Ir para conteúdo

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

hugopabraham

[Resolvido] Navegadores abrem sozinhos em sites maliciosos

Recommended Posts

Boa tarde!

 

Agradeceria muito a ajuda de vocês.

Há alguns dias os navegadores que utilizo vêm abrindo páginas sem qualquer comando.

Sites como "static.movizu.com" (o endereço completo foi ocultado por segurança) e outros, na maioria começando por "static."

AVG e Avast não encontram nada, porém Avast bloqueia o acesso aos sites.

Segue Log do HijackThis.

 

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 15:55:21, on 25/8/2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

FIREFOX: 31.0 (x86 pt-BR)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
c:\ARQUIV~1\AVG\AVG2014\avgrsx.exe
C:\Arquivos de programas\AVG\AVG2014\avgcsrvx.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\ARQUIV~1\GbPlugin\GbpSv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Arquivos de programas\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Arquivos de programas\Google\Update\1.3.24.15\GoogleCrashHandler.exe
C:\WINDOWS\Explorer.EXE
C:\Arquivos de programas\AVG\AVG2014\avgidsagent.exe
C:\Arquivos de programas\AVG\AVG2014\avgwdsvc.exe
C:\Arquivos de programas\Bonjour\mDNSResponder.exe
C:\Arquivos de programas\Java\jre7\bin\jqs.exe
C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Arquivos de programas\Nero\Update\NASvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Arquivos de programas\AVG\AVG2014\avgnsx.exe
C:\Arquivos de programas\Arquivos comuns\Seagate\Schedule2\schedul2.exe
C:\Arquivos de programas\AVG\AVG2014\avgemcx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Arquivos de programas\Seagate\DiscWizard\DiscWizardMonitor.exe
C:\Arquivos de programas\Seagate\DiscWizard\TimounterMonitor.exe
C:\Arquivos de programas\Arquivos comuns\Seagate\Schedule2\schedhlp.exe
C:\Arquivos de programas\Avast5\AvastUI.exe
C:\Arquivos de programas\DivX\DivX Update\DivXUpdate.exe
C:\Arquivos de programas\AVG\AVG2014\avgui.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe
C:\Arquivos de programas\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe
C:\Arquivos de programas\Google\Drive\googledrivesync.exe
C:\Arquivos de programas\iPod\bin\iPodService.exe
C:\Documents and Settings\Hugo\Dados de aplicativos\Dropbox\bin\Dropbox.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Arquivos de programas\Google\Drive\googledrivesync.exe
C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\Arquivos de programas\Mozilla Firefox\plugin-container.exe
C:\Arquivos de programas\Mozilla Firefox\plugin-container.exe
C:\Arquivos de programas\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Hugo\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {71e129ff-6c2a-4984-818c-7e2c998b8d99} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Arquivos de programas\Avast5\aswWebRepIE.dll
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\ARQUIVOS DE PROGRAMAS\GBPLUGIN\gbieh.dll
O2 - BHO: G-Buster Browser Defense Banco Real - {C41A1C0E-EA6C-11D4-B1B8-444553540007} - C:\Arquivos de programas\GbPlugin\gbiehabn.dll
O2 - BHO: G-Buster Browser Defense Itaú Unibanco - {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\Arquivos de programas\GbPlugin\gbiehuni.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Arquivos de programas\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Arquivos de programas\Arquivos comuns\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [iSUSPM Startup] C:\ARQUIV~1\ARQUIV~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DiscWizardMonitor.exe] C:\Arquivos de programas\Seagate\DiscWizard\DiscWizardMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Arquivos de programas\Seagate\DiscWizard\TimounterMonitor.exe
O4 - HKLM\..\Run: [seagate Scheduler2 Service] "C:\Arquivos de programas\Arquivos comuns\Seagate\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Arquivos de programas\Arquivos comuns\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Arquivos de programas\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Arquivos de programas\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [DivXUpdate] "C:\Arquivos de programas\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [AVG_UI] "C:\Arquivos de programas\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [AdAwareTray] "C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Arquivos de programas\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Arquivos de programas\iTunes\iTunesHelper.exe"
O4 - HKLM\..\RunOnce: [b Register C:\Arquivos de programas\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax] "C:\WINDOWS\system32\rundll32.exe" "C:\Arquivos de programas\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax",DllRegisterServer
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Arquivos de programas\Google\Drive\googledrivesync.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\Hugo\Dados de aplicativos\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\ARQUIV~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe (file missing)
O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp
O15 - Trusted Zone: www.bancobrasil.com.br
O15 - Trusted Zone: www14.bancobrasil.com.br
O15 - Trusted Zone: www2.bancobrasil.com.br
O15 - Trusted Zone: http://www.bancoreal.com.br
O15 - Trusted Zone: http://www.bancosantander.com.br
O15 - Trusted Zone: www.bb.com.br
O15 - Trusted Zone: http://www.bb.com.br
O15 - Trusted Zone: bankline.itau.com.br
O15 - Trusted Zone: clickbanking.itau.com.br
O15 - Trusted Zone: guardiao.itau.com.br
O15 - Trusted Zone: www.itau.com.br
O15 - Trusted Zone: http://www.itau.com.br
O15 - Trusted Zone: *.itau.com.br
O15 - Trusted Zone: http://software.kuaiche.com
O15 - Trusted Zone: wwws.realsecureweb.com.br
O15 - Trusted Zone: www.santander.com.br
O15 - Trusted Zone: http://www.santander.com.br
O15 - Trusted Zone: www.santanderempresarial.com.br
O15 - Trusted Zone: http://www.santanderempresarial.com.br
O15 - Trusted Zone: www.santandernet.com.br
O15 - Trusted Zone: wwws.santandernet.com.br
O15 - Trusted Zone: wwws2.santandernet.com.br
O15 - Trusted Zone: www.santandernetibe.com.br
O15 - Trusted Zone: www.secureweb.com.br
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1256170396031
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} (Java Plug-in 1.6.0_26) -
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: GbPluginAbn - C:\Arquivos de programas\GbPlugin\gbiehAbn.dll
O20 - Winlogon Notify: GbPluginBb - C:\Arquivos de programas\GbPlugin\gbieh.dll
O20 - Winlogon Notify: GbPluginUni - C:\Arquivos de programas\GbPlugin\gbiehUni.dll
O21 - SSODL: EldosMountNotificator-cbfs5 - {F8E00C1D-CF99-4C69-8C0C-1C5811681616} - C:\WINDOWS\system32\cbfsMntNtf5.dll
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {F8E00C1D-CF99-4C69-8C0C-1C5811681616} - C:\WINDOWS\system32\cbfsMntNtf5.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Arquivos de programas\Avast5\AvastSvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Arquivos de programas\AVG\AVG2014\avgidsagent.exe
O23 - Service: Watchdog do AVG (avgwd) - AVG Technologies CZ, s.r.o. - C:\Arquivos de programas\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Serviço do Bonjour (Bonjour Service) - Apple Inc. - C:\Arquivos de programas\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Arquivos de programas\Arquivos comuns\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Gbp Service (GbpSv) - GAS Tecnologia - C:\ARQUIV~1\GbPlugin\GbpSv.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Arquivos de programas\Arquivos comuns\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Arquivos de programas\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Arquivos de programas\Java\jre7\bin\jqs.exe
O23 - Service: Ad-Aware Service 11 (LavasoftAdAwareService11) - Unknown owner - C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Arquivos de programas\Arquivos comuns\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Arquivos de programas\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Arquivos de programas\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia. - C:\Arquivos de programas\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Seagate Scheduler2 Service (SgtSch2Svc) - Seagate - C:\Arquivos de programas\Arquivos comuns\Seagate\Schedule2\schedul2.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Arquivos de programas\Skype\Updater\Updater.exe

--
End of file - 15183 bytes

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa Tarde! hugopabraham

 

|- Desinstale o Spybot e Avast. <<

 

-/-

 

|- Baixe: < Adware Removal Tool > ( ... by techsupportall.com )
|- Salve-a no desktop!

AdwareRemovalTool_Logo_zpsbb2fdbf0.jpg

|- Execute o arquivo Adware-Removal-Tool-v3.5.exe <<

AdwareRemovalTool_Scan_zps8096f94f.jpg

|- Dê início a verificação,clicando em Scan.

AdwareRemovalTool_Ok_zps3849c402.jpg

|- Ao concluir seu prescan,clique OK para ver os resultados e desmarcar possíveis falso positivo.
|- Ps: Cada guia irá mostrar o que será removido!

AdwareRemovalTool_Results_zps5b21f2d7.jp

|- Clique "Next" >> Aguarde!

< Computador >> Windows (C:) >> Program Files >> Adware-Removal-Tool >> Reports >> Repair_Logs_2014_08_dia_h_min_seg.txt <<

|- Poste o relatório!

Abs!

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa Noite! hugopabraham

 

|- Execute a ferramenta em regime de compatibilidade Windows XP ( SP3 ).

|- Verifique se o erro continua! Caso continue,execute a AdwCleaner.

-/-

 

|- Baixe: < AdwCleaner_Logo2_zps580bcd78.jpg > ( ... par Xplode )

|- Ao acessar,clique em "Download Now".
|- Ps: Se utilizar o navegador IE9,desabilite o filtro "SmartScreen".
|- Salve-o no desktop!

< Executar_Administrador.jpg >

|- Clique direito em adwcleaner.exe,e escolha sua execução como administrador.

AdwCleaner_Examinar_zps828ed634.jpg

|- Ps: Dê início ao scan,clicando em "Examinar".

< AdwCleaner_Limpar_zps06005ae9.jpg >

|- Ao concluir,clique "Limpar" >> Ok >> Ok >> Ok.
|- Copie o log ou clique "Relatório".
|- Poste: < C:\AdwCleaner\AdwCleaner[s0].txt >

A+

Compartilhar este post


Link para o post
Compartilhar em outros sites

Testei abrir outros programas, como o Photoshop e Itunes e o mesmo erro apareceu. Cliquei no relatório de erro e diz algo sobre o arquivo gdiplus.dll. Isso começou a acontecer após a desisntalação do Avast e do Spybot. Sabe algo a respeito?

 

Segue log do adwcleaner (o computador reiniciou sozinho após execução dos passos, era pra acontecer isso mesmo? Assim que o Windows iniciou, o log apareceu.

 

# AdwCleaner v3.308 - Relatório criado 25/08/2014 às 19:14:35
# Atualizado 20/08/2014 por Xplode
# Sistema Operacional : Microsoft Windows XP Service Pack 3 (32 bits)
# Usuário : Hugo - PC-DO-HUGO
# Executando de : C:\Documents and Settings\Hugo\Desktop\adwcleaner_3.308.exe
# Opção : Limpar

***** [ Serviços ] *****


***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\baidu
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\SaveSenseLive
Pasta Deletada : C:\Documents and Settings\All Users\Uniblue
Pasta Deletada : C:\Documents and Settings\Hugo\Configurações locais\Dados de aplicativos\Conduit
Pasta Deletada : C:\Documents and Settings\Hugo\Configurações locais\Dados de aplicativos\SaveSenseLive
Pasta Deletada : C:\Documents and Settings\Hugo\Dados de aplicativos\0D0S1L2Z1P1B
Pasta Deletada : C:\Documents and Settings\Hugo\Dados de aplicativos\DigitalSites
[!] Pasta Deletada : C:\Documents and Settings\Hugo\Configurações locais\Dados de aplicativos\Google\Chrome\User

Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Arquivo Deletada : C:\Documents and Settings\Hugo\Dados de

aplicativos\Mozilla\Firefox\Profiles\qo3sx8td.default-1355975139453\.autoreg

***** [ Tarefas ] *****


***** [ Atalhos ] *****


***** [ Registro ] *****

Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper

Objects\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper

Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Valor Deletedo :

HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List

[C:\Arquivos de programas\Samsung\Samsung New PC Studio\npsasvr.exe]
Valor Deletedo :

HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List

[C:\Arquivos de programas\Samsung\Samsung New PC Studio\npsvsvr.exe]
Chave Deletedo : HKCU\Software\mysearchdial.com
Chave Deletedo : HKCU\Software\SaveSenseLive
Chave Deletedo : HKCU\Software\AppDataLow\Software\adawarebp
Chave Deletedo : HKLM\SOFTWARE\AVG Secure Search
Chave Deletedo : HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Chave Deletedo : HKLM\SOFTWARE\Uniblue
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital Sites
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EDA09459-AD7D-4434-BA0C-647F6703EA12}_is1
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Digital Sites
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SaveSense
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{EDA09459-AD7D-4434-BA0C-647F6703EA12}_is1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v31.0 (x86 pt-BR)

[ Arquivo : C:\Documents and Settings\Hugo\Dados de aplicativos\Mozilla\Firefox\Profiles\qo3sx8td.default-1355975139453\prefs.js ]


-\\ Google Chrome v36.0.1985.143

[ Arquivo : C:\Documents and Settings\Hugo\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\preferences ]

Deletedo [search Provider] : hxxp://br.ask.com/web?q={searchTerms}
Deletedo [Extension] : eofcbnmajmjmplflapaojjnihcjkigck

*************************

AdwCleaner[R0].txt - [4842 octets] - [25/08/2014 19:12:54]
AdwCleaner[s0].txt - [4614 octets] - [25/08/2014 19:14:35]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [4674 octets] ##########

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa Noite! hugopabraham

 

|- Verifique se a dll existe em seu computador!

 

-/-

 

|- Baixe: < ZHPDiag2.exe > < NicolasCoolman.jpg > ( ... de Nicolas Coolman )
|- Salve-o no disco local! ( C ou D )
|- Desabilite seu antivírus e execute "ZHPDiag2.exe",para instalar a ferramenta.

ZHPDiag_Pergaminho2_zps6e758639.jpg

|- Execute o ícone do pergaminho. ( ZHPDiag )

ZHPDiagCompleta_zpse85ea35b.jpg

|- Clique "COMPLETA" e aguarde a conclusão!
|- Clique OK e,ao concluir,poste o relatório! ( ZHPDiag.txt )
|- Ps: Como o log será extenso,envie-o à Pjjoint.malekal.

|- Ou acesse: < Cjoint_Logo.jpg >

|- Maiores informações: < |Link| >

A+

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom Dia! hugopabraham

|- Abra o Executar e registre o ficheiro gdiplus.dll <<
|- Ps: Verifique se o mesmo está na pasta System32 <<

regsvr32 gdiplus.dll

|- Ao digitar o comando,clique OK e diga que mensagem apareceu.

-/-

|- Desinstale: Ad-Aware Antivirus
|- Fique,somente,com 1 antivírus!

###
System drive C: has 10 GB (10%) free of 98 GB
###

|- Seu HD está cheio ...perigosamente cheio.

-/-

|- Baixe: < Kenco > ( ... by jpshortstuff )
|- Salve-o no desktop!
|- Para Windows 7,execute Kenco.exe como administrador.
|- Ps: Aparecerá uma tela preta e,à seguir,o relatório.
|- Poste esse log!

-/-

|- Execute este script na ferramenta ZHPFix.
|- Selecione e copie estas informações que estão em vermelho,para o Bloco de Notas.
|- Com o Bloco de Notas aberto,faça: ctrl+a >> ctrl+c ( Selecionar e Copiar )
|- À seguir,minimize o Bloco de Notas.

script zhpfix
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Arquivos de programas\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0]
[MD5.E715412E47D20EB0EBF77B65F9157343] - (...) -- ystem32\RUNDLL32.exe [0] [PID.2312]
P2 - FPN: [HKLM] [@ei.MyWebFace_5a.com/Plugin] - (...) -- C:\Arquivos de programas\MyWebFace_5aEI\Installr\1.bin\NP5aEISB.dll (.not file.) =>PUP.MyWebFace
[MD5.00000000000000000000000000000000] [APT] [At1] (...) -- C:\DOCUME~1\Hugo\DADOSD~1\DIGITA~1\UPDATE~1\UPDATE~1.exe (.not file.) [0]
O4 - HKLM\..\Run: [AdAwareTray] . (...) -- C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe
O4 - HKLM\..\RunOnce: [b Register C:\Arquivos de programas\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax] C:\Arquivos de programas\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax (.not file.)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) -
http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab

O23 - Service: Ad-Aware Service 11 (LavasoftAdAwareService11) . (...) - C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
O39 - APT: Ad-Aware Update (Weekly) - (...) -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job [518]
O39 - APT: Nero Info - (.Nero AG.) -- C:\WINDOWS\Tasks\Nero Info.job [310] =>Hijacker.iHaveNet
O39 - APT: At1 - (...) -- C:\WINDOWS\Tasks\At1.job [412]
O41 - Driver: (Bfilter) . (. - .) - C:\WINDOWS\system32\drivers\Bfilter.sys (.not file.)
O41 - Driver: (Bfmon) . (. - .) - C:\WINDOWS\system32\drivers\Bfmon.sys (.not file.)
O41 - Driver: (Bprotect) . (. - .) - C:\WINDOWS\system32\drivers\Bprotect.sys (.not file.)
O42 - Logiciel: Ad-Aware Antivirus - (.Lavasoft.) [HKLM] -- {CB799B5A-84B8-46A2-BEB5-4FD7D5230361}_AdAwareUpdater
O42 - Logiciel: AdAwareInstaller - (.Lavasoft.) [HKLM] -- {9089F4B9-F055-4CF3-9DCC-7E43FCD24BFD}
O42 - Logiciel: AdAwareUpdater - (.Lavasoft.) [HKLM] -- {CB799B5A-84B8-46A2-BEB5-4FD7D5230361}
O43 - CFD: 25/8/2014 - 18:15:31 - [] ----D C:\Arquivos de programas\Spybot - Search & Destroy
O43 - CFD: 26/11/2010 - 01:26:45 - [] ----D C:\Arquivos de programas\Arquivos comuns\Akamai
O43 - CFD: 25/8/2014 - 17:51:55 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Spybot - Search & Destroy
O43 - CFD: 9/7/2012 - 21:25:45 - [] ----D C:\Arquivos de programas\MyWebFace_5aEI =>PUP.MyWebFace
O43 - CFD: 4/6/2014 - 09:23:18 - [] ----D C:\Arquivos de programas\Freecorder
O44 - LFC:[MD5.7BAC2C6F66524CFC55AE91DDF3ECE2DD] - 12/8/2014 - 20:34:27 ---A- . (...) -- C:\WINDOWS\system32\BASSMOD.dll [10752]
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Hugo\Configurações locais\Temp\Update_87cc.exe" [Enabled] .(...) -- C:\Documents and Settings\Hugo\Configurações locais\Temp\Update_87cc.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Jogos\000 - Instalados\Need for Speed Hot Pursuit\NFS11.exe" [Disabled] .(...) -- C:\Jogos\000 - Instalados\Need for Speed Hot Pursuit\NFS11.exe (.not file.)
O47 - AAKE:Key Export SP - "D:\Call of Duty - Black Ops\BlackOps.exe" [Enabled] .(...) -- D:\Call of Duty - Black Ops\BlackOps.exe (.not file.)
O61 - LFC: 23/8/2014 - 00:39:37 ---A- . (.Microsoft Corporation.) -- C:\Documents and Settings\Hugo\Configurações locais\Temp\_MEI28682\shell32.dll [8462848]
SS - | Auto 3/6/2014 655352 | (LavasoftAdAwareService11) . (...) - C:\Arquivos de programas\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
[HKCU\Software\AppDataLow\Software\adawarebp]
[HKCU\Software\Baidu Security]
[HKLM\Software\Baidu Security]
[HKLM\Software\MyWebFace_5aEI] =>PUP.MyWebFace
[HKLM\Software\MyWebFace_5aEI] =>PUP.MyWebFace
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{116ba71c-8187-4f15-9a1f-c9d6289155d1}] =>Adware.BDSearch
C:\Arquivos de programas\MyWebFace_5aEI =>PUP.MyWebFace^
C:\WINDOWS\Tasks\Nero Info.job =>Hijacker.iHaveNet^
ServiceStop:Bfilter
ServiceStop:Bfmon
ServiceStop:Bprotect
emptytemp
emptyclsid
firewallraz


|- Abra a ferramenta ZHPFix. < ZHPFix_logo2_zpsea0f2aa4.jpg >
|- Clique IMPORTAÇÃO >> OK.
|- Clique "GO".
|- Poste o relatório!

A+

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa tarde!

Encontrei a dll (gdipluss.dll) nos seguintes locais:

140826063637878983.jpg


Tentei registrar mas recebi o erro abaixo:

140826063639190511.jpg


Tentei desinstalar o Ad-aware mas recebi o seguinte erro:

140826063638620460.jpg

Efetuei uma pequena limpeza no disco C:, com espaço disponível atual de 36,9 GB (total de 97,6 GB).


Segue Log do Kenco:

Kenco by jpshortstuff (31.12.09.1)
Log created at 13:25 on 26/08/2014 (Hugo)

========== Task Unlocker ==========

========== KencoScan ==========
C:\Arquivos de programas\Lavasoft\Ad-Aware\SYSTEM3This will perform a scheduled update

with Ad-Aware0Û -> Error retrieving security information [3]!
C:\Arquivos de programas\Lavasoft\Ad-Aware\SYSTEM3This will perform a scheduled update

with Ad-Aware0Û -> Unable to open file [3]!

========== C:\WINDOWS\Tasks ==========
Ad-Aware Update (Weekly).job -> [02:15 27/10/2009] 518 bytes
Adobe Flash Player Updater.job -> [02:55 01/04/2012] 902 bytes
AppleSoftwareUpdate.job -> [20:30 23/02/2010] 300 bytes
At1.job -> [19:38 19/02/2014] 412 bytes
G2MUpdateTask-S-1-5-21-1275210071-1450960922-725345543-1003.job -> [21:56 22/05/2014] 544

bytes
GoogleUpdateTaskMachineCore.job -> [00:56 10/05/2013] 1064 bytes
GoogleUpdateTaskMachineUA.job -> [00:56 10/05/2013] 1068 bytes
Nero Info.job -> [02:16 31/05/2014] 310 bytes

-=E.O.F=-


Recebi erro ao executar o ZHPFix:

14082606364087971.jpg

Muito obrigado!

Compartilhar este post


Link para o post
Compartilhar em outros sites
Boa Tarde! hugopabraham


|- Realize o Check Disk ou ScanDisk,na correção de erros.

|- Baixe e instale o Windows Installer 4.5 <<


-/-


|- Agende,para o próximo boot,o scandisk.

|- Feche programas que estejam abertos!

|- Vá em Iniciar >> Executar >> Digite: cmd >> Clique: OK

|- Na janela do prompt,digite: CD \ >> Aperte Enter!

|- À seguir,digite: chkdsk x: /f /v /r --> Aperte Enter.

|- Muita cautela ao digitar,e observando os espaçamentos!

|- Ps: Onde "x" será a unidade à ser corrigida. ( C,D,E,H,etc... )


<!> Exemplo 1: chkdsk C: /f /v /r << Scandisk na unidade C!


<!> Exemplo 2: chkdsk D: /f /v /r << Scandisk na unidade D!


|- Tecle "S" >> Aperte Enter.

|- O scandisk foi selecionado para o próximo boot.

|- Para sair,digite exit >> Aperte Enter.

|- Ps: Reinicie o computador,para que tenha início o scandisk.


<!> Serão verificados:


# arquivos e pastas

# índices

# descritores de segurança

# dados de arquivos

# espaço disponível no disco


|- Aguarde,pacientemente,a conclusão de todas as etapas.

|- Ao concluir,o computador reiniciará automáticamente.

|- Após isso tente executar ZHPFix,com o script proposto.


Abs!

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa noite.

 

Ainda não consigo abrir os programas.

Segue Log do ZHPFix:

 

Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre :
Run by Hugo at 26/8/2014 19:59:51
High Elevated Privileges : OK
Windows XP Professional Service Pack 3 (Build 2600)

Reciclagem vazia (00mn 48s)

========== Estado dos serviços ==========
Bfilter Parado
Bfmon Parado
Bprotect Parado

========== Chaves do Registo ==========
ELIMINÉ Parcial AdAwareInstaller
ELIMINÉ: Service: LavasoftAdAwareService11
ELIMINÉ: HKCU\Software\AppDataLow\Software\adawarebp

========== Valores do Registo ==========
ELIMINÉ RunValue: AdAwareTray
Nenhum valor presente na chave de exceções do registo (FirewallRaz)

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINA REINICIAR: c:\arquivos de programas\lavasoft\ad-aware antivirus\ad-aware antivirus\11.2.5952.0\adawaretray.exe
ELIMINA REINICIAR: c:\arquivos de programas\lavasoft\ad-aware antivirus\ad-aware antivirus\11.2.5952.0\adawareservice.exe
ELIMINÉ: c:\arquivos de programas\lavasoft\ad-aware antivirus\ad-aware antivirus\11.2.5952.0\adawareservice.exe
ELIMINÉ Temporários windows (39) (1.159.961 octets)


========== Recapitulativo ==========
3 : Chaves do Registo
2 : Valores do Registo
1 : Pastas
4 : Ficheiros
3 : Estado dos serviços


End of clean in 01mn 32s

========== Caminho do ficheiro do relatório ==========
C:\Documents and Settings\Hugo\Dados de aplicativos\ZHP\ZHPFix[R1].txt - 26/8/2014 13:30:36 [3868]
C:\Documents and Settings\Hugo\Dados de aplicativos\ZHP\ZHPFix[R2].txt - 26/8/2014 20:00:39 [1512]

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom Dia! hugopabraham

|- Vá em Iniciar -> Executar.
|- Digite: sfc /scannow >> Clique OK.

|- Ps: Respeite o espaçamento ao digitar!

2.jpg

|- Será pedido a colocação do CD-ROM,do Windows XP,no drive.
|- Aguarde a conclusão do reparo!
|- Reinicie o computador,ao concluir!

-/-

|- Faça novo scan com ZHPDiag,na opção COMPLETA,e poste o relatório!

A+

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa Noite! hugopabraham

|- Verifique quais softwares não abrem e desinstale-os completamente.
|- Após desinstalar,execute o CCleaner na opção Registro para executar limpeza,ao desinstalar cada software.
|- Ps: Não os instale à seguir,aguarde até que eu lhe diga o momento..

-/-

|- Execute este script na ferramenta ZHPFix.
|- Selecione e copie estas informações que estão em vermelho,para o Bloco de Notas.
|- Com o Bloco de Notas aberto,faça: ctrl+a >> ctrl+c ( Selecionar e Copiar )
|- À seguir,minimize o Bloco de Notas.

script zhpfix
sysrestore
emptytemp
[MD5.E715412E47D20EB0EBF77B65F9157343] - (...) -- ystem32\RUNDLL32.exe [0] [PID.3760]
[HKCU\Software\AppDataLow\Software\adawarebp]
[HKCU\Software\AVAST Software]
[HKLM\Software\AVAST Software]
O44 - LFC:[MD5.7D7694067B7CF01C83009CCD71D34379] - 26/8/2014 - 19:21:56 ---A- . (...) -- C:\WINDOWS\regopt.log [1628]
O44 - LFC:[MD5.FC4BF14B28535BC2B0B78494BA4CAB8B] - 26/8/2014 - 19:27:35 ---A- . (...) -- C:\WINDOWS\cmsetacl.log [200]
O44 - LFC:[MD5.E6D83435DDE3E070D81882A135E2044F] - 26/8/2014 - 19:28:23 ---A- . (...) -- C:\WINDOWS\DtcInstall.log [117]
O44 - LFC:[MD5.5DE18F1F50C385AFDEB0ED1E97F6182E] - 26/8/2014 - 19:29:19 ---A- . (...) -- C:\WINDOWS\sessmgr.setup.log [1041]
O44 - LFC:[MD5.E8B1BB52564AA94E3F554027A296ED39] - 26/8/2014 - 20:11:04 ---A- . (...) -- C:\WINDOWS\COM+.log [1566]
O44 - LFC:[MD5.AC6DB4F4926152FADA2A9EA24E9670FB] - 27/8/2014 - 17:29:55 ---A- . (...) -- C:\WINDOWS\KB2423089.log [145411]
O44 - LFC:[MD5.59B7F8554B1DB57B16DCA2C177C6030E] - 27/8/2014 - 17:30:12 ---A- . (...) -- C:\WINDOWS\KB2584146.log [240943]
O44 - LFC:[MD5.A8DCA447C25EA62F7068E69FACFD4C25] - 27/8/2014 - 17:30:18 ---A- . (...) -- C:\WINDOWS\KB2914368.log [145525]
O44 - LFC:[MD5.3A987374B371A8DC17A85E70EE2A773A] - 27/8/2014 - 17:30:22 ---A- . (...) -- C:\WINDOWS\KB2566454.log [147856]
O44 - LFC:[MD5.DC5246E4382453FE81AE5CE15F0E8EA1] - 27/8/2014 - 17:30:28 ---A- . (...) -- C:\WINDOWS\KB2620712.log [242354]
O44 - LFC:[MD5.1297B333C92AF5FF27BD9D5A570A1B68] - 27/8/2014 - 17:30:47 ---A- . (...) -- C:\WINDOWS\KB2393802.log [151801]
O44 - LFC:[MD5.77E94BFEA7606F2E2D7384D028B53319] - 27/8/2014 - 17:30:52 ---A- . (...) -- C:\WINDOWS\KB2478960.log [249796]
O44 - LFC:[MD5.67542617ADF6877186E061960A5E8675] - 27/8/2014 - 17:31:11 ---A- . (...) -- C:\WINDOWS\KB2676562.log [253504]
O44 - LFC:[MD5.2FC30B290C1B866FF790DAEEEAC3BF7F] - 27/8/2014 - 17:31:21 ---A- . (...) -- C:\WINDOWS\KB2509553.log [254165]
O44 - LFC:[MD5.226D143988E42C6709E2077B7A5B0087] - 27/8/2014 - 17:31:27 ---A- . (...) -- C:\WINDOWS\KB2813345.log [255553]
O44 - LFC:[MD5.5C7BF04A5213A5F7E37E903945321CDC] - 27/8/2014 - 17:31:34 ---A- . (...) -- C:\WINDOWS\KB2862330.log [155659]
O44 - LFC:[MD5.25E251AA0A4A451FC6557B110C41C78E] - 27/8/2014 - 17:31:53 ---A- . (...) -- C:\WINDOWS\KB2723135-v2.log [157426]
O44 - LFC:[MD5.1275F8B7091E1BC416D6900DFBDAE91F] - 27/8/2014 - 17:32:25 ---A- . (...) -- C:\WINDOWS\KB2727528.log [259746]
O44 - LFC:[MD5.673AC66D297C8D1AECFBFEEC8DF9503F] - 27/8/2014 - 17:32:46 ---A- . (...) -- C:\WINDOWS\KB2705219-v2.log [261791]
O44 - LFC:[MD5.0569C7D861AF3AAF2BDA18E679BF53F8] - 27/8/2014 - 17:32:51 ---A- . (...) -- C:\WINDOWS\KB2619339.log [262029]
O44 - LFC:[MD5.5F538C86074449B4E42A30F892F6B79F] - 27/8/2014 - 17:32:59 ---A- . (...) -- C:\WINDOWS\KB2698365.log [161863]
O44 - LFC:[MD5.E67BDBD56DBD7626EE66F68F539D13EC] - 27/8/2014 - 17:33:04 ---A- . (...) -- C:\WINDOWS\KB2892075.log [260640]
O44 - LFC:[MD5.807F53B7CD88E33BAA17758EF9C10D2D] - 27/8/2014 - 17:33:20 ---A- . (...) -- C:\WINDOWS\KB2803821-v2.log [159719]
O44 - LFC:[MD5.307D33F0AD68D8DAB5E79BE171D47755] - 27/8/2014 - 17:33:25 ---A- . (...) -- C:\WINDOWS\KB2506212.log [264452]
O44 - LFC:[MD5.C1D59AEEC5F394916DD308A53FBD1DF3] - 27/8/2014 - 17:33:40 ---A- . (...) -- C:\WINDOWS\KB2749655.log [270702]
O44 - LFC:[MD5.99FCF328BCE004976DF8CDE8788275A5] - 27/8/2014 - 17:33:51 ---A- . (...) -- C:\WINDOWS\KB2508429.log [272494]
O44 - LFC:[MD5.A53FE5FC260C5E380CC729BCD5C6AE9A] - 27/8/2014 - 17:34:03 ---A- . (...) -- C:\WINDOWS\KB2419632.log [281196]
O44 - LFC:[MD5.A6B285183D6A91B5DE81C501672CCEBA] - 27/8/2014 - 17:34:12 ---A- . (...) -- C:\WINDOWS\KB2757638.log [287837]
O44 - LFC:[MD5.3F768EFF660CC3E4F19C02CD5553F1C5] - 27/8/2014 - 17:34:26 ---A- . (...) -- C:\WINDOWS\KB2603381.log [170757]
O44 - LFC:[MD5.408F07F1F1044BE3BE935C193C0A40FA] - 27/8/2014 - 17:34:31 ---A- . (...) -- C:\WINDOWS\KB2820917.log [288590]
O44 - LFC:[MD5.D9B229FD442DFEF5A9B6B61557A680BC] - 27/8/2014 - 17:34:46 ---A- . (...) -- C:\WINDOWS\KB2868038.log [173274]
O44 - LFC:[MD5.EEAE4A17AF37F75A6A03BB550633B2E8] - 27/8/2014 - 17:34:55 ---A- . (...) -- C:\WINDOWS\KB2570947.log [171335]
O44 - LFC:[MD5.9F43CB0199F215C93B57A3271C6DD0A2] - 27/8/2014 - 17:35:02 ---A- . (...) -- C:\WINDOWS\KB2807986.log [171913]
O44 - LFC:[MD5.211E5D2382E39FFD0F81310787EF9DCF] - 27/8/2014 - 17:35:08 ---A- . (...) -- C:\WINDOWS\KB2859537.log [289184]
O44 - LFC:[MD5.A55BDFC0B66F35D89CC523AF2090CC86] - 27/8/2014 - 17:35:12 ---A- . (...) -- C:\WINDOWS\KB2876331.log [288243]
O44 - LFC:[MD5.6261D9D465B90D4DDC6BB8B9EC148E92] - 27/8/2014 - 17:35:24 ---A- . (...) -- C:\WINDOWS\KB2850869.log [288758]
O44 - LFC:[MD5.C4FB4FCBE7C2196E541BD8D168799F2F] - 27/8/2014 - 17:35:32 ---A- . (...) -- C:\WINDOWS\KB2964358.log [171223]
O44 - LFC:[MD5.0DF30875D10BD019233F5E9C1110EB3F] - 27/8/2014 - 17:35:44 ---A- . (...) -- C:\WINDOWS\KB2535512.log [173133]
O44 - LFC:[MD5.2EB730A093B142B6CC62061A66B7AD49] - 27/8/2014 - 17:35:48 ---A- . (...) -- C:\WINDOWS\KB2770660.log [291302]
O44 - LFC:[MD5.82698F1B629700877D5AB5E9DEF5FB7F] - 27/8/2014 - 17:36:09 ---A- . (...) -- C:\WINDOWS\KB2592799.log [173614]
O44 - LFC:[MD5.DFD9A82D73384E0C92E3B671DBF6DF9C] - 27/8/2014 - 17:36:13 ---A- . (...) -- C:\WINDOWS\KB2862152.log [291226]
O44 - LFC:[MD5.1B8FB5D55BC1B2788848EE55C1338535] - 27/8/2014 - 17:36:29 ---A- . (...) -- C:\WINDOWS\KB2936068.log [295440]
O44 - LFC:[MD5.0EFBF24C88DC201EF3C189F8938A2DD9] - 27/8/2014 - 17:36:43 ---A- . (...) -- C:\WINDOWS\KB2719985.log [299670]
O44 - LFC:[MD5.AB12847BD26172C4015A0AA5676F9E96] - 27/8/2014 - 17:36:55 ---A- . (...) -- C:\WINDOWS\KB2864063.log [298932]
O44 - LFC:[MD5.B1E893974C19D63F98DD4B50027DD350] - 27/8/2014 - 17:37:02 ---A- . (...) -- C:\WINDOWS\KB2930275.log [299717]
O44 - LFC:[MD5.6FC284BED09ED4C9545E2362B979937B] - 27/8/2014 - 17:37:17 ---A- . (...) -- C:\WINDOWS\KB2483185.log [302680]
O44 - LFC:[MD5.E071CDDA2ACF2F13BDBD8E59FF03EE1C] - 27/8/2014 - 17:37:28 ---A- . (...) -- C:\WINDOWS\KB2876217.log [300209]
O44 - LFC:[MD5.57055364738D903B6B53C0D79DFAD090] - 27/8/2014 - 17:37:33 ---A- . (...) -- C:\WINDOWS\KB2347290.log [302464]
O44 - LFC:[MD5.BED9D1A03DC69013585BA2CBE60BDC6A] - 27/8/2014 - 17:37:37 ---A- . (...) -- C:\WINDOWS\KB2904266.log [178057]
O44 - LFC:[MD5.0575D574E54E08A8E829DA9099E9DF80] - 27/8/2014 - 17:37:37 ---A- . (...) -- C:\WINDOWS\system32\TZLog.log [63496]
O44 - LFC:[MD5.CD612489D13C98D04433CD212FE56A46] - 27/8/2014 - 17:37:57 ---A- . (...) -- C:\WINDOWS\KB2510581.log [308159]
O44 - LFC:[MD5.B742F2CCEC6F901D9735CF820D6A5200] - 27/8/2014 - 17:38:08 ---A- . (...) -- C:\WINDOWS\KB2780091.log [306262]
O44 - LFC:[MD5.6201955E4C7047B354365E9D117DA94A] - 27/8/2014 - 17:38:12 ---A- . (...) -- C:\WINDOWS\KB2507938.log [306313]
O44 - LFC:[MD5.4BB035EF98BB7A01CDB8D3A1C2109F7B] - 27/8/2014 - 17:38:17 ---A- . (...) -- C:\WINDOWS\KB2909212.log [304917]
O44 - LFC:[MD5.AC531EFA3F98E263293B8399EAFFE69F] - 27/8/2014 - 17:38:44 ---A- . (...) -- C:\WINDOWS\KB2862335.log [182508]
O44 - LFC:[MD5.37713A96E562EB0DD246701CBB6A8A20] - 27/8/2014 - 17:38:53 ---A- . (...) -- C:\WINDOWS\KB2686509.log [184226]
O44 - LFC:[MD5.548E976E1BB374A58829D3ABDBB5CF9B] - 27/8/2014 - 17:38:56 ---A- . (...) -- C:\WINDOWS\KB2929961.log [306553]
O44 - LFC:[MD5.7E96E85C553E1339092F3D297EC9F2D5] - 27/8/2014 - 17:39:04 ---A- . (...) -- C:\WINDOWS\KB2598479.log [310371]
O44 - LFC:[MD5.991160945F98C455B6605E6465EA54F0] - 27/8/2014 - 17:39:08 ---A- . (...) -- C:\WINDOWS\KB2485663.log [184243]
O44 - LFC:[MD5.1487F0D41D18595292BB1188AB888687] - 27/8/2014 - 17:39:17 ---A- . (...) -- C:\WINDOWS\KB2898715.log [309323]
O44 - LFC:[MD5.DE90B5F6BC7811F3D606772A037838EA] - 27/8/2014 - 17:39:25 ---A- . (...) -- C:\WINDOWS\KB2481109.log [313160]
O44 - LFC:[MD5.161BFDEB87948D58EBFEC27C71D51A86] - 27/8/2014 - 17:39:34 ---A- . (...) -- C:\WINDOWS\KB2229593.log [185861]
O44 - LFC:[MD5.60B7A5F5A47D40AE6AC2F0DB32CA0A84] - 27/8/2014 - 17:39:39 ---A- . (...) -- C:\WINDOWS\KB2802968.log [312914]
O44 - LFC:[MD5.0B9EF0955ABC83024C6BF4813CD90394] - 27/8/2014 - 17:39:48 ---A- . (...) -- C:\WINDOWS\KB2655992.log [313678]
O44 - LFC:[MD5.54895D07E54959279A3CD5F3D28B0213] - 27/8/2014 - 17:39:52 ---A- . (...) -- C:\WINDOWS\KB2443105.log [312760]
O44 - LFC:[MD5.C654F1EE8B1B12F16EFD99C2D44DA762] - 27/8/2014 - 17:40:14 ---A- . (...) -- C:\WINDOWS\KB2378111.log [186721]
O44 - LFC:[MD5.275586959099321A367DD66DE31E829A] - 27/8/2014 - 17:40:14 ---A- . (...) -- C:\WINDOWS\wmsetup.log [5545]
O44 - LFC:[MD5.6396999B8E243C7A05296C75F1C7A2F2] - 27/8/2014 - 17:40:18 ---A- . (...) -- C:\WINDOWS\KB2847311.log [315133]
O44 - LFC:[MD5.0BD9A853CB4B7649D271C83AA1F44277] - 27/8/2014 - 17:40:33 ---A- . (...) -- C:\WINDOWS\KB2115168.log [317523]
O44 - LFC:[MD5.3ED0CAFC02C74C80166B42A0A75569EE] - 27/8/2014 - 17:40:42 ---A- . (...) -- C:\WINDOWS\KB2691442.log [319051]
O44 - LFC:[MD5.E760083884335A3F03B8C16570801C4D] - 27/8/2014 - 17:40:46 ---A- . (...) -- C:\WINDOWS\KB2296011.log [187039]
O44 - LFC:[MD5.90549A0D81704F462EC54E880C2C43E9] - 27/8/2014 - 17:40:50 ---A- . (...) -- C:\WINDOWS\KB2631813.log [318504]
O44 - LFC:[MD5.B7D99CFC0382704E8DB053106F5CFBDA] - 27/8/2014 - 17:40:55 ---A- . (...) -- C:\WINDOWS\KB2585542.log [319715]
O44 - LFC:[MD5.75942B2B7056F19F716AD68878323B92] - 27/8/2014 - 17:41:00 ---A- . (...) -- C:\WINDOWS\KB2536276-v2.log [189575]
O44 - LFC:[MD5.408118E2BB56FCD8ED64F62E6DC05A88] - 27/8/2014 - 17:41:06 ---A- . (...) -- C:\WINDOWS\KB2834886.log [186882]
O44 - LFC:[MD5.1FA3C11CEA67B83918CEC1FE7384F8FD] - 27/8/2014 - 17:41:10 ---A- . (...) -- C:\WINDOWS\KB2544893-v2.log [319118]
O44 - LFC:[MD5.18F1CDD329DE3D773C2A733DE9F667ED] - 27/8/2014 - 17:41:15 ---A- . (...) -- C:\WINDOWS\KB2478971.log [319959]
O44 - LFC:[MD5.16A95F7FC08A6D36BA9F660230CDF1F2] - 27/8/2014 - 17:41:19 ---A- . (...) -- C:\WINDOWS\KB2916036.log [317811]
O44 - LFC:[MD5.765A93E35797E6934BADB23A425A4D73] - 27/8/2014 - 17:41:27 ---A- . (...) -- C:\WINDOWS\KB2564958.log [188598]
O44 - LFC:[MD5.2D1178BF8EC8F951E956E02EBC6C414D] - 27/8/2014 - 17:41:32 ---A- . (...) -- C:\WINDOWS\KB2659262.log [189057]
O44 - LFC:[MD5.FE1C5B65442B964DD712D1EDDDE5D9B3] - 27/8/2014 - 17:41:36 ---A- . (...) -- C:\WINDOWS\KB2479943.log [321588]
O44 - LFC:[MD5.3493238137C0D4459ACF1E2B1B7544B3] - 27/8/2014 - 17:41:49 ---A- . (...) -- C:\WINDOWS\KB2712808.log [322652]
O44 - LFC:[MD5.5A0253B0C7DFBFBBFE2CC9EEDD25628B] - 27/8/2014 - 17:41:56 ---A- . (...) -- C:\WINDOWS\KB2387149.log [191897]
O44 - LFC:[MD5.3604B7872B6230D9F456A00A7BCDE812] - 27/8/2014 - 17:42:19 ---A- . (...) -- C:\WINDOWS\KB2922229.log [321919]
O44 - LFC:[MD5.449FA1EA0AC5DACF20CE9F89F74EC3F5] - 27/8/2014 - 17:42:22 ---A- . (...) -- C:\WINDOWS\updspapi.log [31128]
O44 - LFC:[MD5.0578A407407A0D36E77F560EC17BCE6B] - 27/8/2014 - 17:42:25 ---A- . (...) -- C:\WINDOWS\KB2868626.log [322619]
O44 - LFC:[MD5.E027D4B35D1C5179A28FC2879EA1B808] - 27/8/2014 - 17:44:54 ---A- . (...) -- C:\WINDOWS\spupdsvc.log [1913]
O44 - LFC:[MD5.2F659DAF3898B5F8039020CB269A9B51] - 27/8/2014 - 17:49:03 ---A- . (...) -- C:\WINDOWS\KB2653956.log [198987]
O44 - LFC:[MD5.36216DF911EAD2E04AAA09FBB57D7363] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [778222]
O44 - LFC:[MD5.A487AB70B9B4D244C20FB532F61BD7AB] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\KB2893294.log [208813]
O44 - LFC:[MD5.8675201297F8ECEF47BC20EF57589326] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [54335]
O44 - LFC:[MD5.0EE456053EB6EF08A54EB02C9963F95A] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\comsetup.log [274214]
O44 - LFC:[MD5.8DBBA7158FE890761A9DE242E4B2CDDB] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\iis6.log [896898]
O44 - LFC:[MD5.6521C6040F05495FD84DF5AE4E44BBEC] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.90862D407A3A8F6D3FD9C731128C1980] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\msmqinst.log [253250]
O44 - LFC:[MD5.C84FA874F508E8BD2C47229D73DE935D] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\netfxocm.log [137082]
O44 - LFC:[MD5.67643365C23CCB11F4E8FFFCB2162C40] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [161911]
O44 - LFC:[MD5.D672A03898F7EEB3AB052E88536F855C] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\ocgen.log [381036]
O44 - LFC:[MD5.738F56032AE5BBF00E113E821DA01FE7] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\ocmsn.log [48660]
O44 - LFC:[MD5.1E2E082FEEA614585A839AA2BDAE5DCB] - 27/8/2014 - 17:49:07 ---A- . (...) -- C:\WINDOWS\tsoc.log [361481]
O43 - CFD: 25/8/2014 - 18:15:37 - [] ----D C:\Arquivos de programas\Avast5
O43 - CFD: 4/12/2013 - 08:54:19 - [] ----D C:\Documents and Settings\Hugo\Dados de aplicativos\AVAST Software
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc..) -- C:\Arquivos de programas\Bonjour\mDNSResponder.exe
O53 - SMSR:HKLM\...\startupreg\nwiz [Key] . (...) -- C:\Arquivos de programas\NVIDIA Corporation\nView\nwiz.exe (.not file.)
O64 - Services: CurCS - 30/8/2011 - C:\Arquivos de programas\Bonjour\mDNSResponder.exe (Bonjour Service) .(.Apple Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE

ServiceStop:"Bonjour Service"
emptyclsid
firewallraz


|- Abra a ferramenta ZHPFix. < ZHPFix_logo2_zpsea0f2aa4.jpg >
|- Clique IMPORTAÇÃO >> OK.
|- Clique "GO".
|- Poste o relatório!

A+

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom dia.

 

Cerca de 80% dos programas não abrem mais.

Há alguma outra forma de resolver o problema sem precisar desinstalar?

Pergunto isso pois acho mais conveniente então formatá-lo por completo.

 

Att.

 

 

Boa tarde.

 

Agradeço a atenção dada ao meu problema, mas decidi formatar a máquina e começar tudo do zero novamente.

 

Att.

Compartilhar este post


Link para o post
Compartilhar em outros sites

O erro do gdiplus.dll foi resolvido retirando algumas fontes que eu tinha instalado.

Ao reverter às fontes originais, o problema foi resolvido.

Cabe agora procurar a fonte defeituosa.

Fica a dica para quem procurar sobre isso.

Compartilhar este post


Link para o post
Compartilhar em outros sites

PROBLEMA RESOLVIDO

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.