP_uninstall, MBRCheck, ZHPDiag, ZHPFix|- Poste e/ou cole aqui,o link que será gerado,logo após o relatório.|- Ou acesse: |- Ou acesse: |- Maiores informações: < |Link| >A+ Compartilhar este post Link para o post Compartilhar em outros sites
CrBonet 0 Denunciar post Postado Abril 29, 2013 Olá meu amigo, boa noite, fiz como vc disse: O log do adwcleaer segue abaixo: # AdwCleaner v2.300 - Relatório criado em 28/04/2013 às 19:40:26 # Atualizado em 28/04/2013 por Xplode # Sistema Operacional : Windows 7 Professional Service Pack 1 (32 bits) # Usuário : Ricardo - RICARDO-PC # Modo de Boot : Normal # Executado de : C:\Users\Ricardo\Desktop\adwcleaner.exe # Opção [Remover] ***** [serviços] ***** ***** [Arquivos/Pastas] ***** Pasta Removido : C:\ProgramData\Trymedia ***** [Registro] ***** ***** [Navegadores] ***** -\\ Internet Explorer v9.0.8112.16476 [OK] Registro está limpo. -\\ Google Chrome v26.0.1410.64 Arquivo : C:\Users\Ricardo\AppData\Local\Google\Chrome\User Data\Default\Preferences Removida [l.2993] := [ "hxxp://search.babylon.com/?affID=113480&tt=3012_8&babsrc=HP_s[...] ************************* AdwCleaner[s1].txt - [824 octets] - [28/04/2013 19:40:26] ########## EOF - C:\AdwCleaner[s1].txt - [883 octets] ########## Já o ZHPDiag_silent DEU O SEGUINTE ERRO: Le Rapport C:\Users\Ricardo\Desktop\ZHPDiag.txt est introuvable Abraço Compartilhar este post Link para o post Compartilhar em outros sites
DigRam 144 Denunciar post Postado Abril 30, 2013 Boa Noite! CrBonet |- Como possuis o Avast,lance a execução de ZHPDiag,conforme esta imagem. A+ Compartilhar este post Link para o post Compartilhar em outros sites
CrBonet 0 Denunciar post Postado Maio 10, 2013 Desculpe amigo, mas não entendi!!! Compartilhar este post Link para o post Compartilhar em outros sites
DigRam 144 Denunciar post Postado Maio 11, 2013 Desculpe amigo, mas não entendi!!! Olá! CrBonet ###### ---- ---- 5. No prompt de comando, digite o comando abaixo e em seguida pressione a tecla Enter: dism /image:C:\ /remove-package /PackageName:Package_for_KB2823324~31bf3856ad364e35~x86~~6.1.1.1 |- Segundo estas instruções,em relação ao prompt de comando,procure copiar e colar a linha disponibilizada no prompt. >> Aperte Enter. |- Ao concluir,digite exit >> Aperte Enter. |- Reinicie o computador! |- Baixe: < > ( ... de Thisisu ) |- Salve-o no desktop! |- Para Windows 7,clique direito em JRT.exe e execute-o como |- Aguarde a conclusão e poste o relatório. ( JRT.txt ) -/- |- Nas "Recomendações de segurança" de seu antivírus (Avast),à ZHPDiag_silent,procure executar a ferramenta fora da proteção Sandbox. Escolhendo,portanto,a execução normal. A+ Compartilhar este post Link para o post Compartilhar em outros sites
DigRam 144 Denunciar post Postado Julho 21, 2013 Boa Tarde! CrBonet "Tópico Desarquivado à pedido do autor!" |- Nas "Recomendações de segurança" de seu antivírus (Avast),à ZHPDiag_silent,procure executar a ferramenta fora da proteção Sandbox. Escolhendo,portanto,a execução normal. |- Se não me engano,está disponível,apenas,na versão PRO. -/- |- Baixe: < zoek > ( ... by Smeenk ) |- Ou aqui! < zoek.exe > |- Salve-o no desktop! |- Desabilite seu antivírus! |- Para Windows 7,execute zoek.exe como administrador. startupall; autoclean; filesrcm; emptyalltemp; |- Copie e cole estas informações,em vermelho,no campo da ferramenta. |- Clique "Run Script". Zoek.exe is running now. Do not start any browser windows, they will be closed automatically. Please wait! This window will close when finished. A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log |- Surgirão estas informações,pedindo-lhe que aguarde o relatório. |- Aceite e/ou confirme o reboot! zoek.hta failed by unknown error. Restart computer, and try again. |- Ps: Ao obter algum erro,reinicie o PC e execute,novamente,a ferramenta. |- Poste o relatório,que estará em C:\zoek-results.txt << A+ Compartilhar este post Link para o post Compartilhar em outros sites
CrBonet 0 Denunciar post Postado Julho 30, 2013 Boa Noite!!! Obrigado!!! Segue LOG Zoek.exe Version 4.0.0.4 Updated 26-07-2013 Tool run by Ricardo on 30/07/2013 at 1:04:34,99. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Ricardo\Desktop\zoek.exe [script inserted] ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2402085926-1105307840-1394020495-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-2402085926-1105307840-1394020495-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== "C:\Program Files\GUT3A54.tmp" deleted "C:\Program Files\GUM3A53.tmp" deleted "C:\ProgramData\Ask" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Ricardo\AppData\Local\Temp ==== 2013-07-29 00:44:30 4ACE9EEB32DE26548956B5E5841E90CB 347258 ------w- C:\Users\Ricardo\AppData\Local\Temp\jna4718940387455307701.dll 2013-07-19 15:52:45 4ACE9EEB32DE26548956B5E5841E90CB 347258 ------w- C:\Users\Ricardo\AppData\Local\Temp\jna2217172917523944.dll ====== C:\Windows\system32 ===== ====== C:\Windows\system32\drivers ===== 2013-07-13 19:10:23 FAF091AA45A6A6CF3CF94FE065950956 175 ----a-w- C:\Windows\System32\drivers\aswSnx.sys.sum 2013-07-13 19:10:23 3FFBEE694566CADB0A64D8A1ACD7DBCE 175 ----a-w- C:\Windows\System32\drivers\aswSP.sys.sum 2013-07-13 19:10:23 22EA82FFE8CA4965C1994F24C35DC202 175 ----a-w- C:\Windows\System32\drivers\aswVmm.sys.sum ====== C:\Windows\Tasks ====== 2013-07-30 04:04:15 5DA0FA1D3443284E21012B8385A77EC4 3076 ----a-w- C:\Windows\system32\Tasks\{70688F1A-0A9C-4E4F-9F4F-9120B32C7B33} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-07-21 19:32:59 -------- d-----w- C:\Program Files\GVOX ======= C: ===== ====== C:\Users\Ricardo\AppData\Roaming ====== 2013-07-21 19:34:06 -------- d-----w- C:\users\Ricardo\AppData\Roaming\Cycling '74 2013-07-21 19:33:39 -------- d-----w- C:\users\Ricardo\AppData\Local\GVOX ====== C:\Users\Ricardo ====== 2013-07-21 19:33:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Encore 5 ====== C: exe-files == === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2402085926-1105307840-1394020495-1000\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun" "uTorrent"="C:\Program Files\uTorrent\uTorrent.exe /MINIMIZED" "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background" "Facebook Update"="C:\Users\Ricardo\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "avast"="C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui" "ConnectionCenter"="C:\Program Files\Citrix\ICA Client\concentr.exe /startup" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun" "uTorrent"="C:\Program Files\uTorrent\uTorrent.exe /MINIMIZED" "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background" "Facebook Update"="C:\Users\Ricardo\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" ==== Startup Folders ====================== 2013-03-22 18:18:57 1282 ----a-w- C:\users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de tela e Iniciador do OneNote 2007.lnk 2012-11-18 15:24:54 835 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [13/07/2013 16:13] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2402085926-1105307840-1394020495-1000Core.job --a------ C:\Users\Ricardo\AppData\Local\Facebook\Update\FacebookUpdate.exe [14/03/2013 19:11] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2402085926-1105307840-1394020495-1000UA.job --a------ C:\Users\Ricardo\AppData\Local\Facebook\Update\FacebookUpdate.exe [14/03/2013 19:11] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [17/11/2012 15:59] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [17/11/2012 15:59] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.v9.com/?utm_source=b&utm_medium=fft-1&from=fft-1&uid=WDC_WD3200BPVT-24JJ5T0_WD-WXQ1CC1N6245N6245&ts=1367365495" "Default_Page_URL"="http://www.v9.com/?utm_source=b&utm_medium=fft-1&from=fft-1&uid=WDC_WD3200BPVT-24JJ5T0_WD-WXQ1CC1N6245N6245&ts=1367365495" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Ricardo\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Ricardo\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Ricardo\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HUY9QKAM will be deleted at reboot C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OHFSLBB8 will be deleted at reboot C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QXHOVD9B will be deleted at reboot C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VOLSAH2X will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\Ricardo\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Ricardo\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HUY9QKAM" not found "C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OHFSLBB8" not found "C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QXHOVD9B" not found "C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VOLSAH2X" not found ==== EOF on 30/07/2013 at 1:24:07,58 ====================== Compartilhar este post Link para o post Compartilhar em outros sites
DigRam 144 Denunciar post Postado Julho 30, 2013 Boa Tarde! CrBonet |- Seus problemas permanecem? -/- |- Baixe: < > ( ... by OldTimer Tools )|- Clique em Salvar! < >|- Salve-o no desktop! < >|- Duplo clique em OTL.exe -> Executar: |- Execute o OTL,em seu rápido escaneamento. ( Verificação rápida )|- Ps: Para Windows 7,clique direito e execute-o como "Administrador".|- Copie e poste o relatório. ( C:\_OTL\MovedFiles\xxxx2013_xxxxxx.log )|- Poste,também,o relatório "Extras". A+ Compartilhar este post Link para o post Compartilhar em outros sites
wings 22 Denunciar post Postado Agosto 10, 2013 Tópico Arquivado Como o autor não respondeu por mais de 10 dias, o tópico foi arquivado. Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura. Compartilhar este post Link para o post Compartilhar em outros sites