Flux 
Social bookmarking
Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking
Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking
Estatísticas
Temos 14810 usuários registradosO último membro registrado é Josevinil
Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Quem está conectado?
Há 14 usuários online :: 0 registrados, 0 invisíveis e 14 visitantes Nenhum
O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
Top dos mais postadores
| Power Max |
| |||
| joram |
| |||
| Wings [In Memoriam] |
| |||
| caedurodrigues |
| |||
| Amigo Brasileiro |
| |||
| luizvilarinho |
| |||
| Danii |
| |||
| Admin |
| |||
| Danilo Marsaro |
| |||
| Andreata |
|
Problema com Linkbucks
3 participantes
Página 1 de 2
Página 1 de 2 • 1, 2 
Problema com Linkbucks
por franciung chagas Qua 13 Nov 2013, 13:06
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:03:40, on 13/11/2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Internet Explorer\IELowutil.exe
C:\Users\franciung\Downloads\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
--
End of file - 2021 bytes
Scan saved at 13:03:40, on 13/11/2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Internet Explorer\IELowutil.exe
C:\Users\franciung\Downloads\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
--
End of file - 2021 bytes
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qua 13 Nov 2013, 13:52
1) Faça o Download do AdwareCleaner no link abaixo:
Download --> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
2) Clique com o botão direito do mouse em AdwCleaner.exe e escolha a opção Executar como administrador.
3) clique no botão Scan e aguarde o termino:
4) Assim que a verificação tiver sido concluída, clique no botão Clean, ao termino clique me OK -> OK,.., O PC será reiniciado!
* Ao iniciar o PC novamente abrirá um relatório do AdwareCleaner, Copie ele todo e cole aqui no seu tópico.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Smeenk)
*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)
*Clique com o botão direito do mouse no Zoek e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Copie e cole as linhas em Azul no espaço do Zoek
LinkBucks.com;a
iedefaults;
chromelook;
firefoxlook;
shortcutfix;
installedprogs;
*Clique [Run Script]
*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!
*Cole ou anexe o relatório C:\zoek-results.txt
Download --> [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
2) Clique com o botão direito do mouse em AdwCleaner.exe e escolha a opção Executar como administrador.
3) clique no botão Scan e aguarde o termino:
4) Assim que a verificação tiver sido concluída, clique no botão Clean, ao termino clique me OK -> OK,.., O PC será reiniciado!
* Ao iniciar o PC novamente abrirá um relatório do AdwareCleaner, Copie ele todo e cole aqui no seu tópico.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Smeenk)*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)
*Clique com o botão direito do mouse no Zoek e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Copie e cole as linhas em Azul no espaço do Zoek
LinkBucks.com;a
iedefaults;
chromelook;
firefoxlook;
shortcutfix;
installedprogs;
*Clique [Run Script]
*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!
*Caso a reinicialização do PC seja solicitada, clique [OK]
Zoek.exe is running now.
Do not start any browser windows, they will be closed automatically.
Please wait! This window will close when finished.
A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log
*Cole ou anexe o relatório C:\zoek-results.txt
Convidado- Convidado
o probrema com malwere
por franciung chagas Qui 14 Nov 2013, 19:23
amigo execultei todas os comandos que você mim passou, mais ainda continua redirecionando para o mesmo site.
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Relatório
por franciung chagas Qui 14 Nov 2013, 19:49
Zoek.exe Version 4.0.0.5 Updated 09-November-2013
Tool run by franciung on 14/11/2013 at 19:44:55,24.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\franciung\Desktop\zoek.exe [Script inserted]
==== Older Logs ======================
C:\zoek-results2013-11-14-152222.log 8257 bytes
C:\zoek-results2013-11-14-152804.log 360 bytes
==== Installed Programs ======================
Adobe Flash Player 11 Plugin
Bonanza Deals (remove only)
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Comodo Dragon
Google Update Helper
JMicron Ethernet Adapter NDIS Driver
Microsoft Office com Clique para Executar 2010
Microsoft Office Starter 2010 - Portuguˆs (Brasil)
REALTEK Wireless LAN Driver
==== Registry Search Results for "LinkBucks.com" ======================
No instances of string "LinkBucks.com" found.
==== Chrome Look ======================
BonanzaDeals - franciung - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== shortcuts on All Users Desktop ======================
C:\Users\Public\Desktop\Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\dragon.exe
==== shortcuts in Users Start Menu ======================
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals\Uninstall Bonanza Deals.lnk - C:\Program Files\BonanzaDeals\uninst.exe
==== shortcuts in All Users Start Menu ======================
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk - C:\Windows\ehome\ehshell.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk - C:\Program Files\DVD Maker\DVDMaker.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk - C:\Windows\system32\mblctr.exe /open
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk - C:\Windows\system32\NetProj.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk - C:\Windows\system32\SnippingTool.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk - C:\Windows\system32\StikyNot.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\ShapeCollector.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk - C:\Program Files\Windows Journal\Journal.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk - C:\Windows\system32\printmanagement.msc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk - C:\Windows\system32\secpol.msc /s
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo\Dragon\Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\dragon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo\Dragon\Uninstall Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\uninstall.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JMicron\JMicron Ethernet Adapter NDIS Driver\Uninstall.lnk - C:\Program Files\JMicron\JME_DIR\setup.exe delpkg
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Microsoft Excel Starter 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Microsoft Word Starter 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Centro de Carregamento do Microsoft Office 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Media Gallery.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Office Picture Manager.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk -
==== shortcuts in Quick Launch ======================
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
==== EOF on 14/11/2013 at 19:46:37,79 ======================
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Relatório
por franciung chagas Qui 14 Nov 2013, 20:33
Zoek.exe Version 4.0.0.5 Updated 09-November-2013
Tool run by franciung on 14/11/2013 at 19:44:55,24.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\franciung\Desktop\zoek.exe [Script inserted]
==== Older Logs ======================
C:\zoek-results2013-11-14-152222.log 8257 bytes
C:\zoek-results2013-11-14-152804.log 360 bytes
==== Installed Programs ======================
Adobe Flash Player 11 Plugin
Bonanza Deals (remove only)
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Comodo Dragon
Google Update Helper
JMicron Ethernet Adapter NDIS Driver
Microsoft Office com Clique para Executar 2010
Microsoft Office Starter 2010 - Portuguˆs (Brasil)
REALTEK Wireless LAN Driver
==== Registry Search Results for "LinkBucks.com" ======================
No instances of string "LinkBucks.com" found.
==== Chrome Look ======================
BonanzaDeals - franciung - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== shortcuts on All Users Desktop ======================
C:\Users\Public\Desktop\Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\dragon.exe
==== shortcuts in Users Start Menu ======================
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals\Uninstall Bonanza Deals.lnk - C:\Program Files\BonanzaDeals\uninst.exe
==== shortcuts in All Users Start Menu ======================
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk - C:\Windows\ehome\ehshell.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk - C:\Program Files\DVD Maker\DVDMaker.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk - C:\Windows\system32\mblctr.exe /open
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk - C:\Windows\system32\NetProj.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk - C:\Windows\system32\SnippingTool.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk - C:\Windows\system32\StikyNot.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\ShapeCollector.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk - C:\Program Files\Windows Journal\Journal.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk - C:\Windows\system32\printmanagement.msc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk - C:\Windows\system32\secpol.msc /s
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo\Dragon\Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\dragon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo\Dragon\Uninstall Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\uninstall.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JMicron\JMicron Ethernet Adapter NDIS Driver\Uninstall.lnk - C:\Program Files\JMicron\JME_DIR\setup.exe delpkg
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Microsoft Excel Starter 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Microsoft Word Starter 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Centro de Carregamento do Microsoft Office 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Media Gallery.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Office Picture Manager.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk -
==== shortcuts in Quick Launch ======================
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
==== EOF on 14/11/2013 at 19:46:37,79 ======================
Tool run by franciung on 14/11/2013 at 19:44:55,24.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\franciung\Desktop\zoek.exe [Script inserted]
==== Older Logs ======================
C:\zoek-results2013-11-14-152222.log 8257 bytes
C:\zoek-results2013-11-14-152804.log 360 bytes
==== Installed Programs ======================
Adobe Flash Player 11 Plugin
Bonanza Deals (remove only)
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Comodo Dragon
Google Update Helper
JMicron Ethernet Adapter NDIS Driver
Microsoft Office com Clique para Executar 2010
Microsoft Office Starter 2010 - Portuguˆs (Brasil)
REALTEK Wireless LAN Driver
==== Registry Search Results for "LinkBucks.com" ======================
No instances of string "LinkBucks.com" found.
==== Chrome Look ======================
BonanzaDeals - franciung - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== shortcuts on All Users Desktop ======================
C:\Users\Public\Desktop\Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\dragon.exe
==== shortcuts in Users Start Menu ======================
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals\Uninstall Bonanza Deals.lnk - C:\Program Files\BonanzaDeals\uninst.exe
==== shortcuts in All Users Start Menu ======================
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk - C:\Windows\ehome\ehshell.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk - C:\Program Files\DVD Maker\DVDMaker.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk - C:\Windows\system32\mblctr.exe /open
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk - C:\Windows\system32\NetProj.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk - C:\Windows\system32\SnippingTool.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk - C:\Windows\system32\StikyNot.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\ShapeCollector.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk - C:\Program Files\Windows Journal\Journal.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk - C:\Windows\system32\printmanagement.msc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk - C:\Windows\system32\secpol.msc /s
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo\Dragon\Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\dragon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo\Dragon\Uninstall Comodo Dragon.lnk - C:\Program Files\Comodo\Dragon\uninstall.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JMicron\JMicron Ethernet Adapter NDIS Driver\Uninstall.lnk - C:\Program Files\JMicron\JME_DIR\setup.exe delpkg
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Microsoft Excel Starter 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Microsoft Word Starter 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Centro de Carregamento do Microsoft Office 2010.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Media Gallery.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Office Picture Manager.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Português (Brasil))\Ferramentas do Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk -
==== shortcuts in Quick Launch ======================
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\franciung\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
==== EOF on 14/11/2013 at 19:46:37,79 ======================
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 20:39
Você executou o AdwareCleaner??
-----------------------------------------------------------
1)Execute novamente o Zoek
Copie o script abaixo em Azul, e cole na janela do Zoek e clique no botão -> Run Script
process;
hijackthis;
reset chrome;
autoclean;
C:\Program Files\BonanzaDeals;f
ieadcoanfjloocmfafkebdnfefmohngj;chr
Aguarde.., ao abrir uma janela clique em OK -> Ok, o PC será reiniciado
Copie e cole o relatorio aqui em seu tópico
Convidado- Convidado
Reiniciei o pc e aparecel esse relatório.
por franciung chagas Qui 14 Nov 2013, 20:53
Zoek.exe Version 4.0.0.5 Updated 09-November-2013
Tool run by franciung on 14/11/2013 at 20:42:42,48.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\franciung\Desktop\zoek.exe [Script inserted]
==== Older Logs ======================
C:\zoek-results2013-11-14-152222.log 8257 bytes
C:\zoek-results2013-11-14-152804.log 360 bytes
C:\zoek-results2013-11-14-214637.log 7943 bytes
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
C:\Users\franciung\AppData\Local\Apps\2.0\Q5BEZMD2.0PT\QPXKAO4T.NAT\inst...app_4fe91ede9f9bdca3_0001.0003_7f9ba78fa05bcf4a\GoogleUpdateSetup.exe
C:\Users\FRANCI~1\AppData\Local\Temp\GUM147A.tmp\GoogleUpdate.exe
C:\Users\FRANCI~1\AppData\Local\Temp\GUM147A.tmp\GoogleUpdateSetup.exe
C:\Program Files\GUM2118.tmp\GoogleUpdate.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Users\franciung\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\franciung\AppData\Local\Temp\install_flashplayer11x32ax_gtba_chra_dy_aaa_aih[1].exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bonanzadealslivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\bonanzadealslivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bonanzadealslive deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\bonanzadealslive deleted successfully
==== Deleting Files \ Folders ======================
C:\Program Files\BonanzaDeals deleted
C:\Program Files\BonanzaDealsLive deleted
C:\ProgramData\BonanzaDealsLive deleted
C:\Users\franciung\AppData\Local\BonanzaDealsLive deleted
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals deleted
C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineCore.job deleted
C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineUA.job deleted
C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineCore deleted
C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineUA deleted
C:\Windows\system32\tasks\BonanzaDealsUpdate deleted
"C:\Program Files\GUT2119.tmp" deleted
"C:\Program Files\GUM2118.tmp\GoogleUpdate.exe" deleted
"C:\Program Files\GUM2118.tmp\goopdate.dll" deleted
"C:\Program Files\GUM2118.tmp\goopdateres_pt-BR.dll" deleted
"C:\Program Files\GUM2118.tmp" deleted
==== Chrome Look ======================
BonanzaDeals - franciung - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
==== Chrome Fix ======================
C:\Users\franciung\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3986958631-1641781090-2924148420-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
HKEY_USERS\S-1-5-21-3986958631-1641781090-2924148420-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-3986958631-1641781090-2924148420-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bonanza Deals deleted successfully
==== HijackThis Entries ======================
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
==== Empty IE Cache ======================
C:\Users\franciung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\franciung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\FRANCI~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\franciung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
==== EOF on 14/11/2013 at 20:50:53,57 ======================
Tool run by franciung on 14/11/2013 at 20:42:42,48.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\franciung\Desktop\zoek.exe [Script inserted]
==== Older Logs ======================
C:\zoek-results2013-11-14-152222.log 8257 bytes
C:\zoek-results2013-11-14-152804.log 360 bytes
C:\zoek-results2013-11-14-214637.log 7943 bytes
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Program Files\Comodo\Dragon\dragon.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
C:\Users\franciung\AppData\Local\Apps\2.0\Q5BEZMD2.0PT\QPXKAO4T.NAT\inst...app_4fe91ede9f9bdca3_0001.0003_7f9ba78fa05bcf4a\GoogleUpdateSetup.exe
C:\Users\FRANCI~1\AppData\Local\Temp\GUM147A.tmp\GoogleUpdate.exe
C:\Users\FRANCI~1\AppData\Local\Temp\GUM147A.tmp\GoogleUpdateSetup.exe
C:\Program Files\GUM2118.tmp\GoogleUpdate.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Users\franciung\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\franciung\AppData\Local\Temp\install_flashplayer11x32ax_gtba_chra_dy_aaa_aih[1].exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bonanzadealslivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\bonanzadealslivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bonanzadealslive deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\bonanzadealslive deleted successfully
==== Deleting Files \ Folders ======================
C:\Program Files\BonanzaDeals deleted
C:\Program Files\BonanzaDealsLive deleted
C:\ProgramData\BonanzaDealsLive deleted
C:\Users\franciung\AppData\Local\BonanzaDealsLive deleted
C:\Users\franciung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals deleted
C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineCore.job deleted
C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineUA.job deleted
C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineCore deleted
C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineUA deleted
C:\Windows\system32\tasks\BonanzaDealsUpdate deleted
"C:\Program Files\GUT2119.tmp" deleted
"C:\Program Files\GUM2118.tmp\GoogleUpdate.exe" deleted
"C:\Program Files\GUM2118.tmp\goopdate.dll" deleted
"C:\Program Files\GUM2118.tmp\goopdateres_pt-BR.dll" deleted
"C:\Program Files\GUM2118.tmp" deleted
==== Chrome Look ======================
BonanzaDeals - franciung - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
==== Chrome Fix ======================
C:\Users\franciung\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3986958631-1641781090-2924148420-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
HKEY_USERS\S-1-5-21-3986958631-1641781090-2924148420-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-3986958631-1641781090-2924148420-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{fe063412-bea4-4d76-8ed3-183be6220d17} deleted successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bonanza Deals deleted successfully
==== HijackThis Entries ======================
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
==== Empty IE Cache ======================
C:\Users\franciung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\franciung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\FRANCI~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\franciung\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
==== EOF on 14/11/2013 at 20:50:53,57 ======================
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 21:07
Como está o navegado Comodo Dragon está normal ?
Você esqueceu de fazer o procedimento do AdwareCleaner
Você esqueceu de fazer o procedimento do AdwareCleaner
Convidado- Convidado
Re: Problema com Linkbucks
por franciung chagas Qui 14 Nov 2013, 21:31
Amigo eu desculpa eu não tinha baixado ainda o AdwareCleaner erro meu.
mais já baixei já fiz o procedimento e esse é o relatorio.(eu uso dois navegadores o comodo e o internet explore todos dois estão dando o mesmo problema).
# AdwCleaner v3.011 - Relatório criado 10/11/2013 às 14:40:33
# Atualizado 03/11/2013 por Xplode
# Sistema Operacional : Windows 7 Home Premium (32 bits)
# Usuário : franciung chagas - FRANCIUNGCHAGAS
# Executando de : C:\Users\franciung chagas\Desktop\adwcleaner.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Atalhos ] *****
***** [ Registro ] *****
***** [ Navegadores ] *****
-\\ Internet Explorer v8.0.7600.16385
*************************
AdwCleaner[R0].txt - [665 octets] - [10/11/2013 14:39:18]
AdwCleaner[S0].txt - [584 octets] - [10/11/2013 14:40:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [643 octets] ##########
# AdwCleaner v3.012 - Relatório criado 14/11/2013 às 21:22:22
# Atualizado 11/11/2013 por Xplode
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : franciung - FRANCIUNG-PC
# Executando de : C:\Users\franciung\Downloads\AdwCleaner.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Atalhos ] *****
***** [ Registro ] *****
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79B5B274-65E1-44C3-9DE8-5F8A7485206D}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79B5B274-65E1-44C3-9DE8-5F8A7485206D}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickCtrl.9
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.Update3WebControl.3
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc.1.0
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{D34F391D-4CB7-467F-A543-F583857C63B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{118E1BF6-6279-432F-A285-373A77B90C7A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{14CEEA2F-3D21-46ED-A7D2-89056C520E5E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1CC8D970-F626-4F19-815F-890032BB6606}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{5B5E5D0E-7C83-4A32-ADD2-E5F488DD6783}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{6802463D-636F-41FE-9924-4CAD56906590}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{944661E7-67B9-4DF7-BFF2-05388C166D34}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A7CF66EF-4F0D-46B1-AF71-A500378D6C34}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B71934E5-6B93-448D-9D32-CBAA5150C5D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D34F391D-4CB7-467F-A543-F583857C63B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E970727E-0508-4BEB-8B72-BBA9D0D047C7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{EBF1F869-D2F0-4D31-A877-386C853A9C3D}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F3CF4912-CF0A-451B-AF3B-C4F216C715E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F904AC50-215C-42AB-A532-77E9FDBA9B19}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKCU\Software\BonanzaDealsLive
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKLM\Software\BonanzaDealsLive
***** [ Navegadores ] *****
-\\ Internet Explorer v8.0.7600.16385
*************************
AdwCleaner[R0].txt - [6950 octets] - [10/11/2013 14:39:18]
AdwCleaner[R1].txt - [6345 octets] - [14/11/2013 21:19:25]
AdwCleaner[S0].txt - [6830 octets] - [10/11/2013 14:40:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6890 octets] ##########
mais já baixei já fiz o procedimento e esse é o relatorio.(eu uso dois navegadores o comodo e o internet explore todos dois estão dando o mesmo problema).
# AdwCleaner v3.011 - Relatório criado 10/11/2013 às 14:40:33
# Atualizado 03/11/2013 por Xplode
# Sistema Operacional : Windows 7 Home Premium (32 bits)
# Usuário : franciung chagas - FRANCIUNGCHAGAS
# Executando de : C:\Users\franciung chagas\Desktop\adwcleaner.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Atalhos ] *****
***** [ Registro ] *****
***** [ Navegadores ] *****
-\\ Internet Explorer v8.0.7600.16385
*************************
AdwCleaner[R0].txt - [665 octets] - [10/11/2013 14:39:18]
AdwCleaner[S0].txt - [584 octets] - [10/11/2013 14:40:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [643 octets] ##########
# AdwCleaner v3.012 - Relatório criado 14/11/2013 às 21:22:22
# Atualizado 11/11/2013 por Xplode
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : franciung - FRANCIUNG-PC
# Executando de : C:\Users\franciung\Downloads\AdwCleaner.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Atalhos ] *****
***** [ Registro ] *****
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79B5B274-65E1-44C3-9DE8-5F8A7485206D}
[#] Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79B5B274-65E1-44C3-9DE8-5F8A7485206D}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickCtrl.9
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLive.Update3WebControl.3
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback.1.0
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc.1.0
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{D34F391D-4CB7-467F-A543-F583857C63B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{118E1BF6-6279-432F-A285-373A77B90C7A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{14CEEA2F-3D21-46ED-A7D2-89056C520E5E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1CC8D970-F626-4F19-815F-890032BB6606}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{5B5E5D0E-7C83-4A32-ADD2-E5F488DD6783}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{6802463D-636F-41FE-9924-4CAD56906590}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{944661E7-67B9-4DF7-BFF2-05388C166D34}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A7CF66EF-4F0D-46B1-AF71-A500378D6C34}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B71934E5-6B93-448D-9D32-CBAA5150C5D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D34F391D-4CB7-467F-A543-F583857C63B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E970727E-0508-4BEB-8B72-BBA9D0D047C7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{EBF1F869-D2F0-4D31-A877-386C853A9C3D}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F3CF4912-CF0A-451B-AF3B-C4F216C715E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F904AC50-215C-42AB-A532-77E9FDBA9B19}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Chave Deletedo : HKCU\Software\BonanzaDealsLive
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKLM\Software\BonanzaDealsLive
***** [ Navegadores ] *****
-\\ Internet Explorer v8.0.7600.16385
*************************
AdwCleaner[R0].txt - [6950 octets] - [10/11/2013 14:39:18]
AdwCleaner[R1].txt - [6345 octets] - [14/11/2013 21:19:25]
AdwCleaner[S0].txt - [6830 octets] - [10/11/2013 14:40:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6890 octets] ##########
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 21:33
Ok, muito bom!
Como está os navegadores ?
Como está os navegadores ?
Convidado- Convidado
Re: Problema com Linkbucks
por franciung chagas Qui 14 Nov 2013, 21:42
ainda esta redirecionando para o mesmo site.
tem paginas que consigo abri sem redirecionar no comodo, e não consigo abri no internet explore e vise versa.
tem paginas que consigo abri sem redirecionar no comodo, e não consigo abri no internet explore e vise versa.
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 21:44
poderia tira um Print Screen "imagem" da pagina que é redirecionada??
Qual é a pagina LinkBuck??
----------------------------------------------
Vamos fazer o seguinte um teste
Faça os procedimento abaixo
1) Vá no menu iniciar, e digite na barra de pesquisa CMD achando o aplicativo MS-DOS, clique com o botão direito do mouse, e clique em (Executar como Administrador).
2) Copie os comando abaixo em Azul:
netsh interface ipv4 add dnsservers "Conexão local" 198.153.192.40
netsh interface ipv4 add dnsservers "Conexão local" 198.153.194.40
E cole na janela do MS-DOS com o botão direito do mouse e clique em (Colar) e tecla o botão de seu teclado (Enter).
E me informe se continue o redirecionamento!
Qual é a pagina LinkBuck??
----------------------------------------------
Vamos fazer o seguinte um teste
Faça os procedimento abaixo
1) Vá no menu iniciar, e digite na barra de pesquisa CMD achando o aplicativo MS-DOS, clique com o botão direito do mouse, e clique em (Executar como Administrador).
2) Copie os comando abaixo em Azul:
netsh interface ipv4 add dnsservers "Conexão local" 198.153.192.40
netsh interface ipv4 add dnsservers "Conexão local" 198.153.194.40
E cole na janela do MS-DOS com o botão direito do mouse e clique em (Colar) e tecla o botão de seu teclado (Enter).
E me informe se continue o redirecionamento!
Convidado- Convidado
Re: Problema com Linkbucks
por franciung chagas Qui 14 Nov 2013, 22:00
Ainda continua do mesmo jeito amigo redirecionando para esse link:http://08010997.qqc.co/url/http://ead.ifrn.edu.br/moodle/
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por franciung chagas Qui 14 Nov 2013, 22:01
a imgem que aparece esta dentro do arquivo de word.
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 22:12
É... ta feio a coisa, parece que é DNS de roteador contaminado!
Mas vamos fazer ultima coisa reset o Internet Explorer manualmente
1) Pelo Internet Explorer Clique em Ferramentas > Opçao de Internet > Clique na aba (Avançado) e por último (Redefinir..)
Reinicie o navegador e veja se continua o redirecionamento, caso ainda ocorra seu Modem/Roteador foi alterado o DNS, aí o bicho pega, sem condições de te ajuda!
-----------------------------
Edit:
Tenta esse procedimento
1) Abra o CMD "Prompt de Comando" com o botão direito do mouse e clique em (Executar como Administrador)
2) Copie a sintaxe abaixo em Azul:
ipconfig /displaydns
Cole na janela do Prompt e tecla (Enter)
Convidado- Convidado
Re: Problema com Linkbucks
por franciung chagas Qui 14 Nov 2013, 22:27
eu vou rir para não chora rsrsrs...
continua amesma coisa ainda amigo. pelo que eu entendi você disse que o problema e no roteado, no caso tem conserto ou só vai outro?
continua amesma coisa ainda amigo. pelo que eu entendi você disse que o problema e no roteado, no caso tem conserto ou só vai outro?
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 22:30
Tem conserto, caso as configurações de DNS do seu Roteador estiver alterado, é só removelo, ou resetar o roteador! -> "Apagar todas as configurações e faze-las novamente" <-- essa opção é complicado! hehefranciung chagas escreveu:eu vou rir para não chora rsrsrs...
continua amesma coisa ainda amigo. pelo que eu entendi você disse que o problema e no roteado, no caso tem conserto ou só vai outro?
Seu computador é com Wi-fi ou Cabo ?
Convidado- Convidado
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por franciung chagas Qui 14 Nov 2013, 22:33
creio que você esta certo que o roteador é no computador pois já formatei duas vezes é sempre da esse mesmo problema.
Última edição por franciung chagas em Sex 15 Nov 2013, 00:47, editado 1 vez(es)
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Qui 14 Nov 2013, 22:36
Já pegamos caso igual ao seu aqui no Fórum que foi resolvido, e com esses procedimento todo que passei pra você resolveria o problema!franciung chagas escreveu:creio que você esta certo que o probrema é no computador pois já formatei duas vezes é sempre da esse mesmo problema.
É pra quebra a cabeça!
Seu problema não é no computador.., creio que seja no roteador mesmo, DNS infectado, alterado!
Qual o modelo de seu Roteador?
Convidado- Convidado
Re: Problema com Linkbucks
por franciung chagas Sex 15 Nov 2013, 00:52
"na postagem anterior eu mim enganei troquei a palavras computador por rotedaor" o modelo do meu roteador é wireless speed router 150mbps "apri00150"
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Convidado Sex 15 Nov 2013, 10:10
Verifica se é esse e confirma!franciung chagas escreveu:"na postagem anterior eu mim enganei troquei a palavras computador por rotedaor" o modelo do meu roteador é wireless speed router 150mbps "apri00150"
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Um conselho, caso você não saiba configurar um roteador, te aconselho a não resetar o Roteador, não faça isso, só se algum técnico estiver na sua presença!
Vou tentar te orientar só para verificar se possui algo alterado no seu Roteador, siga as instruções abaixo
1)
Abre seu navegador, e na barra de endereço digite esse IP -> 192.168.1.254 e tecla (Enter)
2)
Abrindo uma janela pequena digite o Usernome-> admin e Senha -> admin, clique em (OK)
3)
Abrira uma pagina de configurações do Roteado conforme imagem abaixo, clique em -> Configurações de TCP/IP --> Interface Wan
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
*Verifique se possui DNS adicionados em sua configuração semelhante na imagem acima marcado com uma seta vermelha, tire um Print Screem e cole aqui em seu Tópico
Convidado- Convidado
Re: Problema com Linkbucks
por franciung chagas Sáb 16 Nov 2013, 12:52
O reteador é esse mesmo amigo.
Última edição por franciung chagas em Sáb 16 Nov 2013, 12:55, editado 1 vez(es)
franciung chagas- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 12/11/2013
Re: Problema com Linkbucks
por Power Max Sáb 16 Nov 2013, 12:59
Confira também a resposta que passei no caso abaixo porque pode ser útil na solução do seu problema também:[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: Problema com Linkbucks
por Power Max Sáb 16 Nov 2013, 13:28
Faça o seguinte, por gentileza: Instale e use este programa indicado neste tutorial:[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Depois me diga se correu tudo bem com a sua instalação e uso e se melhorou o PC depois disto.
_______________________
Abra o Internet Explorer e clique *[Ferramentas] > [Opções da Internet] > [Conexões] > [Configurações da Lan]**Verifique em *Usar script de configuração automática* se há alguma URL terminada com .pac
*Caso positivo, delete-a.
*Desmarque as opções *Servidor Proxy* e *Usar script de configuração automática*
*Clique [OK]
*Feche o Internet Explorer
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Página 1 de 2 • 1, 2
Tópicos semelhantes» Como remover Linkbucks
» Problema com o "LinkBucks"
» Remover Linkbucks
» Linkbucks - que praga é essa?? PROBLEMA RECORRENTE
» LinkBucks não sai do PC.
» Problema com o "LinkBucks"
» Remover Linkbucks
» Linkbucks - que praga é essa?? PROBLEMA RECORRENTE
» LinkBucks não sai do PC.
Página 1 de 2
Permissões neste sub-fórum
Não podes responder a tópicos|
|
|