Ir para conteúdo

Foto

PC cheio de propagandas e muito lento!!!


Este tópico foi arquivado. Isto significa que você não pode mais responder ao tópico.
20 respostas neste tópico

#1
htralvin

htralvin

    Novato

  • Novato
  • Pip
  • 38 posts

Ola,boa noite!!!

Meu PC esta muito e em qualquer site que eu entre fica cheio de propagandas e nem tem com fechar e atrapalha muito!



#2
JoseMelo

JoseMelo

    Assistente Profissional

  • Assistente Profissional
  • 127.505 posts
- Por favor, leia as instruções contidas no link abaixo:
 
- Não crie um novo tópico e anexe os logs;
 
- Prossiga com os procedimentos indicados neste tópico até o final e, caso tenha qualquer dúvida, pergunte.


#3
htralvin

htralvin

    Novato

  • Novato
  • Pip
  • 38 posts

Segue o link postado!!!

Arquivo(s) anexado(s)



#4
JoseMelo

JoseMelo

    Assistente Profissional

  • Assistente Profissional
  • 127.505 posts
Faça o download do AdwCleaner e salve no desktop.
 
Clique no ícone 1IXHd.png para baixar o arquivo.
 
Execute o adwcleaner
 
OBS: Usuários do Windows Vista, 7 e 8 clique com o botão direito do mouse sobre o arquivo adwcleaner, depois clique em AgZ3P.png
 
OBS: Para usuários do Windows 8, caso haja bloqueio pelo Smart Screen, clique em Mais Opções e em Executar assim mesmo.
 
Clique em Examinar e quando terminar, clique em Limpar e nas próximas janelas, clique em Ok. 
 
Quando o computador for reiniciado será aberto o bloco de notas com o resultado. Selecione, copie e cole o seu conteúdo na próxima resposta.
 

Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.
 
Faça o download do Junkware Removal Tool:
 
Dê um duplo-clique para executar o Junkware Removal Tool (JRT).
 
* No Windows Vista, Windows 7 e Windows 8:
 
Clique com o botão direito do mouse sobre o JRT.exe e selecione run_as_adm1.png
 
A ferramenta comecará o exame do seu sistema. Tenha paciência pois pode demorar um pouco dependendo da quantidades de ítens a examinar.
 
Ao final, um log se abrirá. É salvo no desktop com o nome de JRT.txt.
 
Selecione, copie e cole o conteúdo deste log na sua próxima resposta.


#5
htralvin

htralvin

    Novato

  • Novato
  • Pip
  • 38 posts
# AdwCleaner v3.013 - Relatório criado 29/11/2013 às 17:17:21
# Atualizado 24/11/2013 por Xplode
# Sistema Operacional : Windows 7 Ultimate  (32 bits)
# Usuário : USUARIO - USUARIO-PC
# Executando de : C:\Users\USUARIO\Downloads\adwcleaner (1).exe
# Opção : Limpar
 
***** [ Serviços ] *****
 
Serviço Deletada : BitGuard
[#] Serviço Deletada : bonanzadealslive
[#] Serviço Deletada : bonanzadealslivem
[#] Serviço Deletada : vToolbarUpdater15.2.0
 
***** [ Arquivos / Pastas ] *****
 
Pasta Deletada : C:\ProgramData\apn
Pasta Deletada : C:\ProgramData\AVG Secure Search
Pasta Deletada : C:\ProgramData\Babylon
[!] Pasta Deletada : C:\ProgramData\BitGuard
Pasta Deletada : C:\ProgramData\BonanzaDealsLive
Pasta Deletada : C:\ProgramData\eSafe
Pasta Deletada : C:\ProgramData\IBUpdaterService
Pasta Deletada : C:\ProgramData\Tarma Installer
Pasta Deletada : C:\Program Files\AVG Secure Search
Pasta Deletada : C:\Program Files\BonanzaDeals
Pasta Deletada : C:\Program Files\BonanzaDealsLive
Pasta Deletada : C:\Program Files\DealPly
Pasta Deletada : C:\Program Files\Funmoods
Pasta Deletada : C:\Program Files\Iminent
Pasta Deletada : C:\Program Files\LyricsOn
Pasta Deletada : C:\Program Files\MyPC Backup
Pasta Deletada : C:\Program Files\PricePeep
Pasta Deletada : C:\Program Files\Plus-HD-4.4
Pasta Deletada : C:\Program Files\Common Files\AVG Secure Search
Pasta Deletada : C:\Windows\system32\BrowserProtect
Pasta Deletada : C:\Users\USUARIO\Funmoods
Pasta Deletada : C:\Users\USUARIO\AppData\Local\AVG Secure Search
Pasta Deletada : C:\Users\USUARIO\AppData\Local\BonanzaDealsLive
Pasta Deletada : C:\Users\USUARIO\AppData\Local\lollipop
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Smartbar
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Temp\apn
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Temp\eIntaller
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Temp\Smartbar
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Temp\Wajam
Pasta Deletada : C:\Users\USUARIO\AppData\LocalLow\AVG Secure Search
Pasta Deletada : C:\Users\USUARIO\AppData\LocalLow\Funmoods
Pasta Deletada : C:\Users\USUARIO\AppData\LocalLow\Smartbar
Pasta Deletada : C:\Users\USUARIO\AppData\LocalLow\Plus-HD-4.4
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\Babylon
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\baidu
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\DealPly
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\file scout
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\Funmoods
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\UpdaterEX
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals
Pasta Deletada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
Pasta Deletada : C:\Users\USUARIO\Documents\optimizer pro
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\oalifdbckgeckmcjidkfgiikhpcdbdah
Pasta Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcmldniciaadnhphngjgajcaiddomka
Arquivo Deletada : C:\Users\USUARIO\AppData\Roaming\speedanalysis.ico
Arquivo Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Arquivo Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Arquivo Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.iminent.com_0.localstorage
Arquivo Deletada : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.iminent.com_0.localstorage-journal
Arquivo Deletada : C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
Arquivo Deletada : C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore
Arquivo Deletada : C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
Arquivo Deletada : C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA
Arquivo Deletada : C:\Windows\System32\Tasks\BonanzaDealsUpdate
Arquivo Deletada : C:\Windows\Tasks\Dealply.job
Arquivo Deletada : C:\Windows\System32\Tasks\Dealply
Arquivo Deletada : C:\Windows\System32\Tasks\DealPlyUpdate
Arquivo Deletada : C:\Windows\Tasks\Funmoods.job
Arquivo Deletada : C:\Windows\System32\Tasks\Funmoods
Arquivo Deletada : C:\Windows\Tasks\Plus-HD-4.4-chromeinstaller.job
Arquivo Deletada : C:\Windows\System32\Tasks\Plus-HD-4.4-chromeinstaller
Arquivo Deletada : C:\Windows\Tasks\Plus-HD-4.4-codedownloader.job
Arquivo Deletada : C:\Windows\System32\Tasks\Plus-HD-4.4-codedownloader
Arquivo Deletada : C:\Windows\Tasks\Plus-HD-4.4-enabler.job
Arquivo Deletada : C:\Windows\System32\Tasks\Plus-HD-4.4-enabler
Arquivo Deletada : C:\Windows\Tasks\Plus-HD-4.4-updater.job
Arquivo Deletada : C:\Windows\System32\Tasks\Plus-HD-4.4-updater
 
***** [ Atalhos ] *****
 
Atalho Desinfectada : C:\Users\Public\Desktop\Google Chrome.lnk
Atalho Desinfectada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Atalho Desinfectada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Atalho Desinfectada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Atalho Desinfectada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Atalho Desinfectada : C:\Users\USUARIO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
 
***** [ Registro ] *****
 
Valor Deletedo : HKCU\Software\Mozilla\Firefox\Extensions [lyricson@lyricson.net]
Chave Deletedo : HKCU\Software\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\oalifdbckgeckmcjidkfgiikhpcdbdah
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D3D314CA-9C4A-4337-99AE-2FDC6C6622F6}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3D314CA-9C4A-4337-99AE-2FDC6C6622F6}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E3839BC-0907-4091-8270-7308886BE2AD}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E3839BC-0907-4091-8270-7308886BE2AD}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78558C63-E440-49FF-9ACF-28CD813C374D}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78558C63-E440-49FF-9ACF-28CD813C374D}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{988325A1-435D-48BC-BC46-3331CCEC56A3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{988325A1-435D-48BC-BC46-3331CCEC56A3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AAB3B8AB-6312-4D38-8049-B800D4D247B2}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AAB3B8AB-6312-4D38-8049-B800D4D247B2}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A3A10D9-B7A5-499A-A91C-236A0718AEB3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A3A10D9-B7A5-499A-A91C-236A0718AEB3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C14324E6-5E00-4FB3-9D7D-7F08C953B3A3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C14324E6-5E00-4FB3-9D7D-7F08C953B3A3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{11FAF4DA-6FCF-4546-B54F-D4C21E04D4F3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11FAF4DA-6FCF-4546-B54F-D4C21E04D4F3}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{67BFA80D-383A-4795-95EC-068FC9F84A36}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67BFA80D-383A-4795-95EC-068FC9F84A36}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C913631F-3ABE-4849-8A20-252FB1129786}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C913631F-3ABE-4849-8A20-252FB1129786}
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickCtrl.9
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.Update3WebControl.3
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\escort.escortIEPane
Chave Deletedo : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Chave Deletedo : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc
Chave Deletedo : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc.1
Chave Deletedo : HKLM\SOFTWARE\Classes\f
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.dskBnd
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.dskBnd.1
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr.1
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoodsApp.appCore
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoodsApp.appCore.1
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.bho
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.smartbardisplaystate
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Chave Deletedo : HKLM\SOFTWARE\Classes\PricePeep.PricePeepBho
Chave Deletedo : HKLM\SOFTWARE\Classes\PricePeep.PricePeepBho.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Prod.cap
Chave Deletedo : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Chave Deletedo : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Chave Deletedo : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Chave Deletedo : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Chave Deletedo : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0039676.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0039676.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0039676.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0039676.Sandbox.1
Chave Deletedo : HKCU\Software\522d9d9e735ee41
Chave Deletedo : HKLM\SOFTWARE\522d9d9e735ee41
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{D34F391D-4CB7-467F-A543-F583857C63B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{118E1BF6-6279-432F-A285-373A77B90C7A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{14CEEA2F-3D21-46ED-A7D2-89056C520E5E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1CC8D970-F626-4F19-815F-890032BB6606}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3728BA43-F94F-42A4-9E8D-00B930D1DB28}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{5B5E5D0E-7C83-4A32-ADD2-E5F488DD6783}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{6802463D-636F-41FE-9924-4CAD56906590}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{73C1CE1A-2075-4350-A7B4-EBA78BA45FA8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{944661E7-67B9-4DF7-BFF2-05388C166D34}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A7CF66EF-4F0D-46B1-AF71-A500378D6C34}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B71934E5-6B93-448D-9D32-CBAA5150C5D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D34F391D-4CB7-467F-A543-F583857C63B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E970727E-0508-4BEB-8B72-BBA9D0D047C7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{EBF1F869-D2F0-4D31-A877-386C853A9C3D}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{EF7BD87A-8024-11E2-F316-F3E56188709B}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F3CF4912-CF0A-451B-AF3B-C4F216C715E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F904AC50-215C-42AB-A532-77E9FDBA9B19}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311961176}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322962276}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355965576}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366966676}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{3BF3DED5-0FC8-4207-AC09-AA7B5AF4E408}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344964476}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3728BA43-F94F-42A4-9E8D-00B930D1DB28}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF7BD87A-8024-11E2-F316-F3E56188709B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311961176}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3728BA43-F94F-42A4-9E8D-00B930D1DB28}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{73C1CE1A-2075-4350-A7B4-EBA78BA45FA8}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D8278076-BC68-4484-9233-6E7F1628B56C}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF7BD87A-8024-11E2-F316-F3E56188709B}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311961176}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3728BA43-F94F-42A4-9E8D-00B930D1DB28}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{73C1CE1A-2075-4350-A7B4-EBA78BA45FA8}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF7BD87A-8024-11E2-F316-F3E56188709B}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c8f88d6-d603-4e65-b8dc-0de52a77c371}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2bf7896a-b8c3-4c77-9a90-b5013f717078}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{541ff07f-7a25-42bd-a992-3f2a140aa6de}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8b3f4ec9-bbdb-40d2-8eae-4aff8a9bb54c}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
Dados Restaurada : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\AVG Secure Search
Chave Deletedo : HKCU\Software\BabSolution
Chave Deletedo : HKCU\Software\BabylonToolbar
Chave Deletedo : HKCU\Software\BI
Chave Deletedo : HKCU\Software\BonanzaDealsLive
Chave Deletedo : HKCU\Software\DataMngr
[#] Chave Deletedo : HKCU\Software\DataMngr_Toolbar
Chave Deletedo : HKCU\Software\DealPly
Chave Deletedo : HKCU\Software\filescout
Chave Deletedo : HKCU\Software\Funmoods
Chave Deletedo : HKCU\Software\Headlight
Chave Deletedo : HKCU\Software\IM
Chave Deletedo : HKCU\Software\Iminent
Chave Deletedo : HKCU\Software\ImInstaller
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKCU\Software\installedbrowserextensions
Chave Deletedo : HKCU\Software\lollipop
Chave Deletedo : HKCU\Software\SmartBar
Chave Deletedo : HKCU\Software\smartbarbackup
Chave Deletedo : HKCU\Software\smartbarlog
Chave Deletedo : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Deletedo : HKCU\Software\AppDataLow\Software\Crossrider
Chave Deletedo : HKCU\Software\AppDataLow\Software\PricePeep
Chave Deletedo : HKCU\Software\AppDataLow\Software\Plus-HD-4.4
Chave Deletedo : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Deletedo : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Chave Deletedo : HKLM\Software\AVG Secure Search
Chave Deletedo : HKLM\Software\AVG Security Toolbar
Chave Deletedo : HKLM\Software\Babylon
Chave Deletedo : HKLM\Software\BonanzaDealsLive
Chave Deletedo : HKLM\Software\DataMngr
Chave Deletedo : HKLM\Software\DealPly
Chave Deletedo : HKLM\Software\Iminent
Chave Deletedo : HKLM\Software\InstallCore
Chave Deletedo : HKLM\Software\qone8Software
Chave Deletedo : HKLM\Software\Tarma Installer
Chave Deletedo : HKLM\Software\Plus-HD-4.4
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AF860F85-54A3-4A28-879B-BF9E6E325776}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Bonanza Deals
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-4.4
Dados Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
 
***** [ Navegadores ] *****
 
-\\ Internet Explorer v8.0.7600.16385
 
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [bProtectTabs]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
 
-\\ Google Chrome v31.0.1650.57
 
[ Arquivo : C:\Users\USUARIO\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [39943 octets] - [29/11/2013 17:15:25]
AdwCleaner[S0].txt - [36571 octets] - [29/11/2013 17:17:21]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [36632 octets] ##########
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x86
Ran by USUARIO on 29/11/2013 at 17:33:48,51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-840711995-401227461-425026333-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully deleted [Registry Value] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\bProtectTabs
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\baidu
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bonanzadeals
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-840711995-401227461-425026333-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\bonanzadeals
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\dmwu_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\dmwu_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\lyricupdater_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\lyricupdater_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_130001_1001_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_130001_1001_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{082EECDD-5BF1-0DFE-03E4-34CFED1385D2}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{93923A09-C383-47D2-AAC7-51FCD8EB1FAB}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29/11/2013 at 17:38:09,29
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


#6
JoseMelo

JoseMelo

    Assistente Profissional

  • Assistente Profissional
  • 127.505 posts
- Faça o download do Malwarebytes Anti-Malware
  • Desative o antivírus;
  • Faça a instalação dando um duplo clique em "mbam-setup.exe";
  • Marque "Atualizar Malwarebytes Anti-Malware" e "Executar Malwarebytes Anti-Malware", e clique em concluir;
  • Marque "Verificação Completa" e depois clique em Verificar;
  • Quando o scan terminar, clique em Ok e em "Mostrar Resultados" para ver o log;
  • Se algo for detectado, veja se tudo está marcado e clique em "Remover";
  • O log é automaticamente gravado e pode ser consultado clicando em "Logs" do menu principal;
  • Copie e cole o conteúdo desse log na sua próxima resposta.
  • - Poste novo log do HijackThis.


    #7
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts

    Ola,

    Malwarebytes Anti-Malware (Trial) 1.75.0.1300
    www.malwarebytes.org
     
    Versão da Base de Dados:  v2013.12.01.03
     
    Windows 7 x86 NTFS
    Internet Explorer 8.0.7600.16385
    USUARIO :: USUARIO-PC [administrador]
     
    Proteção: Permitir
     
    01/12/2013 15:34:33
    mbam-log-2013-12-01 (15-34-33).txt
     
    Tipo de Verificação:  Verificação Completa  (A:\|C:\|)
    Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos  | Heurística/Extra | Heurística/Shuriken | PUP | PUM
    Opções de verificação desativadas: P2P
    Objetos escaneados:  275541
    Tempo decorrido: 1 hora(s), 28 minuto(s), 13 segundo(s)
     
    Processos de Memória Detectados: 0
    (Não foram detectados ítens maliciosos)
     
    Módulos de Memória Detectados: 0
    (Não foram detectados ítens maliciosos)
     
    Chaves de Registro Detectadas: 10
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{8EF0781E-BF1A-4C9D-8315-C1CC1F148ADD} (Adware.fanhoosh) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8EF0781E-BF1A-4C9D-8315-C1CC1F148ADD} (Adware.fanhoosh) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA74D58F-ACD0-450D-A85E-6C04B171C044} (PUP.Optional.MiniBar.A) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{ECFCEA8D-502E-40E5-988C-010D4E465D67} (PUP.Optional.BestToolbars) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{ECFCEA8D-502E-40E5-988C-010D4E465D67} (PUP.Optional.BestToolbars) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} (PUP.Optional.PricePeep.A) -> Enviado para a Quarentena e deletado com sucesso.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063412-BEA4-4D76-8ED3-183BE6220D17} (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
     
    Valores de Registro Detectadas: 0
    (Não foram detectados ítens maliciosos)
     
    Itens de Dados no Registro Detectadas: 0
    (Não foram detectados ítens maliciosos)
     
    Pastas Detectadas: 0
    (Não foram detectados ítens maliciosos)
     
    Arquivos Detectados: 95
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDeals\BonanzaDealsIE.dll.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\BonanzaDealsLive.exe.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\BonanzaDealsLiveBroker.exe.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\BonanzaDealsLiveHandler.exe.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\BonanzaDealsLiveOnDemand.exe.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\goopdate.dll.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\psmachine.dll.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\BonanzaDealsLive\Update\1.3.23.0\psuser.dll.vir (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\DealPly\DealPlyIE.dll.vir (PUP.DealPly) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\DealPly\DealPlyUpdate.exe.vir (PUP.Optional.Dealply) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\DealPly\DealPlyUpdateRun.exe.vir (PUP.Optional.Dealply) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\DealPly\DealPlyUpdateVer.exe.vir (PUP.Optional.DealPly.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Funmoods\1.8.20.0\funmoodssrv.exe.vir (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Funmoods\1.8.20.0\funmoodsTlbr.dll.vir (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Funmoods\1.8.20.0\bh\funmoods.dll.vir (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\LyricsOn\Uninstall.exe.vir (PUP.Optional.LyricsAd) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-bg.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-bho.dll.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-buttonutil.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-chromeinstaller.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-codedownloader.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-enabler.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\Plus-HD-4.4\Plus-HD-4.4-updater.exe.vir (PUP.Optional.PlusHD.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Program Files\PricePeep\pricepeep.dll.vir (Adware.Agent) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Users\USUARIO\AppData\Local\Smartbar\Application\SmartbarVersionsHelper.exe.vir (PUP.Optional.SmartBar.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Users\USUARIO\AppData\Local\Temp\eIntaller\3C667703CE264a42BBC04142D757593A\eGdpSvc.exe.vir (PUP.Optional.Wsys.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\AdwCleaner\Quarantine\C\Users\USUARIO\AppData\Roaming\file scout\filescout.exe.vir (PUP.Optional.FileScout.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NMMLP8EM\pack[1].7z (Rogue.InternetSecurityEssentials) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\041013_y.exe (PUP.Optional.DealPly.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\2055.tmp (PUP.Optional.PerformerSoft.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\DeltaTB.exe (PUP.Optional.Delta.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\AskPIP_FF_.exe (PUP.Optional.Spigot.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\mgsqlite3.7z (PUP.Optional.SweetIM) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\mgsqlite3.dll (PUP.Optional.SweetIM) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\SmartbarExeInstaller.exe (PUP.Optional.SmartBar.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\Optimizer_Pro.exe (PUP.Optional.1ClickDownload.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\plus-hd-4-4.exe (PUP.Optional.CrossRider) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\pricepeep_130001_1001.exe (Adware.Agent) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\QuickShare1.exe (PUP.Optional.QuickShare.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\TUN2CB6.exe (PUP.Optional.Hao123.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\TUNB1BD.exe (PUP.Optional.Hao123.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\E9B9.tmp (PUP.Optional.PerformerSoft.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\F1E2.tmp (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\OptimizerPro.exe (PUP.Optional.OptimizePro.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\bundlesweetimsetup.exe (PUP.Optional.SweetIM) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\che632D.tmp (PUP.Optional.SweetIM) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\442.tmp (PUP.Optional.Conduit.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\5D5F.tmp (PUP.Optional.FileScout.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\wajam_install.exe (PUP.Optional.Wajam.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\3777.tmp (PUP.Optional.PerformerSoft.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\TUNF2B8.exe (PUP.Optional.Hao123.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\B8538F95-BAB0-7891-AE1A-6C8B9602FDD4\Setup.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\B8538F95-BAB0-7891-AE1A-6C8B9602FDD4\Latest\MyBabylonTB.exe (PUP.Optional.BabylonToolBar.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\B8538F95-BAB0-7891-AE1A-6C8B9602FDD4\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\B8538F95-BAB0-7891-AE1A-6C8B9602FDD4\Latest\CrxInstaller.dll (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\rAamKWW0[1].exe\4c26ba3db63b47589bcbd0bdc3352b42\software\OptimizerPro.exe (PUP.Optional.OptimizePro.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\rAamKWW0[1].exe\4c26ba3db63b47589bcbd0bdc3352b42\software\Qone8.exe (PUP.Optional.Elex) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\rAamKWW0[1].exe\4c26ba3db63b47589bcbd0bdc3352b42\software\Setup.exe (PUP.Optional.DomaIQ) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\rAamKWW0[1].exe\4c26ba3db63b47589bcbd0bdc3352b42\software\wajam_download.exe (PUP.Optional.Wajam) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\6E673EF6-BAB0-7891-9D16-5E4A5EB0DAC4\Setup.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\6E673EF6-BAB0-7891-9D16-5E4A5EB0DAC4\Latest\MyBabylonTB.exe (PUP.Optional.BabylonToolBar.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\6E673EF6-BAB0-7891-9D16-5E4A5EB0DAC4\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\6E673EF6-BAB0-7891-9D16-5E4A5EB0DAC4\Latest\CrxInstaller.dll (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is1900375\escort.dll (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is1900375\escortApp.dll (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is1900375\escortEng.dll (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is1900375\escorTlbr.dll (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is1900375\funmoodssrv.exe (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is622953\escort.dll (PUP.Funmoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is622953\escortApp.dll (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is622953\escortEng.dll (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is622953\escorTlbr.dll (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is622953\funmoodssrv.exe (PUP.FunMoods) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is701137889\dp.exe (PUP.Optional.DealPly.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is701137889\MyBabylonTB.exe (PUP.Optional.Babylon.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is701137889\1485122_stp\bd.exe (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\AppData\Local\Temp\is701137889\5536054_stp\bd.exe (PUP.Optional.BonanzaDeals.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\77ZipSetup.exe (Adware.InstallBrain) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\java-se-development-kit-jdk-for-windows-70-update-45-32-bits.exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\VideoPerformerSetup.exe (Adware.InstallBrain) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\Setup.exe (PUP.Optional.Solimba) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\formatfactory-311-baixaki-32-bits-5ec5bc0fbc134785483100f08027dad9 (1).exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\formatfactory-311-baixaki-32-bits-5ec5bc0fbc134785483100f08027dad9 (2).exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\formatfactory-311-baixaki-32-bits-5ec5bc0fbc134785483100f08027dad9.exe (PUP.Optional.InstallCore) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\ares-galaxy-225-32-bits (1).exe (PUP.Optional.InstallCore.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\ares-galaxy-225-32-bits (2).exe (PUP.Optional.InstallCore.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\ares-galaxy-225-32-bits (3).exe (PUP.Optional.InstallCore.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\ares-galaxy-225-32-bits.exe (PUP.Optional.InstallCore.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\– primeiro tempo – dvdrip avi   rmvb nacional (2013) (1).exe (Adware.Agent) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\– primeiro tempo – dvdrip avi   rmvb nacional (2013) (2).exe (Adware.Agent) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Users\USUARIO\Downloads\– primeiro tempo – dvdrip avi   rmvb nacional (2013).exe (Adware.Agent) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Windows\Installer\32b25.msi (PUP.Optional.SmartBar.A) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D140Q77M\wajam_update[1].004 (PUP.Optional.Wajam.A) -> Enviado para a Quarentena e deletado com sucesso.
     
    (fim)
     
    Logfile of HijackThis v1.99.1
    Scan saved at 18:17:08, on 01/12/2013
    Platform: Unknown Windows (WinNT 6.01.3504)
    MSIE: Internet Explorer v8.00 (8.00.7600.16385)
     
    Running processes:
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Windows\System32\pctspk.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Windows\System32\VTTimer.exe
    C:\Windows\SOUNDMAN.EXE
    C:\Program Files\Lexmark 2600 Series\lxdnmon.exe
    C:\Program Files\Lexmark 2600 Series\ezprint.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Ares\Ares.exe
    C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Users\USUARIO\Desktop\HijackThis\HijackThis (1).exe
     
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
    O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [VModes] VModes AttachToDesktop
    O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
    O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
    O4 - HKLM\..\Run: [PSafeTray] "C:\Program Files\PSafe\PSafeSysTray.exe"
    O4 - HKLM\..\Run: [PSafeWDS] "C:\Program Files\PSafe\PSafeWDS.exe"
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [lxdnmon.exe] "C:\Program Files\Lexmark 2600 Series\lxdnmon.exe"
    O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2600 Series\ezprint.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe
    O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\09eccdbd-8e59-4c2a-bd48-8304a50454ab.exe /check
    O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
    O4 - Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
    O11 - Options group: [INTERNATIONAL] International
    O13 - Gopher Prefix: 
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (file missing)
    O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (file missing)
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Unknown owner - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe (file missing)
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /svc (file missing)
    O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc (file missing)
    O23 - Service: lxdnCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdnserv.exe
    O23 - Service: lxdn_device -   - C:\Windows\system32\lxdncoms.exe
    O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)
     


    #8
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts


    Platform: Unknown Windows (WinNT 6.01.3504)
    MSIE: Internet Explorer v8.00 (8.00.7600.16385)

    Sistema desatualizado. Faça a atualização pelo Windows Update no Painel de Controle > Procurar atualizações.

     

    - Desinstale o PSafe;

     

    Faça o download do Kaspersky Virus Removal Tool:
     
    Salve-o em sua área de trabalho.
     
    - Duplo clique no arquivo "setup" e aguarde a instalação;
    - Na próxima tela marque I accept the licence agreement e clique em Start
    - Clique no botão f4uZX.png e marque:
    • Meu computador
  • Disco local (C:) (a letra do disco local pode variar)
  • - Clique em Actions e desmarque os dois quadros:
    Zqewdl.jpg
    - Clique na aba Automatic Scan e aguarde o término da verificação.
     
    - Clique  no botão zNEXl.jpg, em Detected threats e no botão "Save".
    - Copie o conteúdo do arquivo salvo (se houver algo detectado) e poste na sua próxima resposta.

     

     



    #9
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts

    BOA NOITE!!!

     

    DESSA VEZ NÃO CONSEGUI FAZER NADA:

     

    - Atualização do windows não foi possivel fazer,pois, o mesmo so fica procurando e não atualiza.

     

    - Não consegui  Desinstalar o PSafe,não o achei.

     

    Fiz o download do Kaspersky Virus Removal Tool, mas não apareceu essa tela:

    - Clique em Actions e desmarque os dois quadros:
    Zqewdl.jpg
    - Clique na aba Automatic Scan e aguarde o término da verificação.
     

     

    - Coloquei pra rodar demorou mais de 2 horas e so tinha scaneado 8%


    #10
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts

    Tente rodar o Kaspersky em modo de segurança.



    #11
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts

    Não consegui rodar modo segurança,você pode me ensinas os passos???



    #12
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts

    São os mesmos, mas deve reiniciar o computador em modo de segurança. Durante o boot pressione a tecla F8 intermitentemente e no menu selecione "Modo de Segurança".



    #13
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts

    Ola,boa noite!!!

     

    Rodei no modo segurança e tava demorando muito com 2% ja tinha se passado 39 minutos e logo nos 2 primeiro minutos apareceu algumas ameaças.

    Sera que tinha outra maneira?



    #14
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts

    Continue e quando terminar poste o log.



    #15
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts
    Verificação automática: funcionamento incorreto    (eventos: 1, objetos: 0, hora: Desconhecido)
    10/12/2013 09:17:02 Tarefa iniciada Ação padrão selecionada
    Verificação automática: interrompido 3 dias atrás   (eventos: 17, objetos: 284088, hora: 01:15:04)
    06/12/2013 19:07:14 Tarefa interrompida Ação padrão selecionada
    06/12/2013 18:18:45 Excluído Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE Ação padrão selecionada
    06/12/2013 18:17:07 Detectados Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE/hao123inst-egypt.exe/# Ação padrão selecionada
    06/12/2013 18:17:01 Detectados Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE/hao123inst-egypt.exe/# Ação padrão selecionada
    06/12/2013 18:16:54 Detectados Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE/hao123inst-egypt.exe/data0002.res Ação padrão selecionada
    06/12/2013 18:16:50 Detectados Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE/hao123inst-egypt.exe/# Ação padrão selecionada
    06/12/2013 18:16:45 Detectados Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE/hao123inst-egypt.exe/# Ação padrão selecionada
    06/12/2013 18:16:17 Excluído Adware not-a-virus:AdWare.Win32.Agent.ahbx Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KATJZ0GM\Setup[1].exe Ação padrão selecionada
    06/12/2013 18:15:55 Excluído Adware not-a-virus:AdWare.Win32.Lyckriks.b Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\cheCD11.tmp/manifest.json Ação padrão selecionada
    06/12/2013 18:06:43 Detectados Adware not-a-virus:AdWare.Win32.Hao123.a Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\is701137889\6187681_Setup.EXE/hao123inst-egypt.exe/data0002.res Ação padrão selecionada
    06/12/2013 18:03:04 Detectados Adware not-a-virus:AdWare.Win32.Lyckriks.b Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Temp\cheCD11.tmp/manifest.json Ação padrão selecionada
    06/12/2013 18:01:51 Detectados Adware not-a-virus:AdWare.Win32.Agent.ahbx Médio Exato C:\Documents and Settings\USUARIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KATJZ0GM\Setup[1].exe/fanhooshBHO.dll Ação padrão selecionada
    06/12/2013 17:52:10 Tarefa iniciada Ação padrão selecionada
    06/12/2013 17:51:52 Tarefa interrompida Ação padrão selecionada
    06/12/2013 17:51:16 Excluído Adware not-a-virus:AdWare.Win32.Lyckriks.b Médio Exato C:\AdwCleaner\Quarantine\C\Program Files\LyricsOn\chrome.crx.vir Ação padrão selecionada
    06/12/2013 17:49:51 Detectados Adware not-a-virus:AdWare.Win32.Lyckriks.b Médio Exato C:\AdwCleaner\Quarantine\C\Program Files\LyricsOn\chrome.crx.vir/manifest.json Ação padrão selecionada
    06/12/2013 17:48:52 Tarefa iniciada Ação padrão selecionada


    #16
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts
    - Ok, os logs estão limpos :)
     
    - Faça o download do CCleaner:
    • Clique em Salvar e quando terminado o download, faça a instalação;
  • Abra o programa e clique em Executar Limpeza;
  • - Desative e ative novamente a Restauração do Sistema
     
    - Leia o artigo Proteja seu PC para maiores informações sobre como evitar infecções;
     
    - Se não tiver mais problema, clique no botão LuQlZ.png e diga que o seu caso foi resolvido.


    #17
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts

    ola,boa tarde!!!

     

    FIZ O QUE você MANDOU,MAS,AINDA CONTINUA MUITO LENTO PRA ENTRAR NAS PAGINAS!!!



    #18
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts

    A lentidão pode ser da sua conexão. Verifique isso e atualize o sistema pelo Windows Update, que está desatualizado



    #19
    htralvin

    htralvin

      Novato

    • Novato
    • Pip
    • 38 posts

    ok,você pode me ajudar passo a passo como atualizo Windows Update?



    #20
    JoseMelo

    JoseMelo

      Assistente Profissional

    • Assistente Profissional
    • 127.505 posts

    Painel de Controle > Windows Update > Procurar atualizações.