[Resolvido] &nbspPc novo, coisas bizarras

aouaslayer · Junho 24, 2013

Olá, comprei meu pc faz poucos dias e comecei a notar coisas estranhas, primeiro: Tela azul com problemas de memória, baixei o hrens boot e usei o memtest86x foram encontrados mais de 850 mil erros na memória, ok a memória será enviada para garantia, mas acho que o hd está com virus por que as vezes quando abro algumas páginas elas ficam o simbolo de que está carregando e nao abrem de jeito nenhum só abrem se eu der f5 umas 5 ou 6x dai abre normal

Fui tentar fazer o log com o Hijackthis mas uma vez não funcionou e pediu pra mim fazer alguma coisa no system32/drivers/etc/hosts só que lá nao consta nada do Hijackthis.

Depois em outra tentativa o scan funcionou normal só que fez em menos de 2 segundos e ficou assim:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:06:38, on 24/06/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16447)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe

C:\Program Files\Ares\Ares.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\APOLONIA CECI PAULI\Downloads\HijackThis.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

O4 - HKLM\..\Run: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe

O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Integrated Clock Controller Service - Intel® ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 8107 bytes

Acho que isso está errado pois foi muito rapido, em outro forum disseram que tinha problema na memória sim, mas poderia haver algum virus tambem.

Eu instalei poucos programas,sem ter instalado o antivirus antes, não lembro como mas entrou um tal de webcake que pesquisando um pouco vi que era um viurs e o removi, mas essas coisas estranhas continuam acontecendo.

DigRam · Junho 24, 2013

Boa Tarde! aouaslayer

|- Baixe: <

> ( ... by sUBs )

|- Salve-o no desktop! ( Área de trabalho! )

|- Ps: Desabilite seu antivírus,antispywares e/ou firewall. ( Menos o do Windows! )

|- Feche algum programa/arquivo que esteja aberto.

|- Feche,também,seu navegador! ( IE,Firefox,Opera ou Google Chrome )

|- Ps: Esteja conectado(a) à Internet. <- Importante!

|- É preciso estar logado no sistema com privilégios de administrador.

|- Execute ComboFix.exe,com um duplo clique.

|- Ps: Instale o "Console de Recuperação",caso seja solicitado! <- Somente XP!

|- Ps: Ficará,portanto,à seu critério optar por sua instalação.

|- Surgindo alguma mensagem de erro,execute ComboFix.exe em Modo de Segurança com rede.

|- Ps: Para completar as remoções,talvez haja necessidade da ferramenta reiniciar o computador.

|- Abrir-se-á a janela Auto Scan.

|- Aguarde a finalização de todas as Etapas.

|- Durante o scan,evite utilizar o mouse ou teclado!

|- Concluindo,poste: C:\ComboFix.txt

"Tentativa de operaçao ilegal em uma chave do Registro marcada para exclusão."

|- Ao ocorrer este erro,basta reiniciar o computador!

|- "ComboFix é uma ferramenta que pode danificar o sistema. Utilize-o,somente,sob supervisão de analistas de segurança."

Abraços!

aouaslayer · Junho 24, 2013

Scan feito, foi bem rapido menos de 5 minutos é normal?

Segue o log:

ComboFix 13-06-24.01 - APOLONIA CECI PAULI 24/06/2013 13:41:43.1.4 - x64

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.8064.6635 [GMT -3:00]

Executando de: c:\users\APOLONIA CECI PAULI\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

(((((((((((((((( Arquivos/Ficheiros criados de 2013-05-24 to 2013-06-24 ))))))))))))))))))))))))))))

.

2013-06-24 16:43 . 2013-06-24 16:43 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-06-23 17:25 . 2013-06-23 17:25 -------- d-----w- C:\found.000

2013-06-23 17:20 . 2013-06-23 17:20 -------- d-----w- c:\program files\CCleaner

2013-06-23 16:25 . 2013-06-23 16:25 99 ----a-w- c:\windows\DeleteOnReboot.bat

2013-06-23 06:04 . 2013-06-23 06:57 -------- d-----w- c:\program files\MyDefrag v4.3.1

2013-06-22 20:44 . 2013-06-22 20:51 -------- d--h--w- c:\windows\msdownld.tmp

2013-06-22 20:07 . 2013-06-22 20:11 -------- d-----w- c:\programdata\DAEMON Tools Lite

2013-06-22 19:07 . 2013-06-22 19:07 -------- d-----w- c:\program files (x86)\Common Files\Skype

2013-06-22 19:07 . 2013-06-22 19:07 -------- d-----r- c:\program files (x86)\Skype

2013-06-22 19:07 . 2013-06-22 19:07 -------- d-----w- c:\programdata\Skype

2013-06-22 17:58 . 2013-05-09 08:59 378432 ----a-w- c:\windows\system32\drivers\aswSP.sys

2013-06-22 17:58 . 2013-05-09 08:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2013-06-22 17:58 . 2013-05-09 08:59 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2013-06-22 17:58 . 2013-05-09 08:59 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2013-06-22 17:58 . 2013-05-09 08:59 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys

2013-06-22 17:58 . 2013-05-09 08:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2013-06-22 17:58 . 2013-05-09 08:59 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys

2013-06-22 17:58 . 2013-05-09 08:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2013-06-22 17:58 . 2013-05-09 08:58 287840 ----a-w- c:\windows\system32\aswBoot.exe

2013-06-22 17:58 . 2013-05-09 08:58 41664 ----a-w- c:\windows\avastSS.scr

2013-06-22 17:58 . 2013-06-22 17:58 -------- d-----w- c:\program files\AVAST Software

2013-06-22 17:57 . 2013-06-22 17:58 -------- d-----w- c:\programdata\AVAST Software

2013-06-22 17:49 . 2013-06-22 17:49 -------- d-----w- c:\programdata\Baidu Security

2013-06-22 17:49 . 2013-06-22 17:49 -------- d-----w- c:\programdata\Baidu

2013-06-22 17:49 . 2013-06-22 17:49 -------- d-----w- c:\program files (x86)\Baidu Security

2013-06-22 17:43 . 2013-06-23 16:25 -------- d-----w- c:\program files (x86)\Desk 365

2013-06-22 17:40 . 2013-06-22 17:40 -------- d-----w- c:\program files (x86)\Common Files\Java

2013-06-22 17:40 . 2013-06-22 17:39 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll

2013-06-22 17:40 . 2013-06-22 17:39 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll

2013-06-22 17:39 . 2013-06-22 17:39 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

2013-06-22 17:39 . 2013-06-22 17:39 -------- d-----w- c:\program files (x86)\Java

2013-06-22 17:36 . 2013-06-22 18:41 -------- d-----w- c:\program files (x86)\DealPlyLive

2013-06-22 17:36 . 2013-06-22 17:36 -------- d-----w- c:\programdata\DealPlyLive

2013-06-22 16:39 . 2013-06-22 16:39 -------- d-----w- c:\programdata\LogiShrd

2013-06-22 16:39 . 2013-06-22 16:39 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys

2013-06-22 16:39 . 2013-06-22 16:39 -------- d-----w- c:\program files\Logitech Gaming Software

2013-06-22 16:36 . 2013-06-22 16:36 -------- d-----w- c:\program files\Ares

2013-06-21 21:06 . 2008-07-31 13:41 68616 ----a-w- c:\windows\SysWow64\XAPOFX1_1.dll

2013-06-21 21:06 . 2008-07-31 13:40 509448 ----a-w- c:\windows\SysWow64\XAudio2_2.dll

2013-06-21 21:06 . 2008-07-12 11:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll

2013-06-21 21:06 . 2008-07-12 11:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll

2013-06-21 21:06 . 2008-07-12 11:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll

2013-06-21 21:05 . 2013-06-21 21:05 -------- d-----w- C:\Riot Games

2013-06-21 20:10 . 2013-06-23 06:57 -------- d-----w- c:\program files\Leauge of legends

2013-06-21 20:08 . 2013-06-21 21:39 -------- d-----w- c:\programdata\PMB Files

2013-06-21 20:08 . 2013-06-21 20:08 -------- d-----w- c:\program files (x86)\Pando Networks

2013-06-20 05:22 . 2013-06-24 14:38 30528 ----a-w- c:\windows\GVTDrv64.sys

2013-06-20 05:22 . 2013-06-24 14:38 25640 ----a-w- c:\windows\gdrv.sys

2013-06-20 05:17 . 2013-06-20 05:17 -------- d-----w- c:\program files (x86)\AMD

2013-06-20 05:16 . 2013-06-20 05:19 -------- d-----w- c:\program files (x86)\GIGABYTE

2013-06-20 05:16 . 2013-06-20 05:16 -------- d-----w- c:\program files\GIGABYTE

2013-06-20 05:16 . 2012-10-25 12:01 22680 ----a-w- c:\windows\system32\drivers\AppleCharger.sys

2013-06-20 05:16 . 2010-04-06 19:30 31272 ----a-w- c:\windows\system32\AppleChargerSrv.exe

2013-06-20 05:11 . 2012-07-18 14:57 15168 ----a-w- c:\windows\system32\drivers\IntelMEFWVer.dll

2013-06-20 05:11 . 2013-06-20 05:22 -------- d-----w- c:\programdata\Intel

2013-06-20 05:11 . 2013-06-20 05:11 -------- d-----w- c:\program files\Intel

2013-06-20 05:11 . 2013-06-20 05:11 -------- d-----w- c:\program files (x86)\Common Files\postureAgent

2013-06-20 05:10 . 2012-07-02 18:16 62784 ----a-w- c:\windows\system32\drivers\HECIx64.sys

2013-06-20 05:10 . 2013-06-20 05:21 -------- d-----w- c:\programdata\Norton

2013-06-20 05:06 . 2013-06-20 05:06 -------- d-----w- c:\program files (x86)\Microsoft.NET

2013-06-20 05:05 . 2013-06-23 06:08 -------- d-----w- c:\program files\Google

2013-06-20 05:05 . 2013-06-22 20:14 -------- d-sh--w- c:\windows\Installer

2013-06-20 05:05 . 2013-06-23 06:57 -------- d-----w- c:\program files (x86)\Google

2013-06-20 04:48 . 2011-09-29 09:30 74272 ----a-w- c:\windows\system32\RtNicProp64.dll

2013-06-20 04:48 . 2011-09-29 09:30 646248 ----a-w- c:\windows\system32\drivers\Rt64win7.sys

2013-06-20 04:48 . 2011-09-29 09:30 107552 ----a-w- c:\windows\system32\RTNUninst64.dll

2013-06-20 04:46 . 2013-06-20 05:17 -------- d-----w- c:\program files (x86)\Common Files\InstallShield

2013-06-20 04:46 . 2012-05-20 16:24 41984 ----a-w- c:\windows\system32\drivers\USB3Ver.dll

2013-06-20 04:45 . 2013-06-20 05:17 -------- d-----w- c:\program files (x86)\Intel

2013-06-20 04:45 . 2012-07-04 02:55 53248 ----a-r- c:\windows\SysWow64\CSVer.dll

2013-06-20 04:45 . 2013-06-20 05:11 -------- d-----w- C:\Intel

2013-06-20 04:45 . 2013-06-23 06:58 -------- d-----w- c:\users\APOLONIA CECI PAULI

2013-06-20 04:39 . 2013-06-23 17:20 -------- d-----w- c:\windows\Panther

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

*Nota* entradas vazias e legítimas por padrão não são apresentadas.

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ares"="c:\program files\Ares\Ares.exe" [2013-02-14 934400]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]

"IMSS"="c:\program files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" [2012-07-19 133440]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"EasyTuneVI"="c:\program files (x86)\GIGABYTE\ET6\ETCall.exe" [2012-07-09 40960]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AutoUpdateDisableNotify"=dword:00000001

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]

R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]

R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]

R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]

R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]

R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]

R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]

S0 aswRvrt;aswRvrt; [x]

S0 aswVmm;aswVmm; [x]

S0 iusb3hcs;Driver de comutação do controlador host Intel® USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]

S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]

S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]

S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]

S3 iusb3hub;Driver para hub Intel® USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]

S3 iusb3xhc;Driver de controlador host eXtensível Intel® USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]

S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]

S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-06-22 14:10 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe

.

Conteúdo da pasta 'Tarefas Agendadas'

.

2013-06-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-20 05:05]

.

2013-06-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-20 05:05]

.

--------- X64 Entries -----------

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-25 170304]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-25 398656]

"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-25 441152]

.

------- Scan Suplementar -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com

mDefault_Page_URL = hxxp://www.google.com

mStart Page = hxxp://www.google.com

mLocal Page = c:\windows\SysWOW64\blank.htm

TCP: DhcpNameServer = 201.21.192.168 201.21.192.163

.

--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Tempo para conclusão: 2013-06-24 13:45:02

ComboFix-quarantined-files.txt 2013-06-24 16:45

.

Pré-execução: 956.906.958.848 bytes disponíveis

Pós execução: 956.849.180.672 bytes disponíveis

.

- - End Of File - - 8AFFC9B00F71C127DC16B37FBDACF0AD

A36C5E4F47E84449FF07ED3517B43A31

DigRam · Junho 24, 2013

Boa Tarde! aouaslayer

Scan feito, foi bem rapido menos de 5 minutos é normal?

|- Sim! Mas na dependência do número de arquivos ou diretórios,esse tempo pode variar.

|- Existem adwares e PUPs em seu PC,que promovem lentidão e redirecionamentos.

-/-

|- Baixe: <

> ( ... par Xplode )

|- Ao acessar,clique na imagem: <

>

|- Ps: Se utilizar o navegador IE9,desabilite o filtro "SmartScreen".

|- Salve-o no desktop!

|- Clique direito em adwcleaner.exe,e escolha sua execução como

|- Ps: Dê início ao scan,clicando em "Remover". <

>

|- Ao concluir,poste o relatório: C:\AdwCleaner[S1].txt

-/-

|- Baixe: < ZHPDiag2 > ( ... de Nicolas Coolman )

|- Salve-o no desktop!

|- Desabilite seu antivírus e execute "ZHPDiag2.exe",para instalar a ferramenta.

|- Confirme todos os passos,ao instalar ZHPDiag.

|- Conclua a instalação,clicando em "Termine".

|- Para Windows Vista,Windows 7 e 8,clique OK ao acionar ZHPDiag Setup.

|- Ps: Após a instalação,além de ZHPScript,estarão disponíveis no desktop:

|- <1> MBRCheck

|- <2> ZHPDiag2

|- <3> ZHPFix

|- Clique no ícone do pergaminho. ( ZHPScript )

|- Clique na seta verde para atualizá-la e/ou baixar sua definição mais recente. ( Your version is update. )

|- Habilite todas as opções de diagnóstico,clicando em "Options".

|- Clique em All.

|- Desmarque,à seguir,as caixinhas de n° O45,O61,O62,O65,O82.

|-

|- Clique em "Calendar" e escolha 30 dias!

|- Clique no botão UAC,para desabilitar essa proteção.

|- Dê início ao scan,clicando no ícone da lupa. ( Start Diagnosis )

|- Ao concluir,clique em "Save Report".

|- Salve-o em um local conveniente! ( ZHPDiag.txt )

<< Log

|- Ps: Não poste,diretamente,esse arquivo texto.

|- Envie-o à Pjjoint.malekal,clicando na seta azul! <

>

|- Ou acesse:

<< Link!

|- Ou acesse:

<< Link!

|- Maiores informações: < |Link| >

A+

aouaslayer · Junho 24, 2013

Não entendi o que fazer com aquele outro programa, quando acabar o scan eu mando o log pra voce ou nao?

Segue o log do Adwcleaner: # AdwCleaner v2.303 - Relatório criado em 24/06/2013 às 14:39:49

# Atualizado em 08/06/2013 por Xplode

# Sistema Operacional : Windows 7 Ultimate Service Pack 1 (64 bits)

# Usuário : APOLONIA CECI PAULI - APOLONIACECIPAU

# Modo de Boot : Normal

# Executado de : C:\Users\APOLONIA CECI PAULI\Desktop\adwcleaner (1).exe

# Opção [Remover]

***** [serviços] *****

***** [Arquivos/Pastas] *****

Pasta Removido : C:\Program Files (x86)\Desk 365

***** [Registro] *****

Chave Removida : HKCU\Software\Softonic

***** [Navegadores] *****

-\\ Internet Explorer v9.0.8112.16447

[OK] Registro está limpo.

-\\ Google Chrome v27.0.1453.116

Arquivo : C:\Users\APOLONIA CECI PAULI\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Arquivo está limpo.

*************************

AdwCleaner[R1].txt - [7713 octets] - [23/06/2013 13:25:00]

AdwCleaner[s1].txt - [6001 octets] - [23/06/2013 13:25:22]

AdwCleaner[s2].txt - [941 octets] - [24/06/2013 14:39:49]

########## EOF - C:\AdwCleaner[s2].txt - [1000 octets] ##########

Bom fiz o do outro programa mas como o seu do tuturial era uma versão mais antiga eu acho nao deu pra desabilitar o UAC:

Segue o link: http://myfile.tk/3/68ZHPDiag.txt

DigRam · Junho 24, 2013

Boa Tarde! aouaslayer

|- Baixe: <

> ( ... by Oleg N. Scherbakov )

|- Salve-o no desktop!

|- Para Windows 7,clique direito em JRT.exe e execute-o ...

|- Aguarde a conclusão e poste o relatório. ( JRT.txt )

-/-

|- Feche programas/pastas que estejam abertas.

|- Feche,também,o navegador!

|- Para Windows Vista,desabilite a UAC.

|- Para Windows Vista ou 7,clique direito em ZHPFix.exe e execute-o como administrador.

|- Selecione e copie estas informações,que estão no Code,para o "Bloco de Notas".

G2 - GCE: Preference [User Data\Default] [fjoijdanhaiflhibkljeklcghcmmfffh] WebCake v.1.0.3 (Désactivé)
[MD5.00000000000000000000000000000000] [APT] [4813] (...) -- C:\Users\APOLONIA CECI PAULI\AppData\Local\Temp\launchie.vbs \\B (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [Desk 365 RunAsStdUser] (...) -- C:\Program Files (x86)\Desk 365\desk365.exe (.not file.)   [0]
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Orphean Key
O4 - GS\SendTo: Desk 365.lnk . (...)  -- C:\Program Files (x86)\Desk 365\desk365.exe (.not file.)
O43 - CFD: 22/06/2013 - 14:36:53 - [0] ----D C:\Users\APOLONIA CECI PAULI\AppData\Local\DealPlyLive
O43 - CFD: 22/06/2013 - 14:49:45 - [0,000] ----D C:\ProgramData\Baidu    => Infection PUP (Adware.BDSearch)
O43 - CFD: 22/06/2013 - 14:49:45 - [0,004] ----D C:\Users\APOLONIA CECI PAULI\AppData\Roaming\Baidu    => Infection PUP (Adware.BDSearch)
O44 - LFC:[MD5.0E44C5A706C30B48E97715C4D21D2914] - 20/06/2013 - 02:19:27 ---A- . (...) -- C:\csb.log   [156]
O44 - LFC:[MD5.59B66989566367F22FD4A5D787263BDA] - 20/06/2013 - 02:15:47 ---A- . (...) -- C:\Install.log   [189]
O44 - LFC:[MD5.5B89CB0024AF6A9BE63712A33E89098F] - 20/06/2013 - 02:14:38 ---A- . (...) -- C:\RHDSetup.log   [3227]
O45 - LFCP:[MD5.DE8D0BB7C71C8B30ADFC767F1A5C53E3] - 20/06/2013 - 01:46:07 ---A- - C:\Windows\Prefetch\DIFX64.EXE-7BC6337F.pf
O45 - LFCP:[MD5.DBD06B3B55F2DE8B3CB3C961232F8BF2] - 20/06/2013 - 01:46:44 ---A- - C:\Windows\Prefetch\DRV64.EXE-47C0C501.pf
O45 - LFCP:[MD5.8229B26A101D883DD722AECA5FF8FD10] - 20/06/2013 - 01:47:08 ---A- - C:\Windows\Prefetch\LSEEF5D.TMP-4087183C.pf
O45 - LFCP:[MD5.F1ADB535AC7832AD734C150510C05AEF] - 20/06/2013 - 02:05:02 ---A- - C:\Windows\Prefetch\RUN.EXE-AD7E1B85.pf
O45 - LFCP:[MD5.C8C3C9056E4D5451008322C5A79D46D2] - 20/06/2013 - 02:05:29 ---A- - C:\Windows\Prefetch\CHROMESTANDALONESETUP_M18_102-8A9790C3.pf
O45 - LFCP:[MD5.4883F8182519A0D97426E0724FB56F2A] - 20/06/2013 - 02:05:42 ---A- - C:\Windows\Prefetch\GIGM_TB_INSTALLER_FOR_EXPRESS-E9D059DE.pf
O45 - LFCP:[MD5.ED385763EE3A37C91D3088760264515C] - 20/06/2013 - 02:09:31 ---A- - C:\Windows\Prefetch\REDIST32.EXE-40BE9185.pf
O45 - LFCP:[MD5.54C63B5F9F8BB3B0E6A594D4507F55CA] - 20/06/2013 - 02:09:51 ---A- - C:\Windows\Prefetch\REDIST64.EXE-97C15A46.pf
O45 - LFCP:[MD5.B8A4BD42CD47731886F7B63E796D0992] - 20/06/2013 - 02:10:02 ---A- - C:\Windows\Prefetch\VCINST.EXE-A7693878.pf
O45 - LFCP:[MD5.8B6F13ECAD3A969DD70AAF71C686E694] - 20/06/2013 - 02:10:46 ---A- - C:\Windows\Prefetch\_IS93A7.EXE-B3CD732C.pf
O45 - LFCP:[MD5.74083CA0C12B0EF08556546CDCF45B8F] - 20/06/2013 - 02:11:05 ---A- - C:\Windows\Prefetch\DRV64.EXE-E3BF9766.pf
O45 - LFCP:[MD5.794E1BEF64DCDCFF3A8F78E29C578A7F] - 20/06/2013 - 02:15:47 ---A- - C:\Windows\Prefetch\RTINSTALLER64.EXE-A5A8CDB4.pf
O45 - LFCP:[MD5.80B7601ED189FCD66511F728605F28B6] - 20/06/2013 - 02:21:36 ---A- - C:\Windows\Prefetch\COINST.EXE-1BFAE30A.pf
O45 - LFCP:[MD5.A0CDA58F84D26D5FB56B98B1EC5B3028] - 20/06/2013 - 02:21:36 ---A- - C:\Windows\Prefetch\INSTCA.EXE-92A425A4.pf
O45 - LFCP:[MD5.13E1970255AA7DC4D174113BFD67830F] - 20/06/2013 - 02:21:36 ---A- - C:\Windows\Prefetch\SEVNTX64.EXE-42D316E6.pf
O45 - LFCP:[MD5.72B10896CD70960851D71E929CEC46BC] - 20/06/2013 - 02:21:36 ---A- - C:\Windows\Prefetch\SYMIMI64.EXE-9EEC0776.pf
 
C:\ProgramData\Baidu    => Infection PUP (Adware.BDSearch)
C:\Users\APOLONIA CECI PAULI\AppData\Roaming\Baidu    => Infection PUP (Adware.BDSearch)
 
proxyfix
emptytemp
emptyclsid
emptyflash
firewallraz
sysrestore

|- Estando com o Bloco de Notas aberto,acione os atalhos: "Ctrl+A" -> "Ctrl+C"

|- Minimize o Bloco de Notas.

|- Clique no menu,"Paste ClipBoard".

|- Clique "GO" -> Oui.

|- Ps: Temos,àcima,sequência de imagens para maior exclarecimento.

|- Poste o relatório: C:\ZHP\ZHPFix[R1].txt

A+

aouaslayer · Junho 24, 2013

Mais uma coisa, o o flash player crasha toda hora e eu tenho que atualizar a pagina

log jrt:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 4.9.4 (05.06.2013:1)

OS: Windows 7 Ultimate x64

Ran by APOLONIA CECI PAULI on 24/06/2013 at 16:10:58,92

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\babylontc.gingerapplication

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\baidu"

Successfully deleted: [Folder] "C:\Users\APOLONIA CECI PAULI\AppData\Roaming\baidu"

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 24/06/2013 at 16:13:22,47

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

o zhp fix foi muito rapido menos de 5 segundos é normal?

log do ZHPfix:

Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013

Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-24-06-2013-16-16-50.txt

Run by APOLONIA CECI PAULI at 24/06/2013 16:16:50

High Elevated Privileges : OK

Windows 7 Ultimate Edition, 64-bit Service Pack 1 (Build 7601)

Recycle Files Deleted

========== Registry Key ==========

DELETED Key: CLSID: [HKLM\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]

========== Registry Value ==========

DELETED Toolbar: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5}

ProxyFix : Proxy killed successfully

DELETED ProxyServer Value

DELETED ProxyEnable Value

DELETED EnableHttp1_1 Value

DELETED ProxyHttp1.1 Value

DELETED ProxyOverride Value

No Value in Standard Profile Register Key FirewallRaz :

No Value in Domain Profile Register Key FirewallRaz :

========== Browser Profiles ==========

NOT FOUND Folder Chrome: C:\Users\APOLONIA CECI PAULI\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh

========== Repertory ==========

No Empty CLSID Directories

DELETED Flash Cookies

========== File ==========

DELETED File: c:\users\apolonia ceci pauli\appdata\local\google\chrome\user data\default\preferences

NOT FOUND File: c:\users\apolonia ceci pauli\appdata\roaming\microsoft\windows\sendto\o4 - gs\sendto: desk 365.lnk

NOT FOUND File: c:\program files (x86)\desk 365\desk365.exe

DELETED File: c:\csb.log

DELETED File: c:\install.log

DELETED File: c:\rhdsetup.log

DELETED File: c:\windows\prefetch\difx64.exe-7bc6337f.pf

DELETED File: c:\windows\prefetch\drv64.exe-47c0c501.pf

DELETED File: c:\windows\prefetch\lseef5d.tmp-4087183c.pf

DELETED File: c:\windows\prefetch\run.exe-ad7e1b85.pf

DELETED File: c:\windows\prefetch\chromestandalonesetup_m18_102-8a9790c3.pf

DELETED File: c:\windows\prefetch\gigm_tb_installer_for_express-e9d059de.pf

DELETED File: c:\windows\prefetch\redist32.exe-40be9185.pf

DELETED File: c:\windows\prefetch\redist64.exe-97c15a46.pf

DELETED File: c:\windows\prefetch\vcinst.exe-a7693878.pf

DELETED File: c:\windows\prefetch\_is93a7.exe-b3cd732c.pf

DELETED File: c:\windows\prefetch\drv64.exe-e3bf9766.pf

DELETED File: c:\windows\prefetch\rtinstaller64.exe-a5a8cdb4.pf

DELETED File: c:\windows\prefetch\coinst.exe-1bfae30a.pf

DELETED File: c:\windows\prefetch\instca.exe-92a425a4.pf

DELETED File: c:\windows\prefetch\sevntx64.exe-42d316e6.pf

DELETED File: c:\windows\prefetch\symimi64.exe-9eec0776.pf

NOT FOUND Folder/File: c:\programdata\baidu

NOT FOUND Folder/File: c:\users\apolonia ceci pauli\appdata\roaming\baidu

DELETED Window Temporary

DELETED Flash Cookies

========== Task ==========

DELETED Task: 4813

DELETED Task: Desk 365 RunAsStdUser

========== Restoration ==========

Restore System Point created succefully

========== Summary ==========

1 : Registry Key

9 : Registry Value

2 : Repertory

26 : File

1 : Browser Profiles

2 : Task

1 : Restoration

End of clean in 00mn 10s

========== Report File ==========

C:\ZHP\ZHPFix[R1].txt - 24/06/2013 16:16:50 [3008]

DigRam · Junho 24, 2013

Boa Tarde! aouaslayer

o zhp fix foi muito rapido menos de 5 segundos é normal?

|- Para computadores com poucos softwares,pastas e/ou arquivos o scan é rápido.

Mais uma coisa, o o flash player crasha toda hora e eu tenho que atualizar a pagina

< uninstaller(794) >

|- Vá à esta página e baixe e execute o desinstalador do Flash Player.

|- Posteriormente,instale-o,novamente,o FP.

-/-

|- Instale o MBAM: <

>

|- Atualize o programa!

|- Desmarque a caixa: "Ativar trial gratuito do Malwarebytes Anti-Malware PRO"

|- Clique "Concluir".

|- Escolha o escaneamento Rápido! >> Verificar!

|- Desabilite programas de proteção,ao executar o malwarebytes.

|- Para Windows Vista ou 7,clique direito no arquivo e execute-o como administrador.

|- Ps: Para determinadas infecções,o programa pedirá reboot. << Confirme!

|- Ao concluir,clique em "Ok" >> "Ver Resultados" >> "Remover Selecionados".

|- Poste,o relatório: mbam-log-2013-xx-xx (00-00-00).txt

|- Indo à janela principal do MBAM,clique na aba Logs para obter o relatório.

A+

aouaslayer · Junho 24, 2013

o download está extremamente lento, tem algum outro link??

DigRam · Junho 24, 2013

o download está extremamente lento, tem algum outro link??

Olá!

|- Está se referindo ao MBAM ou ao FP?

... editando!

< Verifique se o Flash Player está instalado no computador >

|- Verifique se o Flash Player foi instalado corretamente,em seu PC.

|- Ps: Você irá observar uma esfera vermelha percorrendo uma trajetória linear,que indicará se vc possui o Flash Player instalado.

A+

aouaslayer · Junho 24, 2013

MBAM está baixando a mens de 10kbp/s

Outra coisa estranha que lembrei q estava acontecendo, era que as vezes eu colocava algo pra baixar e nao começava nunca de jeito algum.

O adobe flash play, mesmo após ter desintalado ele continua crashando e isso é bem chato por que eu to ouvindo musica no grooveshark e ele para do nada !

DigRam · Junho 24, 2013

MBAM está baixando a mens de 10kbp/s

Outra coisa estranha que lembrei q estava acontecendo, era que as vezes eu colocava algo pra baixar e nao começava nunca de jeito algum.

O adobe flash play, mesmo após ter desintalado ele continua crashando e isso é bem chato por que eu to ouvindo musica no grooveshark e ele para do nada !

Olá!

|- Tente por este link: < MBAM >

|- Ps: Somente darei continuidade amanhâ. O trampo me chama. rsr...

A+

aouaslayer · Junho 24, 2013

fiz o scaneamento completo, segue o log:

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

Versão da Base de Dados: v2013.06.24.07

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

APOLONIA CECI PAULI :: APOLONIACECIPAU [administrador]

24/06/2013 18:30:02

mbam-log-2013-06-24 (18-30-02).txt

Tipo de Verificação: Verificação Completa (C:\|D:\|)

Opções de verificação desativadas: P2P

Objetos escaneados: 289239

Tempo decorrido: 8 minuto(s), 25 segundo(s)

Processos de Memória Detectados: 0