Meu Note não inicia direito e tem o Baidu.

Meninos!!! eu fui baixar uma apostila para estudar, resultado: começaram a pipocar páginas e mais páginas de propaganda no meu note,
o internet explorer sumiu, eu uso o chrome, queria apagar o explorer mas ele some!!!
o vírus bloqueia algumas pastas para não ser deletado,
não consigo tirar o baidu antivirus, ele desliga o REVO!!!!!
Meu note não inicia direito, demoras séculos para iniciar.
Baixei histericamente TODOS os antivirus conhecidos e os antimalwares mas não resolveu!!!!

Grata!

   Olá!

 Siga, por gentileza, as dicas do tutorial abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste, por gentileza, o log do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

Tentei passar mas disse que ultrapassa o limite autorizado...

# AdwCleaner v3.018 - Relatório criado 30/01/2014 às 01:17:31
# Atualizado 28/01/2014 por Xplode
# Sistema Operacional : Windows (TM) Vista Home Premium Service Pack 1 (64 bits)
# Usuário : Jackeline - JACKELINE-PC
# Executando de : C:\Users\Jackeline\Downloads\adwcleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

Serviço Deletada : Web Assistant Updater
Serviço Deletada : Web Assistant

***** [ Arquivos / Pastas ] *****

[!] Pasta Deletada : C:\BywifiSave
[!] Pasta Deletada : C:\BywifiShare
[!] Pasta Deletada : C:\ProgramData\Babylon
[!] Pasta Deletada : C:\ProgramData\baidu
[!] Pasta Deletada : C:\ProgramData\BonanzaDealsLive
[!] Pasta Deletada : C:\ProgramData\DealPlyLive
[!] Pasta Deletada : C:\ProgramData\IBUpdaterService
[!] Pasta Deletada : C:\ProgramData\SweetIM
[!] Pasta Deletada : C:\ProgramData\Tarma Installer
[!] Pasta Deletada : C:\ProgramData\ADDICT-THING
[!] Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\BonanzaDealsLive
[!] Pasta Deletada : C:\Program Files (x86)\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\Conduit
[!] Pasta Deletada : C:\Program Files (x86)\DealPly
[!] Pasta Deletada : C:\Program Files (x86)\DealPlyLive
[!] Pasta Deletada : C:\Program Files (x86)\FunWebProducts
[!] Pasta Deletada : C:\Program Files (x86)\IminentToolbar
[!] Pasta Deletada : C:\Program Files (x86)\MyPC Backup
[!] Pasta Deletada : C:\Program Files (x86)\MyPC Backup
[!] Pasta Deletada : C:\Program Files (x86)\MyWebSearch
[!] Pasta Deletada : C:\Program Files (x86)\PriceGong
[!] Pasta Deletada : C:\Program Files (x86)\Search Guard PlusU
[!] Pasta Deletada : C:\Program Files (x86)\SGPSA
[!] Pasta Deletada : C:\Program Files (x86)\SimilarSites
[!] Pasta Deletada : C:\Program Files (x86)\SweetIM
[!] Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
[!] Pasta Deletada : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
[!] Pasta Deletada : C:\Windows\SysWOW64\WNLT
[!] Pasta Deletada : C:\Program Files\Web Assistant
[!] Pasta Deletada : C:\Windows\System32\ARFC
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\apn
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\BonanzaDealsLive
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\Conduit
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\DealPlyLive
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\PackageAware
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\torch
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\BabylonToolbar
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\Conduit
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\FunWebProducts
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\IminentToolbar
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\incredibar.com
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\MyWebSearch
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\PriceGong
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\Babylon
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\baidu
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\DealPly
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\DSite
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\dvdvideosoftiehelpers
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\eType
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\file scout
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\Funmoods
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\IminentToolbar
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\QuickStoresToolbar
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\SimilarSites
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\Systweak
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\Tepfel
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\UpdaterEX
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\Mozilla Firefox\Extensions\quickstores@quickstores.de
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdebcffgnijbblbinknkbefciofebcda
Arquivo Deletada : C:\Windows\SysWOW64\f3PSSavr.scr
Arquivo Deletada : C:\Windows\System32\roboot64.exe
Arquivo Deletada : C:\Users\Jackeline\AppData\Local\funmoods.crx
Arquivo Deletada : C:\Users\Jackeline\AppData\Local\funmoods-speeddial_sf.crx
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
Arquivo Deletada : C:\Users\Jackeline\Desktop\Bywifi FLV Merger.lnk
Arquivo Deletada : C:\Users\Jackeline\Desktop\QuickStores.url
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\invalidprefs.js
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\searchplugins\iminent.xml
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\searchplugins\WebSearch.xml
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\user.js
Arquivo Deletada : C:\Windows\System32\Tasks\Funmoods

***** [ Atalhos ] *****


***** [ Registro ] *****

Valor Deletedo : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Valor Deletedo : HKCU\Software\Mozilla\Firefox\Extensions [{8A9386B4-E958-4C4C-ADF4-8F26DB3E4829}]
Valor Deletedo : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Valor Deletedo : HKCU\Software\Mozilla\Firefox\Extensions [Lyrics@LyricsContainer.co]
Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [m3ffxtbr@mywebsearch.com]
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\abfmigjiaapipflmopkaaooigcjjdojh
Chave Deletedo : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\olkgbpdjnmnopocgklhmhgicjdamkjei
Chave Deletedo : HKCU\Software\Google\Chrome\Extensions\mdebcffgnijbblbinknkbefciofebcda
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\mdebcffgnijbblbinknkbefciofebcda
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\WebCakeIEClient.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\b
Chave Deletedo : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Chave Deletedo : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BHO.PSHelper
Chave Deletedo : HKLM\SOFTWARE\Classes\BHO.PSHelper.1
Chave Deletedo : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Chave Deletedo : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Chave Deletedo : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc
Chave Deletedo : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Chave Deletedo : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.DataControl
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.DataControl.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistoryKillerScheduler
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistoryKillerScheduler.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistorySwatterControlBar
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistorySwatterControlBar.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HTMLMenu
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HTMLMenu.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HTMLMenu.2
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.IECookiesManager
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.IECookiesManager.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.KillerObjManager
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.KillerObjManager.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterBarButton
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterBarButton.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterSettingsControl
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterSettingsControl.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Chave Deletedo : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Chave Deletedo : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.ChatSessionPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.ChatSessionPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.HTMLPanel
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.HTMLPanel.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.MultipleButton
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.MultipleButton.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.OutlookAddin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.PseudoTransparentPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.PseudoTransparentPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.UrlAlertButton
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.UrlAlertButton.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.SettingsPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.SettingsPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.ToolbarPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.ToolbarPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO
Chave Deletedo : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Chave Deletedo : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Prod.cap
Chave Deletedo : HKLM\SOFTWARE\Classes\ScreenSaverControl.ScreenSaverInstaller
Chave Deletedo : HKLM\SOFTWARE\Classes\ScreenSaverControl.ScreenSaverInstaller.1
Chave Deletedo : HKLM\SOFTWARE\Classes\sim-packages
Chave Deletedo : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Chave Deletedo : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Chave Deletedo : HKLM\SOFTWARE\Classes\WebCakeIEClient.Api
Chave Deletedo : HKLM\SOFTWARE\Classes\WebCakeIEClient.Api.1
Chave Deletedo : HKLM\SOFTWARE\Classes\WebCakeIEClient.Layers
Chave Deletedo : HKLM\SOFTWARE\Classes\WebCakeIEClient.Layers.1
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows Media\Wmsdk\Sources [F3PopularScreenSavers]
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform [FunWebProducts]
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@mywebsearch.com/Plugin
Chave Deletedo : HKCU\Software\5855dbd9b73ceb15
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{7169BBB3-3289-4696-B35D-4A88BCF6FB12}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1E0DE227-5CE4-4EA3-AB0C-8B03E1AA76BC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{25560540-9571-4D7B-9389-0F166788785A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{7473D292-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{7473D296-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{799391D3-EB86-4BAC-9BD3-CBFEA58A0E15}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{819FFE22-35C7-4925-8CDA-4E0E2DB94302}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4730EBE-43A6-443E-9776-36915D323AD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A9571378-68A1-443D-B082-284F960C6D17}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B813095C-81C0-4E40-AA14-67520372B987}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C4743D3E-20D7-4B52-84F2-5E4E277B2D82}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D858DAFC-9573-4811-B323-7011A3AA7E61}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{45D59156-647B-4B06-B20E-0E297A1077BD}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{819FFE21-35C7-4925-8CDA-4E0E2DB94302}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8E9CF769-3D3B-40EB-9E2D-76E7A205E4D2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{BE990A32-C2EC-4654-8FD0-26FECEA81998}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{819FFE20-35C7-4925-8CDA-4E0E2DB94302}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C4743D3E-20D7-4B52-84F2-5E4E277B2D82}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{09E90109-A9AA-4980-BCEF-76F8D924E902}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25560540-9571-4D7B-9389-0F166788785A}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CF699CA-2174-4ED8-BEC1-BA82095EDCE0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C4743D3E-20D7-4B52-84F2-5E4E277B2D82}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09E90109-A9AA-4980-BCEF-76F8D924E902}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{19F2B849-4ADE-4D4B-85F9-C31C643DBDE9}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467E-B8D4-7786EDA79AE0}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467E-B8D4-7786EDA79AE0}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{07B18EA9-A523-4961-B6BB-170DE4475CCA}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00A6FAF6-072E-44CF-8957-5838F569A31D}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Chave Deletedo : HKCU\Software\1ClickDownload
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\BabSolution
Chave Deletedo : HKCU\Software\BabylonToolbar
Chave Deletedo : HKCU\Software\BonanzaDealsLive
Chave Deletedo : HKCU\Software\Conduit
Chave Deletedo : HKCU\Software\DataMngr
Chave Deletedo : HKCU\Software\DealPlyLive
Chave Deletedo : HKCU\Software\dsiteproducts
Chave Deletedo : HKCU\Software\filescout
Chave Deletedo : HKCU\Software\FreeSoftToday
Chave Deletedo : HKCU\Software\FunWebProducts
Chave Deletedo : HKCU\Software\Headlight
Chave Deletedo : HKCU\Software\IGearSettings
Chave Deletedo : HKCU\Software\IM
Chave Deletedo : HKCU\Software\ImInstaller
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKCU\Software\MyWebSearch
Chave Deletedo : HKCU\Software\PIP
Chave Deletedo : HKCU\Software\SGPUpdater
Chave Deletedo : HKCU\Software\Softonic
Chave Deletedo : HKCU\Software\systweak
Chave Deletedo : HKCU\Software\Tutorials
Chave Deletedo : HKCU\Software\TutoTag
Chave Deletedo : HKCU\Software\AppDataLow\Software\Conduit
Chave Deletedo : HKCU\Software\AppDataLow\Software\Crossrider
Chave Deletedo : HKCU\Software\AppDataLow\Software\Fun Web Products
Chave Deletedo : HKCU\Software\AppDataLow\Software\FunWebProducts
Chave Deletedo : HKCU\Software\AppDataLow\Software\LyricsContainer
Chave Deletedo : HKCU\Software\AppDataLow\Software\MyWebSearch
Chave Deletedo : HKCU\Software\AppDataLow\Software\PriceGong
Chave Deletedo : HKCU\Software\AppDataLow\Software\smartbar
Chave Deletedo : HKLM\Software\Babylon
Chave Deletedo : HKLM\Software\BabylonToolbar
Chave Deletedo : HKLM\Software\Conduit
Chave Deletedo : HKLM\Software\DataMngr
Chave Deletedo : HKLM\Software\FocusInteractive
Chave Deletedo : HKLM\Software\FreeSoftToday
Chave Deletedo : HKLM\Software\Fun Web Products
Chave Deletedo : HKLM\Software\MyWebSearch
Chave Deletedo : HKLM\Software\PIP
Chave Deletedo : HKLM\Software\systweak
Chave Deletedo : HKLM\Software\Tutorials
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EE2B017-D82C-4B12-B071-5CF1B23D1A42}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuickStores-Toolbar_is1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Guard Plus Updater
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4EE2B017-D82C-4B12-B071-5CF1B23D1A42}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Bonanza Deals
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\I Want This
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IMBoosterARP
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Iminent
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Lyrics@LyricsContainer.co
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceGong
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\QuickStores-Toolbar_is1
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Updater Service
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\wnlt
Chave Deletedo : [x64] HKLM\SOFTWARE\Tarma Installer
Chave Deletedo : [x64] HKLM\SOFTWARE\Web Assistant
Chave Deletedo : [x64] HKLM\SOFTWARE\wnlt
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Chave Deletedo : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [ Navegadores ] *****

-\\ Internet Explorer v7.0.6001.18639

Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [bProtectTabs]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]

-\\ Mozilla Firefox v23.0.1 (pt-BR)

[ Arquivo : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\prefs.js ]

Linha deletada : user_pref("extensions.ZJcjtj.scode", "(function(){try{if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};}catch(e){};if(window.self==window.top){var script=document.createElement('sc[...]
Linha deletada : user_pref("extensions.bctdOEiTW.scode", "(function(){try{if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};}catch(e){};if(window.self.location.protocol.indexOf('hxxp')>-1 && window.[...]
Linha deletada : user_pref("extensions.v9FbV.scode", "(function(){try{if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};}catch(e){};if(window.self.location.hostname.indexOf('mail.')==-1)\r\n{try{for[...]

-\\ Google Chrome v32.0.1700.102

[ Arquivo : C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [56485 octets] - [29/01/2014 22:43:33]
AdwCleaner[S0].txt - [45044 octets] - [30/01/2014 01:17:31]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [45105 octets] ##########
# AdwCleaner v3.018 - Relatório criado 06/02/2014 às 11:34:31
# Atualizado 28/01/2014 por Xplode
# Sistema Operacional : Windows (TM) Vista Home Premium Service Pack 1 (64 bits)
# Usuário : Jackeline - JACKELINE-PC
# Executando de : C:\Users\Jackeline\Downloads\adwcleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

Serviço Deletada : Web Assistant Updater
Serviço Deletada : Web Assistant

***** [ Arquivos / Pastas ] *****

[!] Pasta Deletada : C:\ProgramData\baidu
[!] Pasta Deletada : C:\ProgramData\SweetIM
[!] Pasta Deletada : C:\ProgramData\Tarma Installer
[!] Pasta Deletada : C:\ProgramData\ADDICT-THING
[!] Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\Conduit
[!] Pasta Deletada : C:\Program Files (x86)\DealPly
[!] Pasta Deletada : C:\Program Files (x86)\FunWebProducts
[!] Pasta Deletada : C:\Program Files (x86)\MyPC Backup
[!] Pasta Deletada : C:\Program Files (x86)\MyPC Backup
[!] Pasta Deletada : C:\Program Files (x86)\MyWebSearch
[!] Pasta Deletada : C:\Program Files (x86)\PriceGong
[!] Pasta Deletada : C:\Program Files (x86)\Search Guard PlusU
[!] Pasta Deletada : C:\Program Files (x86)\SGPSA
[!] Pasta Deletada : C:\Program Files (x86)\SweetIM
[!] Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bywifi
[!] Pasta Deletada : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
[!] Pasta Deletada : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
[!] Pasta Deletada : C:\Windows\SysWOW64\WNLT
[!] Pasta Deletada : C:\Program Files\Web Assistant
[!] Pasta Deletada : C:\Windows\System32\ARFC
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\torch
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\Conduit
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\FunWebProducts
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\MyWebSearch
[!] Pasta Deletada : C:\Users\Jackeline\AppData\LocalLow\PriceGong
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\baidu
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\eType
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\QuickStoresToolbar
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Roaming\Systweak
[!] Pasta Deletada : C:\Program Files (x86)\Mozilla Firefox\Extensions\quickstores@quickstores.de
[!] Pasta Deletada : C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdebcffgnijbblbinknkbefciofebcda
Arquivo Deletada : C:\Windows\System32\roboot64.exe
Arquivo Deletada : C:\Users\Jackeline\Desktop\Bywifi FLV Merger.lnk
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\invalidprefs.js
Arquivo Deletada : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\user.js
Arquivo Deletada : C:\Windows\System32\Tasks\Funmoods

***** [ Atalhos ] *****


***** [ Registro ] *****

Valor Deletedo : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Valor Deletedo : HKCU\Software\Mozilla\Firefox\Extensions [{8A9386B4-E958-4C4C-ADF4-8F26DB3E4829}]
Valor Deletedo : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Valor Deletedo : HKCU\Software\Mozilla\Firefox\Extensions [Lyrics@LyricsContainer.co]
Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [m3ffxtbr@mywebsearch.com]
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\abfmigjiaapipflmopkaaooigcjjdojh
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\olkgbpdjnmnopocgklhmhgicjdamkjei
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\mdebcffgnijbblbinknkbefciofebcda
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Chave Deletedo : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Chave Deletedo : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Chave Deletedo : HKLM\SOFTWARE\Classes\BHO.PSHelper
Chave Deletedo : HKLM\SOFTWARE\Classes\BHO.PSHelper.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Chave Deletedo : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.DataControl
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.DataControl.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistoryKillerScheduler
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistoryKillerScheduler.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistorySwatterControlBar
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HistorySwatterControlBar.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HTMLMenu
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HTMLMenu.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.HTMLMenu.2
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.IECookiesManager
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.IECookiesManager.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.KillerObjManager
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.KillerObjManager.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterBarButton
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterBarButton.1
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterSettingsControl
Chave Deletedo : HKLM\SOFTWARE\Classes\FunWebProducts.PopSwatterSettingsControl.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Chave Deletedo : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.ChatSessionPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.ChatSessionPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.HTMLPanel
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.HTMLPanel.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.MultipleButton
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.MultipleButton.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.OutlookAddin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.PseudoTransparentPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.PseudoTransparentPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.UrlAlertButton
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearch.UrlAlertButton.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.SettingsPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.SettingsPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.ToolbarPlugin
Chave Deletedo : HKLM\SOFTWARE\Classes\MyWebSearchToolBar.ToolbarPlugin.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Prod.cap
Chave Deletedo : HKLM\SOFTWARE\Classes\ScreenSaverControl.ScreenSaverInstaller
Chave Deletedo : HKLM\SOFTWARE\Classes\ScreenSaverControl.ScreenSaverInstaller.1
Chave Deletedo : HKLM\SOFTWARE\Classes\sim-packages
Chave Deletedo : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Chave Deletedo : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows Media\Wmsdk\Sources [F3PopularScreenSavers]
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform [FunWebProducts]
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@mywebsearch.com/Plugin
Chave Deletedo : HKCU\Software\5855dbd9b73ceb15
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1E0DE227-5CE4-4EA3-AB0C-8B03E1AA76BC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{25560540-9571-4D7B-9389-0F166788785A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{7473D292-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{7473D296-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{799391D3-EB86-4BAC-9BD3-CBFEA58A0E15}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{819FFE22-35C7-4925-8CDA-4E0E2DB94302}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4730EBE-43A6-443E-9776-36915D323AD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A9571378-68A1-443D-B082-284F960C6D17}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B813095C-81C0-4E40-AA14-67520372B987}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C4743D3E-20D7-4B52-84F2-5E4E277B2D82}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D858DAFC-9573-4811-B323-7011A3AA7E61}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{45D59156-647B-4B06-B20E-0E297A1077BD}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{819FFE21-35C7-4925-8CDA-4E0E2DB94302}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8E9CF769-3D3B-40EB-9E2D-76E7A205E4D2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{BE990A32-C2EC-4654-8FD0-26FECEA81998}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{819FFE20-35C7-4925-8CDA-4E0E2DB94302}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C4743D3E-20D7-4B52-84F2-5E4E277B2D82}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{09E90109-A9AA-4980-BCEF-76F8D924E902}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25560540-9571-4D7B-9389-0F166788785A}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CF699CA-2174-4ED8-BEC1-BA82095EDCE0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C4743D3E-20D7-4B52-84F2-5E4E277B2D82}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09E90109-A9AA-4980-BCEF-76F8D924E902}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{19F2B849-4ADE-4D4B-85F9-C31C643DBDE9}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{07B18EA9-A523-4961-B6BB-170DE4475CCA}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00A6FAF6-072E-44CF-8957-5838F569A31D}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\BabSolution
Chave Deletedo : HKCU\Software\Conduit
Chave Deletedo : HKCU\Software\dsiteproducts
Chave Deletedo : HKCU\Software\filescout
Chave Deletedo : HKCU\Software\FreeSoftToday
Chave Deletedo : HKCU\Software\FunWebProducts
Chave Deletedo : HKCU\Software\Headlight
Chave Deletedo : HKCU\Software\IGearSettings
Chave Deletedo : HKCU\Software\IM
Chave Deletedo : HKCU\Software\ImInstaller
Chave Deletedo : HKCU\Software\MyWebSearch
Chave Deletedo : HKCU\Software\PIP
Chave Deletedo : HKCU\Software\SGPUpdater
Chave Deletedo : HKCU\Software\Softonic
Chave Deletedo : HKCU\Software\systweak
Chave Deletedo : HKCU\Software\Tutorials
Chave Deletedo : HKCU\Software\TutoTag
Chave Deletedo : HKLM\Software\Babylon
Chave Deletedo : HKLM\Software\Conduit
Chave Deletedo : HKLM\Software\DataMngr
Chave Deletedo : HKLM\Software\FocusInteractive
Chave Deletedo : HKLM\Software\Fun Web Products
Chave Deletedo : HKLM\Software\MyWebSearch
Chave Deletedo : HKLM\Software\PIP
Chave Deletedo : HKLM\Software\systweak
Chave Deletedo : HKLM\Software\Tutorials
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EE2B017-D82C-4B12-B071-5CF1B23D1A42}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuickStores-Toolbar_is1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Guard Plus Updater
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4EE2B017-D82C-4B12-B071-5CF1B23D1A42}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Bonanza Deals
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\I Want This
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IMBoosterARP
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Iminent
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Lyrics@LyricsContainer.co
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceGong
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\QuickStores-Toolbar_is1
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Updater Service
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\wnlt
Chave Deletedo : [x64] HKLM\SOFTWARE\Tarma Installer
Chave Deletedo : [x64] HKLM\SOFTWARE\Web Assistant
Chave Deletedo : [x64] HKLM\SOFTWARE\wnlt
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Chave Deletedo : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [ Navegadores ] *****

-\\ Internet Explorer v7.0.6001.18639

Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]

-\\ Mozilla Firefox v23.0.1 (pt-BR)

[ Arquivo : C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\prefs.js ]

Linha deletada : user_pref("extensions.ZJcjtj.scode", "(function(){try{if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};}catch(e){};if(window.self==window.top){var script=document.createElement('sc[...]
Linha deletada : user_pref("extensions.bctdOEiTW.scode", "(function(){try{if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};}catch(e){};if(window.self.location.protocol.indexOf('hxxp')>-1 && window.[...]
Linha deletada : user_pref("extensions.v9FbV.scode", "(function(){try{if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};}catch(e){};if(window.self.location.hostname.indexOf('mail.')==-1)\r\n{try{for[...]

-\\ Google Chrome v32.0.1700.107

[ Arquivo : C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [100092 octets] - [29/01/2014 22:43:33]
AdwCleaner[S0].txt - [79467 octets] - [30/01/2014 01:17:31]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [79528 octets] ##########

Siga, por gentileza, as dicas deste tutorial para fazer uma limpeza de seu PC com o Malwarebytes:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Na sua próxima resposta poste este log do Malwarebytes.

Ficamos no aguardo.

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Versão da Base de Dados:  v2014.02.01.08

Windows Vista Service Pack 1 x64 NTFS
Internet Explorer 7.0.6001.18000
Jackeline :: JACKELINE-PC [administrador]

Proteção: Não permitir

02/02/2014 01:37:52
mbam-log-2014-02-02 (01-37-52).txt

Tipo de Verificação:  Verificação Rápida
Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos  | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opções de verificação desativadas: P2P
Objetos escaneados:  229818
Tempo decorrido: 49 minuto(s), 32 segundo(s)

Processos de Memória Detectados: 3
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe (PUP.Optional.SweetPacks.A) -> 3704 -> Nenhuma ação foi feita.
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe (PUP.Optional.SweetPacks.A) -> 8704 -> Nenhuma ação foi feita.
C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager.A) -> 1992 -> Nenhuma ação foi feita.

Módulos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)

Chaves de Registro Detectadas: 129
HKLM\SYSTEM\CurrentControlSet\Services\Web Assistant (PUP.Optional.SweetPacks.A) -> Nenhuma ação foi feita.
HKLM\SYSTEM\CurrentControlSet\Services\savesenselive (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SAVESENSELIVE.EXE (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4} (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
HKCR\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCR\AppID\{7169BBB3-3289-4696-B35D-4A88BCF6FB12} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692} (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\AppID\{A2D3FB7A-6873-45E8-AF96-57092D721828} (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828} (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassSvc (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B} (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCR\esrv.BabylonESrvc.1 (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCR\esrv.BabylonESrvc (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\WebCakeIEClient.Layers.1 (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\WebCakeIEClient.Layers (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840} (PUP.Optional.Funmoods.A) -> Nenhuma ação foi feita.
HKCR\esrv.funmoodsESrvc.1 (PUP.Optional.Funmoods.A) -> Nenhuma ação foi feita.
HKCR\esrv.funmoodsESrvc (PUP.Optional.Funmoods.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{806785D0-375F-4C2C-92E3-B8EE65D28E83} (PUP.Optional.BonanzaDeals.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\WebCakeIEClient.Api.1 (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\WebCakeIEClient.Api (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575} (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCR\b (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71} (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{1631550F-191D-4826-B069-D9439253D926} (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\PriceFactorIE.PriceGongBHO.1 (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\PriceFactorIE.PriceGongBHO (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926} (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926} (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB} (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\PriceGongIE.PriceGongCtrl.1 (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\PriceGongIE.PriceGongCtrl (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B} (PUP.Optional.FunMoods.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B} (PUP.Optional.FunMoods.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.Optional.FunMoods.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.Optional.FunMoods.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Optional.Funmoods.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Optional.Funmoods.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} (PUP.Optional.Incredibar) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77} (PUP.Optional.Incredibar) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17} (PUP.Optional.BonanzaDeals.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} (PUP.Optional.GreatSaver.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542} (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A} (PUP.Optional.Funmoods.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
HKLM\SYSTEM\CurrentControlSet\Services\Wpm (PUP.Optional.WpManager.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WPM (PUP.Optional.WpManager.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLive.OneClickCtrl.9 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLive.OneClickProcessLauncherMachine (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLive.OneClickProcessLauncherMachine.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLive.Update3WebControl.3 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CoCreateAsync (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CoCreateAsync.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CoreClass (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CoreClass.1 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CoreMachineClass (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CoreMachineClass.1 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CredentialDialogMachine (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.CredentialDialogMachine.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachine (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.ProcessLauncher (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.ProcessLauncher.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3COMClassService (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3COMClassService.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3WebMachine (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3WebMachine.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3WebMachineFallback (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3WebSvc (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\SaveSenseLiveUpdate.Update3WebSvc.1.0 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\AppID\PriceGongIE.DLL (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
HKCR\AppID\SaveSenseLive.exe (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCR\AppID\WebCakeIEClient.DLL (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\SaveSense (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\SaveSenseLive (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} (PUP.Optional.WebSearchInfo) -> Nenhuma ação foi feita.
HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Nenhuma ação foi feita.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Nenhuma ação foi feita.
HKCU\Software\AppDataLow\Software\Crossrider (PUP.Optional.CrossRider.A) -> Nenhuma ação foi feita.
HKCU\Software\BabSolution\Redir (PUP.Optional.Babylon.A) -> Nenhuma ação foi feita.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Nenhuma ação foi feita.
HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Nenhuma ação foi feita.
HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.Optional.FunMoods.A) -> Nenhuma ação foi feita.
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\BabylonToolbar (PUP.Optional.Babylon.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\IminentToolbar (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\nationzoomSoftware (PUP.Optional.NationZoom.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\SaveSenseLive (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.Optional.FunMoods.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe (PUP.Optional.BonanzaDeals.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9 (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
HKLM\SYSTEM\CurrentControlSet\Services\savesenselivem (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nenhuma ação foi feita.
HKCR\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
HKCR\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2} (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Enviado para a Quarentena e deletado com sucesso.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011221158} (Adware.GamePlayLab) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011221158} (Adware.GamePlayLab) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158} (Adware.GamePlayLab) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\FREESOFTTODAY (Adware.EoRezo) -> Enviado para a Quarentena e deletado com sucesso.

Valores de Registro Detectadas: 9
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Data:  -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Data:  -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{1FAFD711-ABF9-4F6A-8130-5166C7371427} (PUP.Optional.Iminent.A) -> Data:  -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{1FAFD711-ABF9-4F6A-8130-5166C7371427} (PUP.Optional.Iminent.A) -> Data: Iminent Toolbar -> Nenhuma ação foi feita.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0X2O1C0R2R1R -> Nenhuma ação foi feita.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {A7898CDE-8FFD-4FAA-A1FF-EDFF2C2E77E7} -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs|bProtectTabs (PUP.Optional.BrowserProtect.A) -> Data: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -> Nenhuma ação foi feita.
HKLM\SYSTEM\CurrentControlSet\Services\Wpm|ImagePath (PUP.Optional.WpManager.A) -> Data: C:\ProgramData\WPM\wprotectmanager.exe -service -> Nenhuma ação foi feita.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {A7898CDE-8FFD-4FAA-A1FF-EDFF2C2E77E7} -> Nenhuma ação foi feita.

Itens de Dados no Registro Detectadas: 7
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Search Page (PUP.Optional.Snapdo) -> Ruim: (http://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=BR&userid=29932c7c-e963-43da-b8cd-a7c0f7cc67be&searchtype=ds&q={searchTerms}) Bom: (http://www.google.com) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Search Bar (PUP.Optional.Snapdo) -> Ruim: (http://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=BR&userid=29932c7c-e963-43da-b8cd-a7c0f7cc67be&searchtype=ds&q={searchTerms}) Bom: (http://www.google.com) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search|Default_Search_URL (PUP.Optional.Snapdo) -> Ruim: (http://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=BR&userid=29932c7c-e963-43da-b8cd-a7c0f7cc67be&searchtype=ds&q={searchTerms}) Bom: (http://www.google.com) -> Nenhuma ação foi feita.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search|SearchAssistant (PUP.Optional.Snapdo) -> Ruim: (http://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=BR&userid=29932c7c-e963-43da-b8cd-a7c0f7cc67be&searchtype=ds&q={searchTerms}) Bom: (http://www.google.com) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Search_URL (PUP.Optional.NationZoom.A) -> Ruim: (http://www.nationzoom.com/web/?type=ds&ts=1390623818&from=slbnew&uid=SAMSUNGXHM320JI_S1YNJ56S701253&q={searchTerms}) Bom: (http://www.google.com) -> Nenhuma ação foi feita.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Ruim: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Bom: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> Nenhuma ação foi feita.
HKLM\Software\Microsoft\Internet Explorer\Main|Search Page (PUP.Optional.NationZoom) -> Ruim: (http://www.nationzoom.com/web/?type=ds&ts=1390623818&from=slbnew&uid=SAMSUNGXHM320JI_S1YNJ56S701253&q={searchTerms}) Bom: (http://www.google.com) -> Nenhuma ação foi feita.

Pastas Detectadas: 33
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38} (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3 (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\bh (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Tepfel (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Tepfel\dat (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\FunWebProducts\Installr (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\FunWebProducts\Installr\1.bin (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
C:\Windows\System32\WNLT\Installation (PUP.Optional.InstallBrain.A) -> Nenhuma ação foi feita.
C:\Windows\SysWOW64\WNLT\Installation (PUP.Optional.InstallBrain.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\CrashReports (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0 (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\Download (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\Install (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\Offline (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\Offline\{8F21D3FD-EA46-4184-BB42-2134DB21D961} (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\ProgramData\SaveSenseLive (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\ProgramData\SaveSenseLive\Update (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\ProgramData\SaveSenseLive\Update\Log (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\SaveSense (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\SaveSense\UpdateProc (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Local\SaveSenseLive (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Local\SaveSenseLive\CrashReports (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\IminentToolbar (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\YoutubeAdblocker (PUP.Optional.Multiplug) -> Nenhuma ação foi feita.
C:\Program Files (x86)\greattsaver (PUP.Optional.Multiplug) -> Nenhuma ação foi feita.
C:\Users\Jackeline\InstallShield Installation Information\{A5BA14E0-7384-5991B8648CBE70A4} (Spyware.Banker) -> Enviado para a Quarentena e deletado com sucesso.

Arquivos Detectados: 117
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe (PUP.Optional.SweetPacks.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe (PUP.Optional.SaveSense.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\PriceGong\2.1.0\PriceGongIE.dll (PUP.Optional.PriceGong.A) -> Nenhuma ação foi feita.
C:\ProgramData\ADDICT-THING\bhoclass.dll (PUP.DownloadnSave) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\awesomehp\awesomehp.exe (PUP.Optional.NationZoom.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\awesomehp\UpDate.dll (PUP.Optional.SkyTech.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\nationzoom\nationzoom.exe (PUP.Optional.NationZoom.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\nationzoom\UpDate.dll (PUP.Optional.SkyTech.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\Downloads\iLividSetupV1.exe (PUP.Optional.Bandoo) -> Nenhuma ação foi feita.
C:\Windows\Installer\2c14ed.msi (PUP.Optional.SweetIM) -> Nenhuma ação foi feita.
C:\Windows\Tasks\DGChrome13750 Watcher.job (PUP.Optional.VbatesHelper.A) -> Nenhuma ação foi feita.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\Setup.ico (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\Setup.exe (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\_Setup.dll (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\_Setupx.dll (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminentApp.dll (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminentEng.dll (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminentsrv.exe (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminentTlbr.dll (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\sqlite3.dll (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\uninstall.exe (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\IminentToolbar\1.8.28.3\bh\iminent.dll (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Tepfel\dat\Desktop.OS.dll (PUP.Optional.WebCake.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\FunWebProducts\Installr\1.bin\F3EZSETP.DLL (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\FunWebProducts\Installr\1.bin\F3PLUGIN.DLL (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\FunWebProducts\Installr\1.bin\NPFUNWEB.DLL (PUP.Optional.FunWebProducts.A) -> Nenhuma ação foi feita.
C:\Windows\System32\WNLT\Installation\uninstaller.exe (PUP.Optional.InstallBrain.A) -> Nenhuma ação foi feita.
C:\Windows\SysWOW64\WNLT\Installation\uninstaller.exe (PUP.Optional.InstallBrain.A) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdate.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_am.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ar.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bg.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bn.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ca.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_cs.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_da.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_de.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_el.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en-GB.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es-419.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_et.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fa.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fi.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fil.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fr.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_gu.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hi.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hr.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hu.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_id.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_is.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_it.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_iw.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ja.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_kn.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ko.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lt.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lv.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ml.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_mr.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ms.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_nl.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_no.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pl.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-BR.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-PT.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ro.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ru.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sk.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sl.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sr.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sv.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sw.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ta.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_te.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_th.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_tr.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_uk.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ur.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_vi.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-CN.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-TW.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psmachine.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psuser.dll (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLive.exe (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveBroker.exe (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHandler.exe (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHelper.msi (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveOnDemand.exe (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\ProgramData\SaveSenseLive\Update\Log\SaveSenseLive.log (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\SaveSense\UpdateProc\config.dat (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\SaveSense\UpdateProc\STTL.DAT (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\SaveSense\UpdateProc\TTL.DAT (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense Help.url (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense.url (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\Uninstall SaveSense.lnk (PUP.Optional.SaveSense) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\AppData\Roaming\IminentToolbar\sqlite3.dll (PUP.Optional.Iminent.A) -> Nenhuma ação foi feita.
C:\Users\Jackeline\Downloads\download.exe (Adware.Bundler) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Jackeline\Downloads\PluginInstall.exe (MSIL.Solimba) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Jackeline\AppData\Local\fst_br_47\Download\setup_recover_fst_br_27.exe (Adware.EoRezo) -> Enviado para a Quarentena e deletado com sucesso.
C:\win7xe\libcef.dll (Trojan.Banker) -> Enviado para a Quarentena e deletado com sucesso.
C:\win7xe\id.sys (Trojan.Banker) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Public\Desktop\MP3 Downloader.lnk (Rogue.Link) -> Enviado para a Quarentena e deletado com sucesso.
C:\Windows\System32\browsewan.dll (Trojan.Banker) -> Enviado para a Quarentena e deletado com sucesso.
C:\Windows\SysWOW64\browsewan.dll (Trojan.Banker) -> Enviado para a Quarentena e deletado com sucesso.
C:\Windows\System32\f3PSSavr.scr (Trojan.Agent) -> Enviado para a Quarentena e deletado com sucesso.
C:\Windows\SysWOW64\f3PSSavr.scr (Trojan.Agent) -> Enviado para a Quarentena e deletado com sucesso.
C:\Users\Jackeline\InstallShield Installation Information\{A5BA14E0-7384-5991B8648CBE70A4}\msoobe32.exe (Spyware.Banker) -> Enviado para a Quarentena e deletado com sucesso.

(fim)

Faltou só você selecionar todos os problemas encontrados pelo Malwarebytes e escolher a opção de Remover selecionados. Depois disto poste o novo relatório que ele irá criar.

Olha, ele limpou tudo, pelo menos tudo o que podemos ver por hora.. kkk

Malwarebytes Anti-Malware 1.75.0.1300
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Versão da Base de Dados:  v2014.03.01.04

Windows Vista Service Pack 1 x64 NTFS
Internet Explorer 7.0.6001.18000
Jackeline :: JACKELINE-PC [administrador]

04/03/2014 11:54:57
mbam-log-2014-03-04 (11-54-57).txt

Tipo de Verificação:  Verificação Completa  (C:\|D:\|E:\|G:\|)
Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos  | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opções de verificação desativadas: P2P
Objetos escaneados:  468459
Tempo decorrido: 3 hora(s), 12 minuto(s), 34 segundo(s)

Processos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)

Módulos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)

Chaves de Registro Detectadas: 0
(Não foram detectados ítens maliciosos)

Valores de Registro Detectadas: 0
(Não foram detectados ítens maliciosos)

Itens de Dados no Registro Detectadas: 0
(Não foram detectados ítens maliciosos)

Pastas Detectadas: 0
(Não foram detectados ítens maliciosos)

Arquivos Detectados: 0
(Não foram detectados ítens maliciosos)

(fim)

 Desative temporariamente seu antivírus para evitar conflitos.

Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek.

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.

O PC não deixa passar o ZOEK, não sei se vírus ou antivirus que impede.

Nao sei exatamente desativar antivírus e possa ser que o baidu esteja impedindo.

 Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] >  < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )

|- Execute o ícone do pergaminho. ( ZHPDiag )

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
 
|- Clique "SEARCH" ou "PESQUISAR" e aguarde a conclusão!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
 
|- Clique OK e, ao concluir, poste o relatório ZHPDiag.txt

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Oi, olha o ZOEK abriu :p (acho que meu note tava lento!) aí eu colei o texto que vc enviou. Vou te passar o texto do ZOEK:


Zoek.exe v5.0.0.0 Updated 02-March-2014
Tool run by Jackeline on 04/03/2014 at 15:24:00,85.
Microsoft® Windows Vista™ Home Premium 6.0.6001 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jackeline\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

04/03/2014 15:48:04 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1571609789-1391897024-2847255980-1000\Software\Microsoft\Internet Explorer\SearchScopes\{460C3D19-B3D4-4964-A550-77D263B0CCCB} deleted successfully
HKEY_USERS\S-1-5-21-1571609789-1391897024-2847255980-1000\Software\Microsoft\Internet Explorer\SearchScopes\{86c83f9e-48a4-4cd2-a763-64fea5df35f7} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\JACKEL~1\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\prefs.js:
user_pref("browser.startup.homepage", "");
user_pref("browser.search.defaultenginename", "");
user_pref("browser.search.selectedEngine", "");
user_pref("keyword.URL", "http://br.yhs4.search.yahoo.com/yhs/search");

Added to C:\Users\JACKEL~1\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\JACKEL~1\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default

user.js not found
---- Lines WebSearch modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"smartwebprinting@hp.com\":{\"descriptor\":\"C:\\\\Program Files (
---- Lines ffxtbr modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"smartwebprinting@hp.com\":{\"descriptor\":\"C:\\\\Program Files (
---- Lines extensions.ZJcjtj removed from prefs.js ----
user_pref("extensions.ZJcjtj.epoch", "1390700590");
---- Lines extensions.bctdOEiTW removed from prefs.js ----
user_pref("extensions.bctdOEiTW.epoch", "1390700589");
user_pref("extensions.bctdOEiTW.url", "http://jobfirstnet.in/sync2/?q=hfZ9oeDGDzrMCyVUojkFrShTB6lKDzt4oktitNtVh7n0rjnErjsHrdnErTaEtMFHhd9FqdaFrTkErjnH
---- FireFox user.js and prefs.js backups ----

prefs_032014_1612_.backup

==== Deleting Files \ Folders ======================

"C:\Windows\Installer\2c14ed.msi" not found
C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted
C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001} deleted
C:\PROGRA~3\eSellerate deleted
C:\Users\Jackeline\daemonprocess.txt deleted
C:\Users\Jackeline\.android deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\found.000 deleted
C:\found.001 deleted
C:\found.002 deleted
C:\found.003 deleted
C:\found.004 deleted
C:\found.005 deleted
C:\Users\Jackeline\AppData\Roaming\nationzoom deleted
C:\PROGRA~3\FileSplitUpLoad.dll deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\Baidu deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\Jackeline\AppData\Local\BIT81DB.tmp deleted
C:\Users\Jackeline\AppData\Local\BIT9BD1.tmp deleted
C:\Users\Jackeline\AppData\Local\avgchrome deleted
C:\Users\Jackeline\AppData\Local\cache deleted
C:\Users\Public\sdelevURL.tmp deleted
C:\Users\Jackeline\Downloads\DeviceDoctor_Bundle.exe deleted
C:\Users\Jackeline\Downloads\FreeYouTubeToMp3Converter (1).exe deleted
C:\Users\Jackeline\Downloads\FreeYouTubeToMp3Converter (2).exe deleted
C:\Users\Jackeline\Downloads\FreeYouTubeToMP3Converter (3).exe deleted
C:\Users\Jackeline\Downloads\FreeYouTubeToMP3Converter(1).exe deleted
C:\Users\Jackeline\Downloads\FreeYouTubeToMP3Converter(2).exe deleted
C:\Users\Jackeline\Downloads\FreeYouTubeToMP3Converter.exe deleted
C:\Windows\WININIT.INI deleted
C:\windows\SysNative\tasks\Baidu Antivirus Update deleted
C:\windows\SysNative\tasks\Baidu PC Faster Update deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
"C:\Users\Jackeline\AppData\Local\{AAF1883C-3977-4569-96C5-56BDAB8125BB}" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{4820778D-AB0D-6D18-C316-52A6A0E1D507}" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{4820778D-AB0D-6D18-C316-52A6A0E1D507}.old" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}.old" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{CA41BB14-E67B-1653-C57B-5CA99418A866}" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{CA41BB14-E67B-1653-C57B-5CA99418A866}.old" deleted
"C:\PROGRA~3\418caff5bd31dd6a\{E32743D3-5789-6E4F-3998-06FB87C9214B}" deleted
"C:\PROGRA~3\418caff5bd31dd6a" deleted
"C:\Users\Jackeline\AppData\Roaming\ZHP" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [03/02/2014 01:15]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2" [04/04/2010 21:23]

==== Firefox Extensions ======================

ProfilePath: C:\Users\JACKEL~1\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default
- FindRight - %ProfilePath%\extensions\{42e50651-9669-456e-9081-d5a836274274}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Jackeline\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default
F3B0E300AFC94E1A775A2D935A7D384F - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director
AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation


==== Deleted Firefox Extensions ======================

C:\Users\JACKEL~1\AppData\Roaming\Mozilla\Firefox\Profiles\9swktqcm.default\extensions\{42e50651-9669-456e-9081-d5a836274274}.xpi deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]

YoutubeAdblocker - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Administrador\AppData\Local\Torch\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Administrador\AppData\Local\Torch\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Administrador\AppData\Local\Torch\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Administrador\AppData\Local\Torch\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Administrador\AppData\Local\Torch\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Convidado\AppData\Local\Torch\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Convidado\AppData\Local\Torch\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Convidado\AppData\Local\Torch\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Convidado\AppData\Local\Torch\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Convidado\AppData\Local\Torch\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
YoutubeAdblocker - Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
Google Docs - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
YoutubeAdblocker - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
Last updated at time on date - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
YTBookMMaark - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl
Google Wallet - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
YoutubeAdblocker - Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh
greatsaveR - Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj
SNT - Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh
Download Accelerator Plus - Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb
YTBookMMaark - Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl

==== Chrome Fix ======================

C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_continuetosave.info_0.localstorage deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_continuetosave.info_0.localstorage-journal deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Administrador\AppData\Local\Torch\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Convidado\AppData\Local\Torch\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cmgahohbkhemiffojggeaoiclnbalnbj deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Administrador\AppData\Local\Torch\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Convidado\AppData\Local\Torch\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_boalbpclgpcainoafjlpgdnblpdobfbh_0.localstorage deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_boalbpclgpcainoafjlpgdnblpdobfbh_0.localstorage-journal deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\boalbpclgpcainoafjlpgdnblpdobfbh deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Administrador\AppData\Local\Torch\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Convidado\AppData\Local\Torch\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\edpgoeaeedkheeligbilbnhhcakhodfh deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Administrador\AppData\Local\Torch\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Convidado\AppData\Local\Torch\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Administrador\AppData\Local\Torch\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Convidado\AppData\Local\Torch\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Jackeline\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jclcdpkneeapbiagggfjcpknchpkjbhl deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?FORM=UP21DF&PC=UP21&dt=052613&q={searchTerms}&src=IE-SearchBox"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SNNT_pt-BRBR351"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Jackeline\Desktop\Continue Spybot - Search & Destroy Installation.lnk - C:\Users\Jackeline\AppData\Local\Temp\ICReinstall_spybot-search-destroy-22250-32-bits (1).exe /RR
C:\Users\Jackeline\Desktop\DivX Movies.lnk - C:\Users\Jackeline\Videos\DivX Movies
C:\Users\Jackeline\Desktop\PC App Store.lnk - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStore.exe /openfrom=shortcut
C:\Users\Jackeline\Desktop\Revo Uninstaller.lnk - C:\Users\Jackeline\Downloads\Revo Uninstaller\Revouninstaller.exe
C:\Users\Jackeline\Desktop\Transcodificador de Mídia Bywifi.lnk -
C:\Users\Jackeline\Desktop\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\Users\Jackeline\Desktop\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\ Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe
C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
C:\Users\Public\Desktop\Ashampoo Burning Studio 2010.lnk - C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 2010\burningstudio2010.exe
C:\Users\Public\Desktop\aTube Catcher.lnk - C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
C:\Users\Public\Desktop\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Users\Public\Desktop\AVG Manutenção em um Clique.lnk -
C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe
C:\Users\Public\Desktop\Baidu Antivirus.lnk - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\Bav.exe
C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
C:\Users\Public\Desktop\Comprar suprimentos - HP Deskjet 2050 J510 series.lnk - C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\hpqDTSS.exe
C:\Users\Public\Desktop\focus booster.lnk - C:\Program Files (x86)\focus booster\focus booster.exe
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\HP Deskjet 2050 J510 series.lnk - C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HP Deskjet 2050 J510 series.exe -Start UDCDevicePage
C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe
C:\Users\Public\Desktop\HP Photosmart Essential 3.0.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk - C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSDr.exe
C:\Users\Public\Desktop\Inkscape.lnk - C:\Program Files (x86)\Inkscape\inkscape.exe
C:\Users\Public\Desktop\IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\Public\Desktop\Nokia Suite.lnk - C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\Users\Public\Desktop\TotalMedia 3.5.lnk - C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
C:\Users\Public\Desktop\Video Search.lnk - C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe /VIDEOSEARCH

==== shortcuts in Users Start Menu ======================

C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster\PC App Store.lnk - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStore.exe /openfrom=startmenu
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk - C:\Users\Jackeline\Downloads\Revo Uninstaller\Revouninstaller.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk - C:\Users\Jackeline\Downloads\Revo Uninstaller\Revouninstaller.exe -hunter
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk - C:\Users\Jackeline\Downloads\Revo Uninstaller\uninst.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk - C:\Users\Jackeline\Downloads\Revo Uninstaller\Revo Uninstaller.url

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster\PC App Store.lnk - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStore.exe /openfrom=startmenu
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Desinstalar o Google Earth.lnk - C:\Windows\SysWOW64\msiexec.exe /x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Iniciar Google Earth no modo DirectX.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe -setDX
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Iniciar Google Earth no modo OpenGL.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe -setOGL
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 2050 J510 series\Ajuda.lnk - C:\Program Files (x86)\HP\HP Deskjet 2050 J510 series\bin\HelpViewer\hpqlpvwr.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 2050 J510 series\Comprar suprimentos.lnk - C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\hpqDTSS.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 2050 J510 series\Configuração da impressora & Software.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 2050 J510 series\Desinstalar.lnk - C:\Windows\SysWOW64\msiexec.exe /qb /x {2DCBB45E-AA03-4089-87E7-EC17E606D738}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 2050 J510 series\HP Scan.lnk - C:\Program Files (x86)\HP\HP Deskjet 2050 J510 series\bin\HPScan.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 2050 J510 series\Site de suporte do produto.lnk - C:\Program Files\HP\HP Deskjet 2050 J510 series\ProductSupportShortcut.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\Help.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\help.html
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\Uninstall IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallDisplay.exe uninstall_start
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Desinstalar Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro Help.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\Revo Uninstaller Pro Help.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Create System Report.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDLogReport.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\File Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Immunization.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Rootkit Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\System Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Tray Icon (Live Protection).lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Uninstall Spybot-S&D.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Acelerador de Vídeo Bywifi.lnk -
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AVG PC TuneUp 2014.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Iniciar Microsoft Office Outlook.lnk - C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE /recycle
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Inkscape.lnk - C:\Program Files (x86)\Inkscape\inkscape.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Transcodificador de Mídia Bywifi.lnk -
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Jackeline\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyOverride"="local"
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\710B2EE4C28D21B40B17C51F2BD3A124 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\dab375b2-b4bb-4fa2-be99-c2bf9b299084 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Jackeline\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3N1KRPVR will be deleted at reboot
C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WT57FLP1 will be deleted at reboot
C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=410 folders=147 138452908 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jackeline\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\JACKEL~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3N1KRPVR" not found
"C:\Users\Jackeline\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WT57FLP1" not found

==== EOF on 04/03/2014 at 16:31:56,25 ======================

  Parabéns, vários problemas foram removidos pelo Zoek.
_____________________________________________________________

 Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] >  < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )

|- Execute o ícone do pergaminho. ( ZHPDiag )

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
 
|- Clique "SEARCH" ou "PESQUISAR" e aguarde a conclusão!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
 
|- Clique OK e, ao concluir, poste o relatório ZHPDiag.txt

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

~ Relatório do ZHPDiag v2014.3.2.6 - Nicolas Coolman  (03/03/2014)
~ Iniciado por Jackeline (04/03/2014 17:24:04)
~ Endereço do Website :  http://nicolascoolman.webs.com
~ Fóruns de suporte gratuito para desinfecção : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Tradução pelo utilizador
~ Estatuto da versão :
~  Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Deactivate by program


---\\ Navegadores Internet
MSIE: Internet Explorer v7.0.6001.18000
GCIE: Google Chrome (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows Vista (TM) Home Premium, 64-bit Service Pack 1 (Build 6001)
Windows Server License Manager Script : OK
System - Enable Open file C:\Users\Jackeline\AppData\Roaming\ZHP\Licence.txt =>.Nicolas Coolman

---\\ Softwares de proteçao do sistema
AVG 2014 v14.0.3705
Malwarebytes Anti-Malware versão 1.75.0.1300
Spybot - Search & Destroy v2.2.25

---\\ Softwares d'optimização do sistema
CCleaner v4.09 =>Piriform Ltd

---\\ Softwares de partilha do PeerToPeer (P2P)
Pando Media Booster v2.3.5.9

---\\ Monitoramento dos softwares
Adobe Flash Player 12 ActiveX
Adobe Reader XI
Java 7 Update 45

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3962 MB (38% free)
System Restore: Activé (Enable)
System drive C: has 163 GB (56%) free of 286 GB

---\\ Modo de conexão ao sistema
~ Computer Name: JACKELINE-PC
~ User Name: Jackeline
~ All Users Names: Jackeline, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Jackeline\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Jackeline\AppData\Roaming\
~ %Desktop% : C:\Users\Jackeline\Desktop\
~ %Favorites% : C:\Users\Jackeline\Favorites\
~ %LocalAppData% : C:\Users\Jackeline\AppData\Local\
~ %StartMenu% : C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 163 Go of 286 Go)
D: Floppy drive, Flash card reader, USB Key (Not Inserted)
E: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.BBD8E74F23D7605CB0CDB57A1B25D826] - (.Microsoft Corporation - Windows Explorer.) (.29/10/2008 - 03:49:22.) -- C:\Windows\Explorer.exe [3080704]
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.20/01/2008 - 23:50:23.) -- C:\Windows\System32\Wininit.exe [123904]
[MD5.70BC625F25EDE67FFD655916A3F3A103] - (.Microsoft Corporation - Internet Extensions para Win32.) (.21/04/2011 - 12:29:00.) -- C:\Windows\System32\wininet.dll [1032704]
[MD5.856491FCED98093D824B9EB2892F564A] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.20/01/2008 - 23:49:47.) -- C:\Windows\System32\Winlogon.exe [406016]
[MD5.9BB97042FA331A0FB4BDD98B9280A50A] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 10:42:48.) -- C:\Windows\system32\Drivers\AFD.sys [407552]
[MD5.1898FAE8E07D97F2F6C2D5326C633FAC] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.20/01/2008 - 23:46:50.) -- C:\Windows\system32\Drivers\atapi.sys [22584]
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.20/01/2008 - 23:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624]
[MD5.3B2FB35363423ED60C8FBF15FC8680BD] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/01/2008 - 23:46:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872]
[MD5.3725C43C9E90731ECA651D506CC599A3] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 11:45:13.) -- C:\Windows\system32\Drivers\DfsC.sys [97792]
[MD5.0C0D0F8A3FF09ECC81963D09EC6A0A84] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/01/2008 - 23:46:51.) -- C:\Windows\system32\Drivers\HDAudBus.sys [50688]
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Driver de porta i8042.) (.20/01/2008 - 23:47:27.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000]
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.20/01/2008 - 23:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712]
[MD5.B698EB9ACC7ECD4927D99D268918F912] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 10:11:56.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135168]
[MD5.7A29CA243A629230799754162D80120F] - (.Microsoft Corporation - MBT Transport driver.) (.20/01/2008 - 23:50:11.) -- C:\Windows\system32\Drivers\netBT.sys [250368]
[MD5.FE86BA5AC3B50E2CA911E9C60C07B638] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.20/01/2008 - 23:50:39.) -- C:\Windows\system32\Drivers\ntfs.sys [1540152]
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Driver de porta paralela.) (.02/11/2006 - 06:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.3B9085F91EF00ABD15A6F36570E90E12] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/01/2008 - 23:49:59.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/01/2008 - 23:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368]
[MD5.41EB2E8E005FEEDCAFCE301983EFF932] - (.Microsoft Corporation - SMB Transport driver.) (.20/01/2008 - 23:50:11.) -- C:\Windows\system32\Drivers\smb.sys [88064]
[MD5.8C39C72E0E853DE04748C0337D9B9216] - (.Microsoft Corporation - TDI Translation Driver.) (.20/01/2008 - 23:49:53.) -- C:\Windows\system32\Drivers\tdx.sys [94208]
[MD5.DE4307412D98050239026E56A7DFF3C0] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.20/01/2008 - 23:47:03.) -- C:\Windows\system32\Drivers\volsnap.sys [271416]
~ Generic Processes:  Scanned in 00mn 01s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 1/7132
~ Mes musiques (My Musics) : 1/1116
~ Mes Videos (My Videos) : 1/142
~ Mes Favoris (My Favorites) : 1/113
~ Mes Documents (My Documents) : 12/457
~ Mon Bureau (My Desktop) : 1/15
~ Menu demarrer (Programs) : 1/37
~ Hidden Files:  Scanned in 00mn 06s



---\\ Processos lançados
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe   [532040] [PID.1568]
[MD5.F96EBC5A624349D81DCC7600A3C5DC43] - (.Microsoft Corporation - Console IME.) -- C:\Windows\SysWOW64\conime.exe   [69120] [PID.2956]
[MD5.A5FE6D3BC5E27315BB3988B496D629C8] - (.Sony Corporation - VMpTtray.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe   [99624] [PID.808]
[MD5.255E405D801CF01247390F38F92D8042] - (...) -- C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe   [17408] [PID.4640]
[MD5.3DF558BADF1CABF07E7D5822A79EC5BD] - (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe   [1177448] [PID.1248] =>Adware.BDSearch
[MD5.16EE5FC85A65296FFFC4BA8BDDDD0933] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe   [4962320] [PID.3624]
[MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe   [5624784] [PID.3424]
[MD5.B7D3862F280058CCFC4BA499704DEDB9] - (.No owner - CCP.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\CCP.exe   [28672] [PID.5880]
[MD5.440D5E623AFB90A2F550146DFFF00A62] - (.No owner - PowerManager.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\PowerManager.exe   [45056] [PID.4956]
[MD5.7C33756A3AFE3692E2F234EB657B4512] - (.No owner - ThirdPartyAppMgr.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\ThirdPartyAppMgr.exe   [28672] [PID.3408]
[MD5.3A46ECAB4A260A371AE654341F0865A0] - (.Sony Electronics, Inc. - Kinoubi.UI.UIManager2.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\UIManager.exe   [45056] [PID.3436]
[MD5.026C4CA19FAE1F84894A99735B15AACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe   [859464] [PID.5552]
[MD5.66EA3B698F9A7EA2DBF0E4B246B6C958] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [8349696] [PID.6952]
[MD5.D0F82B8B2FDD0ACECA4B1CB2765B9965] - (.Microsoft Corporation - Microsoft (R) Console Based Script Host.) -- C:\Windows\SysWOW64\cscript.exe   [135168] [PID.6396]
[MD5.201BCF8550512C105BAC78E9FA401260] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe   [452136] [PID.800]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe   [113152] [PID.1972]
[MD5.6D9FC1E7EA3C548F4D3455F0C3FEEF8C] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe   [169312] [PID.1984]
[MD5.A5299D04ED225D64CF07A568A3E1BF8C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [55184] [PID.1128]
[MD5.C98ACDE22458C8F46FD0503CB9E2D01F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe   [223112] [PID.1580]
[MD5.B747B6BB015E552F49C634BB19540F3D] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe   [348008] [PID.2100]
[MD5.10F95F7B5BD818148F652C9DA4CDEFBE] - (.Baidu, Inc. - Baidu Antivirus Service.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe   [1923376] [PID.2128] =>Adware.BDSearch
[MD5.0877B7F9B1BB973AAD7AA9EE24BE3B7E] - (.Baidu, Inc. - Baidu Antivirus Hips Service.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe   [459416] [PID.2184] =>Adware.BDSearch
[MD5.213822072085B5BBAD9AF30AB577D817] - (.InterVideo - RegMgr Module.) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe   [112152] [PID.2480]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe   [418376] [PID.2800]
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe   [701512] [PID.2844]
[MD5.D69FBE1B6883A8F4D58EEACCD4624AE2] - (.Baidu Inc. - Baidu PC App Store Service.) -- C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe   [576032] [PID.2984] =>Adware.BDSearch
[MD5.98EF79CC2B07398AC525F9EA1AE0366F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe   [3921880] [PID.1184]
[MD5.140FCF5FFAE4EFBA9740A9FD8B49E0BF] - (.Sony Corporation - VAIO Media plus Database Manager.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe   [70952] [PID.3660]
[MD5.63F6D08C54D5B3C1B12A6172032055C7] - (.ArcSoft, Inc. - MgiSvr.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe   [104960] [PID.3768]
[MD5.73328C784ECFE7072BD102F370076B50] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe   [203624] [PID.3784]
[MD5.BE01E566D1F569AAB32D0335613E1EEA] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\SysWOW64\DllHost.exe   [7168] [PID.3844]
[MD5.669586797F52E6FFA187AFB9C55C6823] - (.Sony Corporation - VAIO Event Service(Service Sub Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe   [112488] [PID.4016]
[MD5.0ED1D51DCEC67F96CC313D02A1741CF3] - (.Sony Corporation - VAIO Content Folder Watcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe   [5184872] [PID.3160]
[MD5.7295A2B5795E7B8AA128E5DF5A29B656] - (.Sony Corporation - VCM Intelligent Analyzing Manager.) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe   [394536] [PID.2036]
[MD5.79EB419F4A694B4514249E0D3DB16ECF] - (.Sony Corporation - VAIO Entertainment Database Service.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe   [192512] [PID.1152]
[MD5.14BF6B3AB327D519ED007CDDC56F6900] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe   [1042272] [PID.2604]
[MD5.D8C244121A06B581B097D9617D94CFF1] - (.Sony Corporation - VAIO Media plus Digital Media Server.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe   [390440] [PID.2120]
[MD5.2DB561887EA122B946BBE2821473EDD8] - (.Sony Corporation - VAIO Media plus Device Searcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe   [75048] [PID.2084]
[MD5.AB9EE246A1EB2C3C7C6CB16E0B9462F7] - (.Sony Corporation - VAIO Media plus Playlist Manager.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe   [91432] [PID.2004]
[MD5.820EBE67AB99F033FDE25B2692157991] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe   [171416] [PID.3340]
[MD5.7B24EFA2A60BA7388FECDA63AB24560A] - (.Sony Corporation - VAIO Media plus Content Importer.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe   [120104] [PID.4248]
[MD5.313CE91F1B734E2E02F0F4465B52115A] - (.Sony Corporation - VAIO Entertainment UPnP Client Adapter.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe   [313264] [PID.4960]
~ Processes Running:  Scanned in 00mn 02s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
~ Google Browser: 15 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1
~ IE Browser: 23 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys:  Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Barras do Internet Explorer (03))
O3 - Toolbar: Bing Bar - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation. - Bing Client Extensions.) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll =>Toolbar.Bing
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E0301295-AB3E-4AF3-979F-3D453C5F9F48} Chave orfã
~ Toolbar:  Scanned in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [Public]: Ashampoo Burning Studio 2010.lnk . (...)  -- C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 2010\burningstudio2010.exe
O4 - GS\Desktop [Public]: aTube Catcher.lnk . (.DsNET - aTube Catcher to download and convert video.)  -- C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
O4 - GS\Desktop [Public]: AVG Manutenção em um Clique.lnk . (.AVG - Manutenção em um Clique AVG.)  -- C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe
O4 - GS\Desktop [Public]: Baidu Antivirus.lnk . (.Baidu, Inc. - Bav.)  -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\Bav.exe =>Adware.BDSearch
O4 - GS\Desktop [Public]: focus booster.lnk . (...)  -- C:\Program Files (x86)\focus booster\focus booster.exe
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: HP Print and Scan Doctor.lnk . (...)  -- C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSDr.exe
O4 - GS\Desktop [Public]: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\Desktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.)  -- C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
O4 - GS\Desktop [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.)  -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - GS\Desktop [Public]: TotalMedia 3.5.lnk . (.ArcSoft, Inc. - ArcSoft TotalMedia.)  -- C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
O4 - GS\Desktop [Public]: Video Search.lnk . (.DsNET - aTube Catcher to download and convert video.)  -- C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
O4 - GS\Program [Public]: Click to Disc Editor.lnk . (.Sony Corporation - ctdEditor.)  -- C:\Program Files (x86)\Sony\Click to Disc Editor\ctdEditor.exe
O4 - GS\Program [Public]: Click to Disc.lnk . (.Sony Corporation - AutoModeEntrance.)  -- C:\Program Files (x86)\Sony\VAIO VP Utilities\VCAutoModeEntrance.exe
O4 - GS\Program [Public]: Dolby Control Center.lnk . (...)  -- C:\Windows\Installer\{D035FBF6-FDEF-487D-89CA-6F9DD07B783F}\_DF30B6672BAD027FB62666.exe
O4 - GS\Program [Public]: focus booster.lnk . (...)  -- C:\Program Files (x86)\focus booster\focus booster.exe
O4 - GS\Program [Public]: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (...)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O4 - GS\Program [Public]: Registro OCR I.R.I.S..lnk . (.I.R.I.S. SA - Registration Wizard for I.R.I.S. products.)  -- C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe
O4 - GS\Program [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.)  -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - GS\QuickLaunch [Jackeline]: Acelerador de Vídeo Bywifi.lnk . (...)  -- C:\Program Files (x86)\Bywifi\bywifi.exe (.not file.) =>Spyware.Bywifi
O4 - GS\QuickLaunch [Jackeline]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Jackeline]: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\QuickLaunch [Jackeline]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Jackeline]: Mozilla Firefox.lnk . (...)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O4 - GS\QuickLaunch [Jackeline]: Transcodificador de Mídia Bywifi.lnk . (...)  -- C:\Program Files (x86)\Bywifi\bywifidl.exe (.not file.) =>Spyware.Bywifi
O4 - GS\Program [Jackeline]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Jackeline]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Jackeline]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Jackeline]: Continue Spybot - Search & Destroy Installation.lnk . (...)  -- C:\Users\Jackeline\AppData\Local\Temp\ICReinstall_spybot-search-destroy-22250-32-bits (1).exe (.not file.)
O4 - GS\Desktop [Jackeline]: PC App Store.lnk . (.Baidu Inc. - Baidu PC App Store.)  -- C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStore.exe =>Adware.BDSearch
O4 - GS\Desktop [Jackeline]: Transcodificador de Mídia Bywifi.lnk . (...)  -- C:\Program Files (x86)\Bywifi\bywifidl.exe (.not file.) =>Spyware.Bywifi
~ Global Startup: 103 Legitimates Filtered in 00mn 02s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [UnThreat] C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe (.not file.)
O4 - HKLM\..\Run: [SBRegRebootCleaner] C:\Program Files (x86)\UnThreat AntiVirus\SBRC.exe (.not file.)
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [VMpTtray.exe] . (.Sony Corporation - VMpTtray.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKLM\..\Wow6432Node\Run: [VAIOSurvey] . (...) -- C:\Program Files (x86)\Sony\VAIO Survey\VAIO Sat Survey.exe
O4 - HKLM\..\Wow6432Node\Run: [UnlockerAssistant] . (...) -- C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe
O4 - HKLM\..\Wow6432Node\Run: [SmartWiHelper] . (.Sony Electronics Corporation - SmartWi Helper.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\SmartWiHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Baidu PC Faster 4.0.0.0] C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFaster.exe (.not file.) =>Adware.BDSearch
O4 - HKLM\..\Wow6432Node\Run: [Baidu Antivirus] . (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe =>Adware.BDSearch
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Barra Lateral do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Chave orfã
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Barra Lateral do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Chave orfã
O4 - HKUS\S-1-5-21-1571609789-1391897024-2847255980-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-1571609789-1391897024-2847255980-1000\..\Run: [VMpTtray.exe] . (.Sony Corporation - VMpTtray.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe
O4 - HKUS\S-1-5-21-1571609789-1391897024-2847255980-1000\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
~ Application:  Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: @btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\Domains\www] *.bancobrasil.com.br
O15 - Trusted Zone: [HKCU\...\Domains\www] *.bb.com.br
~ IE Zone Confiance:  Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{42FEA38A-71A1-4692-86F4-398CFF4EA646}: DhcpNameServer = 186.207.160.29 186.207.160.26 201.6.4.116
O17 - HKLM\System\CS1\Services\Tcpip\..\{42FEA38A-71A1-4692-86F4-398CFF4EA646}: DhcpNameServer = 10.20.31.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{BF9A59DB-EAAF-4EAE-8768-53B232E596C7}: DhcpNameServer = 10.11.0.1 10.11.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{42FEA38A-71A1-4692-86F4-398CFF4EA646}: DhcpNameServer = 186.207.160.29 186.207.160.26 201.6.4.116
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 186.207.160.29 186.207.160.26 201.6.4.116
~ Domain:  Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Chave do Registo autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioteca da interface de usuário do naveg.) -- C:\Windows\System32\browseui.dll
~ STS/SSO:  Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: Baidu Antivirus Service (BAVSvc) . (.Baidu, Inc. - Baidu Antivirus Service.) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe =>Adware.BDSearch
O23 - Service: Baidu Hips Service (BHipsSvc) . (.Baidu, Inc. - Baidu Antivirus Hips Service.) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe =>Adware.BDSearch
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
O23 - Service: Baidu PC App Store Service 4.0.6.4959 (PCAppStoreSvc_{PCAppStore_4.0.6.4959}) . (.Baidu Inc. - Baidu PC App Store Service.) - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe =>Adware.BDSearch
O23 - Service: Baidu PC Faster Service 4.0.0.0 (PCFasterSvc_{PCFaster_4.0.0.0}) . (...) - C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe (.not file.) =>Adware.BDSearch
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\System32\DRIVERS\xaudio64.exe
~ Services: 35 Legitimates Filtered in 00mn 26s



---\\ Enumeração Ativa do Ambiente de trabalho & Editor MHTML (024)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Windows\Web\Wallpaper\VAIO C Wallpaper Red 1280x800.jpg
O24 - Desktop General: WallPaper - .(...) - C:\Windows\Web\Wallpaper\VAIO C Wallpaper Red 1280x800.jpg
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Listagem dos dados do BootExecute (Bex) (034)
O34 - HKLM BootExecute: (C:\Users\JACKEL~1\AppData\Local\Temp\Partizan.exe) - File not found
~ BEX: 3 Legitimates Filtered in 00mn 00s



---\\ Tarefas planificadas automaticamente (039)
[MD5.00000000000000000000000000000000] [APT] [SearchGuardPlusUpdater] (...) -- C:\Program Files\Search Guard PlusU\sgpupdaters.exe (.not file.)   [0] =>PUP.FBSearch
[MD5.00000000000000000000000000000000] [APT] [Speedbit SBW setup] (...) -- C:\Users\Jackeline\AppData\Local\Temp\Stub\1064439952\va33.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [Speedbit Video Accelerator Setup] (...) -- C:\Users\Jackeline\AppData\Local\Temp\Stub\1064439952\va33.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{363343C5-C900-4B51-86FA-D9C71B89CAF7}] (...) -- C:\Users\Jackeline\Downloads\Nota_fiscal_1910.PDF (1).cpl" (.not file.)   [0]
~ Scheduled Task: 26 Legitimates Filtered in 00mn 08s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver:  (Bfilter) . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - C:\Windows\system32\drivers\Bfilter.sys =>Adware.BDSearch
O41 - Driver:  (Bfmon) . (.Baidu, Inc. - Baidu FS Monitor Driver.) - C:\Windows\system32\drivers\Bfmon.sys =>Adware.BDSearch
O41 - Driver:  (Bprotect) . (...) - C:\Windows\system32\drivers\Bprotect.sys
O41 - Driver:  (BprotectEx) . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - C:\Windows\system32\drivers\BprotectEx.sys =>Adware.BDSearch
O41 - Driver:  (DMICall) . (. - .) - C:\Windows\System32\DRIVERS\DMICall.sys (.not file.)
O41 - Driver:  (ccHP) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\ccHPx64.sys (.not file.)
O41 - Driver:  (eeCtrl) . (. - .) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (.not file.)
O41 - Driver:  (SRTSPX) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSPX64.sys (.not file.)
O41 - Driver:  (SymIM) . (. - .) - C:\Windows\System32\DRIVERS\SymIMv.sys (.not file.)
O41 - Driver:  (SYMTDI) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SYMTDI.sys (.not file.)
~ Drivers: 86 Legitimates Filtered in 00mn 00s



---\\ Software instalados (042)
O42 - Logiciel: Audio Converter - (...) [HKCU][64Bits] -- Audio Converter
O42 - Logiciel: Baidu PC Faster - (.Baidu, Inc..) [HKLM][64Bits] -- Baidu PC Faster 4.0.0.0 =>Adware.BDSearch
O42 - Logiciel: DibCom TV Stick 315 x64 - (.DiBcom.) [HKLM][64Bits] -- InstallShield_{46A4186B-A6DD-4C6C-BF54-4A22020AC3B2}
O42 - Logiciel: DibCom TV Stick 315 x64 - (.DiBcom.) [HKLM][64Bits] -- {46A4186B-A6DD-4C6C-BF54-4A22020AC3B2}
O42 - Logiciel: FindRight - (.FindRight.) [HKLM][64Bits] -- FindRight =>Hijacker.FindrToolbar
O42 - Logiciel: WMPx64PluginFix - (...) [HKLM][64Bits] -- {00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb
O42 - Logiciel: focus booster - (.The Memphis Agency.) [HKLM][64Bits] -- com.focusboosterapp.focusbooster.8E5F79C899747AD22E21DB62AA496926DA6BBC64.1
O42 - Logiciel: focus booster - (.The Memphis Agency.) [HKLM][64Bits] -- {06ED8674-1191-5DF4-88E9-5732C927ADF7}
~ Logic: 17 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Baidu Security] =>Adware.BDSearch
[HKCU\Software\Bywifi] =>Spyware.Bywifi
[HKCU\Software\GbAs]
[HKCU\Software\OrolixCommunicator]
[HKCU\Software\Orolix]
[HKCU\Software\Pando Networks]
[HKCU\Software\SpeedBit]
[HKCU\Software\ziggi]
[HKLM\Software\UnThreat]
[HKLM\Software\Wow6432Node\AutoHelpDesk]
[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\Baidu_Drp_pos] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\Bywifi] =>Spyware.Bywifi
[HKLM\Software\Wow6432Node\IncrediMail]
[HKLM\Software\Wow6432Node\Orolix]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Vivo 3G]
~ Key Software: 395 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/06/2012 - 18:56:43 - [0] ----D C:\Program Files (x86)\3c5030b4
O43 - CFD: 20/01/2014 - 23:52:41 - [124,835] ----D C:\Program Files (x86)\Baidu Security =>Adware.BDSearch
O43 - CFD: 19/07/2010 - 23:26:06 - [0,967] ----D C:\Program Files (x86)\DiBcom
O43 - CFD: 31/08/2013 - 22:05:12 - [1,935] ----D C:\Program Files (x86)\focus booster
O43 - CFD: 18/06/2011 - 09:41:46 - [7,120] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 03/02/2014 - 01:14:34 - [0,177] ----D C:\Program Files (x86)\VIVO INTERNET
O43 - CFD: 14/07/2013 - 14:53:13 - [2,898] ----D C:\Program Files (x86)\Common Files\SpeedBit
O43 - CFD: 04/03/2014 - 16:30:21 - [0] ----D C:\ProgramData\Baidu =>Adware.BDSearch
O43 - CFD: 28/08/2013 - 20:53:52 - [9,627] ----D C:\ProgramData\Baidu Security =>Adware.BDSearch
O43 - CFD: 25/04/2009 - 14:19:00 - [0] ----D C:\ProgramData\SmartWi Connection Utility
O43 - CFD: 27/01/2014 - 12:43:38 - [0] ----D C:\ProgramData\UnThrea
O43 - CFD: 20/01/2014 - 23:52:33 - [23,692] ----D C:\Users\Jackeline\AppData\Roaming\Baidu Security =>Adware.BDSearch
O43 - CFD: 31/08/2013 - 22:05:24 - [0] ----D C:\Users\Jackeline\AppData\Roaming\com.focusboosterapp.focusbooster
O43 - CFD: 31/08/2013 - 22:05:23 - [0] ----D C:\Users\Jackeline\AppData\Roaming\com.focusboosterapp.focusbooster.8E5F79C899747AD22E21DB62AA496926DA6BBC64.1
O43 - CFD: 28/02/2014 - 17:49:39 - [0,005] ----D C:\Users\Jackeline\AppData\Roaming\ProductData
O43 - CFD: 03/02/2014 - 01:17:04 - [9,675] ----D C:\Users\Jackeline\AppData\Roaming\VIVO INTERNET
O43 - CFD: 14/10/2012 - 21:39:35 - [0,074] ----D C:\Users\Jackeline\AppData\Local\Ares
O43 - CFD: 01/03/2014 - 00:33:48 - [0,001] ----D C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster =>Adware.BDSearch
~ Program Folder: 265 Legitimates Filtered in 00mn 05s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 04/03/2014 - 15:23:07 ---A- . (...) -- C:\Windows\zoek-delete.exe   [24064]
O44 - LFC:[MD5.BE6CDA37625D72D69FA297C5F5DE82CE] - 04/03/2014 - 16:31:56 ---A- . (...) -- C:\zoek-results.log   [42972]
O44 - LFC:[MD5.00E0645DD207A083C0353D2AB7A1D2B2] - 04/03/2014 - 16:35:32 ---A- . (...) -- C:\Windows\System32\prfc0416.dat   [125904]
O44 - LFC:[MD5.DB8156155FD10DDFC2E8138442C0291A] - 04/03/2014 - 16:35:32 ---A- . (...) -- C:\Windows\System32\prfh0416.dat   [646460]
O44 - LFC:[MD5.7EF73C69DB577AD97589CCEC7F2E7A04] - 28/02/2014 - 17:15:16 ---A- . (...) -- C:\Windows\System32\spsys.log   [2856]
~ Files: 12 Legitimates Filtered in 00mn 03s



---\\ Chave do registo Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{2907454b-dd8d-11e0-827e-93ca581f80b2}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{525b8745-d174-11e0-8d94-df9cf8ad2b08}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
O51 - MPSK:{525b8758-d174-11e0-8d94-df9cf8ad2b08}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{6f044dda-da48-11e0-be5d-9e8a113a110e}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
O51 - MPSK:{8270001e-2284-11e0-bc36-c3f86a70e020}\AutoRun\command. (...) -- F:\application\Nokia_Internet_Modem.exe (.not file.)
O51 - MPSK:{ab967751-c993-11e2-9a4f-99d174717f77}\AutoRun\command. (...) -- F:\NokiaPCIA_Autorun.exe (.not file.)
O51 - MPSK:{c38634c0-2dc4-11df-bccf-00243373a292}\AutoRun\command. (...) -- F:\3dcs9.exe (.not file.)
O51 - MPSK:{d91a2c8d-d3e5-11de-8bb8-00243373a292}\AutoRun\command - Chave orfã
~ Keys:  Scanned in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 18 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 6 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:[MD5.2E83D2621E87C493AB45DC6655BA77D4] - 18/08/2013 - 21:24:15 ---A- . (...) -- C:\Windows\System32\Drivers\aswSnx.sys.sum   [175]
O58 - SDL:[MD5.A5F29AC2F0ADE8B995B49D7350CE3AC0] - 18/08/2013 - 21:24:15 ---A- . (...) -- C:\Windows\System32\Drivers\aswSP.sys.sum   [175]
O58 - SDL:[MD5.E86C64478D9A90D62255FE9EB0150C6E] - 18/08/2013 - 21:24:15 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys.sum   [175]
O58 - SDL:[MD5.494D668B4CB866A1D6835E5F01B13EF1] - 25/11/2013 - 21:47:22 ---A- . (...) -- C:\Windows\System32\Drivers\avgidsha.sys   [196376]
O58 - SDL:[MD5.40014A6251A68D1EC48001B1653CCEE0] - 20/01/2008 - 23:47:30 ---A- . (...) -- C:\Windows\System32\Drivers\bdasup.sys   [15616]
O58 - SDL:[MD5.3741B76F9B10CAA08415ECC0DCCFCC5C] - 23/12/2013 - 04:55:12 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\Windows\System32\Drivers\Bfilter.sys   [52032] =>Adware.BDSearch
O58 - SDL:[MD5.7CD8A8C19B39863BAFEA6C044DE2883D] - 17/12/2013 - 06:59:30 ---A- . (.Baidu, Inc. - Baidu FS Monitor Driver.) -- C:\Windows\System32\Drivers\Bfmon.sys   [34624] =>Adware.BDSearch
O58 - SDL:[MD5.2E0CBB33003601DD3B43B5209699E56C] - 10/01/2014 - 07:12:11 ---A- . (...) -- C:\Windows\System32\Drivers\Bprotect.sys   [128992]
O58 - SDL:[MD5.90FC18CBEFCD54BE4288541558E5187E] - 14/01/2014 - 16:59:41 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\Windows\System32\Drivers\BProtectEx.sys   [83264] =>Adware.BDSearch
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 18:30:18 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbMdm.sys   [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 08:42:33 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbSer.sys   [14720]
O58 - SDL:[MD5.651154EE76EA31EEE050F3B66E5D086B] - 05/02/2009 - 17:03:56 ---A- . (...) -- C:\Windows\System32\Drivers\btwrchid.sys   [21160]
O58 - SDL:[MD5.B52D9A14CE4101577900A364BA86F3DF] - 20/01/2008 - 23:46:51 ---A- . (...) -- C:\Windows\System32\Drivers\CmBatt.sys   [17792]
O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 20/01/2008 - 23:46:56 ---A- . (...) -- C:\Windows\System32\Drivers\E1G6032E.sys   [146176]
O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 20/01/2008 - 23:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys   [397368]
O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 21/08/2012 - 13:01:20 ---A- . (...) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys   [33240]
O58 - SDL:[MD5.4EA5458FCA8518344686C543749365B1] - 23/05/2013 - 07:39:23 ---A- . (.ThreatTrack Security - gfiark64.sys.) -- C:\Windows\System32\Drivers\gfiark.sys   [41032]
O58 - SDL:[MD5.52D7906C6D00D9D62AA52D52B101F7BE] - 16/04/2008 - 23:36:32 ---A- . (...) -- C:\Windows\System32\Drivers\hidparse.sys   [31744]
O58 - SDL:[MD5.51D1FC6B0D4C3855A75D167DA9D87BBA] - 06/01/2009 - 17:44:32 ---A- . (...) -- C:\Windows\System32\Drivers\igdkmd64.sys   [7907872]
O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 09:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys   [37480]
O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 09:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys   [37480]
O58 - SDL:[MD5.1D419CF43DB29396ECD7113D129D94EB] - 20/01/2008 - 23:49:00 ---A- . (...) -- C:\Windows\System32\Drivers\ksthunk.sys   [20864]
O58 - SDL:[MD5.E4F44EC214B3E381E1FC844A02926666] - 07/01/2009 - 17:16:15 ---A- . (...) -- C:\Windows\System32\Drivers\mdmxsdk.sys   [17024]
O58 - SDL:[MD5.7071044FBCB23B47177E866A4F2EE802] - 13/07/2007 - 12:22:56 ---A- . (.DiBcom S.A. - HID Infrared Remote Control minidriver.) -- C:\Windows\System32\Drivers\modrc.sys   [24200]
O58 - SDL:[MD5.0EA73E498F53B96D83DBFCA074AD4CF8] - 20/01/2008 - 23:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mskssrv.sys   [11008]
O58 - SDL:[MD5.52E59B7E992A58E740AA63F57EDBAE8B] - 02/11/2006 - 06:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspclock.sys   [7040]
O58 - SDL:[MD5.49084A75BAE043AE02D5B44D02991BB2] - 02/11/2006 - 06:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspqm.sys   [6656]
O58 - SDL:[MD5.86D632D75D05D5B7C7C043FA3564AE86] - 20/01/2008 - 23:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mstee.sys   [7936]
O58 - SDL:[MD5.1B30103FDE512915A9214B108B6E7A9C] - 20/01/2008 - 23:46:54 ---A- . (...) -- C:\Windows\System32\Drivers\ohci1394.sys   [72192]
O58 - SDL:[MD5.FBF4DB6D53585437E41A113300002A2B] - 16/06/2008 - 03:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\PxHlpa64.sys   [55024]
O58 - SDL:[MD5.7EAE3999B94A8CE60BFBAA83462B89A1] - 22/10/2008 - 21:02:20 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\Drivers\rimssn64.sys   [85504]
O58 - SDL:[MD5.FA6D7CD63AD08A01D9259F58E0C5C09E] - 22/10/2008 - 21:02:11 ---A- . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\System32\Drivers\risdsn64.sys   [76288]
O58 - SDL:[MD5.70F9C476B62DE4F2823E918A6C181ADE] - 18/11/2008 - 21:08:46 ---A- . (...) -- C:\Windows\System32\Drivers\SFEP.sys   [11392]
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/01/1601 - 03:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\sptd.sys   [834544]
O58 - SDL:[MD5.75576CFC649C1A3FAA196DD1FBF23434] - 20/01/2008 - 23:51:03 ---A- . (...) -- C:\Windows\System32\Drivers\stream.sys   [68224]
O58 - SDL:[MD5.7D86275FB640011B372FD566C0EAFA8D] - 16/06/2010 - 13:40:37 ---A- . (...) -- C:\Windows\System32\Drivers\tcpip.sys   [1420176]
O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 20/01/2008 - 23:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys   [284728]
O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 08:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys   [148072]
O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 20/01/2008 - 23:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\System32\Drivers\ulsata2.sys   [174696]
O58 - SDL:[MD5.AA33FC47ED58C34E6E9261E4F850B7EB] - 10/05/2011 - 08:06:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys   [51712]
O58 - SDL:[MD5.BBA210DA84215350A9D377C474CFDE63] - 20/01/2008 - 23:48:42 ---A- . (...) -- C:\Windows\System32\Drivers\USBCAMD2.sys   [32512]
O58 - SDL:[MD5.3B4A8392FF614F71C093922836EFFF23] - 05/02/2008 - 01:55:09 ---A- . (...) -- C:\Windows\System32\Drivers\usbd.sys   [7680]
O58 - SDL:[MD5.FEF8FE5923FEAD2CEE4DFABFCE3393A7] - 02/11/2006 - 06:40:24 ---A- . (...) -- C:\Windows\System32\Drivers\wacompen.sys   [26624]
O58 - SDL:[MD5.8F866DF9A974BFFDCB2001D303BC0695] - 08/05/2013 - 09:52:48 ----- . (.GAS Tecnologia - GbPlugin Device Driver.) -- C:\Windows\SysWOW64\drivers\gbpkm.sys   [49536]
O58 - SDL:[MD5.B7CC2AF3D5604EFDC5F82AF7A5B21FB1] - 04/03/2014 - 16:26:26 ---A- . (.GbPlugin NDIS Device Driver - GbPlugin NDIS Device Driver.) -- C:\Windows\SysWOW64\drivers\gbpndisrd.sys   [31088]
~ Drivers: 18 Legitimates Filtered in 00mn 08s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s

---\\ Lista dos serviços Legacy du registo (064)
O64 - Services: CurCS - 03/01/2014 - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys (BdApiUtil)  .(.Baidu, Inc. - Baidu Antivirus BdApi Driver.) - LEGACY_BDAPIUTIL =>Adware.BDSearch
O64 - Services: CurCS - 17/12/2013 - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys (BdCameraProtect)  .(.Baidu, Inc. - Baidu Antivirus Camera Protector Driver.) - LEGACY_BDCAMERAPROTECT =>Adware.BDSearch
O64 - Services: CurCS - 23/12/2013 - C:\Windows\system32\drivers\Bfilter.sys (Bfilter)  .(.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - LEGACY_BFILTER =>Adware.BDSearch
O64 - Services: CurCS - 17/12/2013 - C:\Windows\system32\drivers\Bfmon.sys (Bfmon)  .(.Baidu, Inc. - Baidu FS Monitor Driver.) - LEGACY_BFMON =>Adware.BDSearch
O64 - Services: CurCS - 10/01/2014 - C:\Windows\system32\drivers\Bprotect.sys (Bprotect) .(...) - LEGACY_BPROTECT
O64 - Services: CurCS - 14/01/2014 - C:\Windows\system32\drivers\BprotectEx.sys (BprotectEx)  .(.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - LEGACY_BPROTECTEX =>Adware.BDSearch
~ Legacy: 116 Legitimates Filtered in 00mn 01s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
~ FASS Keys: 13 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Keys:  Scanned in 00mn 00s



---\\ Lista das exceções do FireWall (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{119C1322-3A3B-44A4-BE1C-BDF18CD804E4}C:\program files (x86)\bywifi\bywifi.exe" |In - Public - P6 - FALSE | .(...) -- C:\program files (x86)\bywifi\bywifi.exe (.not file.) =>Spyware.Bywifi
O87 - FAEL: "UDP Query User{C3402095-4012-4CB0-97A2-0075C25284DE}C:\program files (x86)\bywifi\bywifi.exe" |In - Public - P17 - FALSE | .(...) -- C:\program files (x86)\bywifi\bywifi.exe (.not file.) =>Spyware.Bywifi
O87 - FAEL: "{E9050971-0583-4EBB-AAB5-CA6109BB8844}" |In - Public - P6 - TRUE | .(...) -- C:\Users\Jackeline\AppData\Local\Temp\7zS2470\HPDiagnosticCoreUI.exe (.not file.)
O87 - FAEL: "{4D1DC087-A662-47BF-9D90-DD70625F650F}" |In - Public - P17 - TRUE | .(...) -- C:\Users\Jackeline\AppData\Local\Temp\7zS2470\HPDiagnosticCoreUI.exe (.not file.)
~ Firewall: 204 Legitimates Filtered in 00mn 02s



---\\ Listagem dos códigos dos software (PUC) (090)
O90 - PUC: "B6814A64DD6AC6C4FB45A42220A03C2B" . (.DibCom TV Stick 315 x64.) -- C:\Windows\Installer\{46A4186B-A6DD-4C6C-BF54-4A22020AC3B2}\ARPPRODUCTICON.exe
~ Update Products: 155 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.E947169F01AE0033832F5F67B12A729C] [WIS][27/01/2014] (.AVG - AVG PC TuneUp 2014 (pt-BR).) -- C:\Windows\Installer\22961b.msi   [29184]
[MD5.6BE86DB225CFA727849C0F1355608B65] [WIS][27/01/2014] (.AVG - AVG PC TuneUp 2014.) -- C:\Windows\Installer\22961f.msi   [8458752]
[MD5.86569BE38A9AB3339DEA1855A3EBD887] [WIS][28/06/2012] (.Nokia - Microsoft_VC100_CRT_SP1.) -- C:\Windows\Installer\2644cc8.msi   [29184]
[MD5.6FB1784D08C95546AF5F8718F371B256] [WIS][01/04/2009] (.Broadcom Corp. - WIDCOMM Bluetooth Profile Pack.) -- C:\Windows\Installer\52f02.msi   [4788736]
[MD5.2A9B568A7900FDDD7AA8E5CFDC610935] [WIS][04/04/2010] (.eSupportQFolder - eSupportQFolder.) -- C:\Windows\Installer\5a93a.msi   [121344]
[MD5.B62847FFDB991B6F926E3125242B7771] [WIS][04/04/2010] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\5a95c.msi   [648192]
[MD5.1518F17C3FA3A1E2A5EA04A5ECD056FC] [WIS][04/04/2010] (.CustomerResearchQFolder - CustomerResearchQFolder.) -- C:\Windows\Installer\5a980.msi   [121344]
[MD5.D3441D2E8EB04A9648593AC53106B7FE] [WIS][04/04/2010] (.DocumentViewerQFolder - DocumentViewerQFolder.) -- C:\Windows\Installer\5a98d.msi   [121344]
[MD5.BD1294F73BD30BCDECE7346F922A6415] [WIS][17/01/2011] (.SmartCom - Nokia Internet Modem Setup.) -- C:\Windows\Installer\831dc.msi   [4201472]
[MD5.296D62C967B44C330BA9377E30FEEF9A] [WIS][31/08/2013] (.The Memphis Agency - focus booster.) -- C:\Windows\Installer\f3471a6.msi   [21504]
~ WIS: 155 Legitimates Filtered in 00mn 19s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 21/12/2013 65432 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Auto 24/09/2013 1358944 |  (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
SS - | Auto 22/01/2014 3788816 |  (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
SS - | Auto 16/12/2013 193696 |  (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe
SS - | Demand 25/04/2009 651720 |  (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Auto 25/04/2009 133104 |  (gupdate1c9c5cb9145bbba) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 25/04/2009 133104 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Auto 28/02/2014 2151744 |  (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
SS - | Demand 08/01/2009 114688 |  (PACSPTISVR) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
SS - | Auto 10/07/1658 0 |  (PCFasterSvc_{PCFaster_4.0.0.0}) . (...) - C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe =>Adware.BDSearch
SS - | Demand 16/09/2009 167424 |  (SampleCollector) . (.Intel Corporation.) - C:\Program Files\Sony\VAIO Care\collsvc.exe
SS - | Demand 18/04/2013 737616 |  (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
SS - | Auto 23/10/2013 172192 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 21/01/2009 69632 |  (VAIO Entertainment TV Device Arbitration Service) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
SS - | Demand 16/01/2009 110376 |  (VcmXmlIfHelper) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
SS - | Auto 20/01/2008 27648 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Demand 10/07/1658 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation

SR - | Auto 18/03/2010 113152 |  (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SR - | Auto 08/12/2008 169312 |  (AdobeActiveFileMonitor7.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
SR - | Auto 11/08/2012 55184 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 24/09/2013 348008 |  (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
SR - | Auto 08/01/2014 1923376 |  (BAVSvc) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe =>Adware.BDSearch
SR - | Demand 16/12/2013 247968 |  (BBUpdate) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
SR - | Auto 08/01/2014 459416 |  (BHipsSvc) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe =>Adware.BDSearch
SR - | Auto 24/01/2009 839720 |  (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 20/08/2008 1449984 |  (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SR - | Auto 08/10/2013 452136 |  (GbpSv) . (.GAS Tecnologia.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
SR - | Demand 20/01/2008 27648 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 20/01/2008 27648 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 04/01/2007 112152 |  (IviRegMgr) . (.InterVideo.) - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
SR - | Auto 04/04/2013 418376 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Auto 20/01/2008 27648 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 21/02/2014 576032 |  (PCAppStoreSvc_{PCAppStore_4.0.6.4959}) . (.Baidu Inc..) - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe =>Adware.BDSearch
SR - | Auto 20/01/2008 27648 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 20/08/2008 826368 |  (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - | Auto 15/10/2013 3921880 |  (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 20/09/2013 1042272 |  (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/09/2013 171416 |  (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - | Auto 20/01/2009 120104 |  (SOHCImp) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
SR - | Auto 20/01/2009 70952 |  (SOHDBSvr) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
SR - | Auto 20/01/2009 390440 |  (SOHDms) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
SR - | Auto 20/01/2009 75048 |  (SOHDs) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
SR - | Auto 20/01/2009 91432 |  (SOHPlMgr) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
SR - | Auto 18/12/2013 2102072 |  (TuneUp.UtilitiesSvc) . (.AVG.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
SR - | Auto 18/09/2008 104960 |  (uCamMonitor) . (.ArcSoft, Inc..) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
SR - | Auto 19/01/2009 203624 |  (VAIO Event Service) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
SR - | Auto 19/12/2008 411496 |  (VAIO Power Management) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
SR - | Auto 14/01/2009 5184872 |  (VCFw) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
SR - | Auto 19/01/2009 394536 |  (VcmIAlzMgr) . (.Sony Corporation.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
SR - | Demand 21/01/2009 313264 |  (Vcsw) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
SR - | Auto 21/01/2009 192512 |  (VzCdbSvc) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
SR - | Auto 20/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 07/01/2009 412672 |  (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\System32\DRIVERS\xaudio64.exe

~ Services:  Scanned in 00mn 22s



---\\ Lista dos emuladores de CD/DVD (MBR Hook)
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/01/1601 - 03:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\sptd.sys   [834544]
~ Emulateurs:  Scanned in 00mn 22s



---\\ Scâner Aditional (088)
Database Version : 13031 - (03/03/2014)
Clés trouvées (Keys found) : 21
Valeurs trouvées (Values found) : 2
Dossiers trouvés  (Folders found) : 5
Fichiers trouvés  (Files found) : 7

[HKLM\SYSTEM\CurrentControlSet\Services\BAVSvc] =>Adware.BDSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\BHipsSvc] =>Adware.BDSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\PCAppStoreSvc_{PCAppStore_4.0.6.4959}] =>Adware.BDSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\PCFasterSvc_{PCFaster_4.0.0.0}] =>Adware.BDSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Baidu PC Faster 4.0.0.0] =>Adware.BDSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FindRight] =>Hijacker.FindrToolbar^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Classes\Installer\Features\710B2EE4C28D21B40B17C51F2BD3A124] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\710B2EE4C28D21B40B17C51F2BD3A124] =>PUP.SweetIM
[HKCU\Software\Bywifi] =>Spyware.Bywifi
[HKLM\Software\Wow6432Node\Bywifi] =>Spyware.Bywifi
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKCU\Software\USyndication] =>Trojan.USyndication
[HKCU\Software\usyndication.com] =>Trojan.USyndication
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Baidu Antivirus] =>Adware.BDSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Baidu PC Faster 3.6.0.35848] =>Adware.BDSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Baidu PC Faster 4.0.0.0] =>Adware.BDSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus] =>Adware.BDSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{8dcb7100-df86-4384-8842-8fa844297b3f} =>Toolbar.Bing^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Baidu PC Faster 4.0.0.0 =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security =>Adware.BDSearch^
C:\ProgramData\Baidu =>Adware.BDSearch^
C:\ProgramData\Baidu Security =>Adware.BDSearch^
C:\Users\Jackeline\AppData\Roaming\Baidu Security =>Adware.BDSearch^
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe =>Adware.BDSearch^
[HKCU\Software\Baidu Security] =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\Baidu_Drp_pos] =>Adware.BDSearch^
~ Additionnel Scan: 371654 Items scanned in 01mn 12s



---\\ Sumário das deteções encontradas na sua estação
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]  =>Adware.BDSearch
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>Spyware.Bywifi
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>PUP.Fbsearch
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>Hijacker.FindrToolbar
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>PUP.Funmoods
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>PUP.SweetIM
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>Trojan.USyndication
~ MSI: 7 link(s) detected in 01mn 13s



~ 1352 Legitimates filtered by white list
End of the scan (706 lines in 03mn 02s)(0)
Windows Automatic Updates : OK

---\\ Softwares de proteçao do sistema
AVG 2014 v14.0.3705
Malwarebytes Anti-Malware versão 1.75.0.1300
Spybot - Search & Destroy v2.2.25

---\\ Softwares d'optimização do sistema
CCleaner v4.09 =>Piriform Ltd

---\\ Softwares de partilha do PeerToPeer (P2P)
Pando Media Booster v2.3.5.9

---\\ Monitoramento dos softwares
Adobe Flash Player 12 ActiveX
Adobe Reader XI
Java 7 Update 45

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3962 MB (38% free)
System Restore: Activé (Enable)
System drive C: has 163 GB (56%) free of 286 GB

---\\ Modo de conexão ao sistema
~ Computer Name: JACKELINE-PC
~ User Name: Jackeline
~ All Users Names: Jackeline, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Jackeline\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Jackeline\AppData\Roaming\
~ %Desktop% : C:\Users\Jackeline\Desktop\
~ %Favorites% : C:\Users\Jackeline\Favorites\
~ %LocalAppData% : C:\Users\Jackeline\AppData\Local\
~ %StartMenu% : C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 163 Go of 286 Go)
D: Floppy drive, Flash card reader, USB Key (Not Inserted)
E: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.BBD8E74F23D7605CB0CDB57A1B25D826] - (.Microsoft Corporation - Windows Explorer.) (.29/10/2008 - 03:49:22.) -- C:\Windows\Explorer.exe [3080704]
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.20/01/2008 - 23:50:23.) -- C:\Windows\System32\Wininit.exe [123904]
[MD5.70BC625F25EDE67FFD655916A3F3A103] - (.Microsoft Corporation - Internet Extensions para Win32.) (.21/04/2011 - 12:29:00.) -- C:\Windows\System32\wininet.dll [1032704]
[MD5.856491FCED98093D824B9EB2892F564A] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.20/01/2008 - 23:49:47.) -- C:\Windows\System32\Winlogon.exe [406016]
[MD5.9BB97042FA331A0FB4BDD98B9280A50A] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 10:42:48.) -- C:\Windows\system32\Drivers\AFD.sys [407552]
[MD5.1898FAE8E07D97F2F6C2D5326C633FAC] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.20/01/2008 - 23:46:50.) -- C:\Windows\system32\Drivers\atapi.sys [22584]
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.20/01/2008 - 23:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624]
[MD5.3B2FB35363423ED60C8FBF15FC8680BD] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/01/2008 - 23:46:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872]
[MD5.3725C43C9E90731ECA651D506CC599A3] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 11:45:13.) -- C:\Windows\system32\Drivers\DfsC.sys [97792]
[MD5.0C0D0F8A3FF09ECC81963D09EC6A0A84] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/01/2008 - 23:46:51.) -- C:\Windows\system32\Drivers\HDAudBus.sys [50688]
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Driver de porta i8042.) (.20/01/2008 - 23:47:27.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000]
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.20/01/2008 - 23:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712]
[MD5.B698EB9ACC7ECD4927D99D268918F912] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 10:11:56.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135168]
[MD5.7A29CA243A629230799754162D80120F] - (.Microsoft Corporation - MBT Transport driver.) (.20/01/2008 - 23:50:11.) -- C:\Windows\system32\Drivers\netBT.sys [250368]
[MD5.FE86BA5AC3B50E2CA911E9C60C07B638] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.20/01/2008 - 23:50:39.) -- C:\Windows\system32\Drivers\ntfs.sys [1540152]
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Driver de porta paralela.) (.02/11/2006 - 06:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.3B9085F91EF00ABD15A6F36570E90E12] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/01/2008 - 23:49:59.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/01/2008 - 23:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368]
[MD5.41EB2E8E005FEEDCAFCE301983EFF932] - (.Microsoft Corporation - SMB Transport driver.) (.20/01/2008 - 23:50:11.) -- C:\Windows\system32\Drivers\smb.sys [88064]
[MD5.8C39C72E0E853DE04748C0337D9B9216] - (.Microsoft Corporation - TDI Translation Driver.) (.20/01/2008 - 23:49:53.) -- C:\Windows\system32\Drivers\tdx.sys [94208]
[MD5.DE4307412D98050239026E56A7DFF3C0] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.20/01/2008 - 23:47:03.) -- C:\Windows\system32\Drivers\volsnap.sys [271416]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 1/7132
~ Mes musiques (My Musics) : 1/1116
~ Mes Videos (My Videos) : 1/284
~ Mes Favoris (My Favorites) : 1/226
~ Mes Documents (My Documents) : 12/914
~ Mon Bureau (My Desktop) : 1/31
~ Menu demarrer (Programs) : 1/74
~ Hidden Files:  Scanned in 00mn 05s



---\\ Processos lançados
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe   [532040] [PID.1568]
[MD5.F96EBC5A624349D81DCC7600A3C5DC43] - (.Microsoft Corporation - Console IME.) -- C:\Windows\SysWOW64\conime.exe   [69120] [PID.2956]
[MD5.A5FE6D3BC5E27315BB3988B496D629C8] - (.Sony Corporation - VMpTtray.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe   [99624] [PID.808]
[MD5.255E405D801CF01247390F38F92D8042] - (...) -- C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe   [17408] [PID.4640]
[MD5.3DF558BADF1CABF07E7D5822A79EC5BD] - (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe   [1177448] [PID.1248]  =>Adware.BDSearch
[MD5.16EE5FC85A65296FFFC4BA8BDDDD0933] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe   [4962320] [PID.3624]
[MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe   [5624784] [PID.3424]
[MD5.B7D3862F280058CCFC4BA499704DEDB9] - (.No owner - CCP.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\CCP.exe   [28672] [PID.5880]
[MD5.440D5E623AFB90A2F550146DFFF00A62] - (.No owner - PowerManager.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\PowerManager.exe   [45056] [PID.4956]
[MD5.7C33756A3AFE3692E2F234EB657B4512] - (.No owner - ThirdPartyAppMgr.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\ThirdPartyAppMgr.exe   [28672] [PID.3408]
[MD5.3A46ECAB4A260A371AE654341F0865A0] - (.Sony Electronics, Inc. - Kinoubi.UI.UIManager2.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\UIManager.exe   [45056] [PID.3436]
[MD5.026C4CA19FAE1F84894A99735B15AACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe   [859464] [PID.5552]
[MD5.66EA3B698F9A7EA2DBF0E4B246B6C958] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [8349696] [PID.6952]
[MD5.201BCF8550512C105BAC78E9FA401260] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe   [452136] [PID.800]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe   [113152] [PID.1972]
[MD5.6D9FC1E7EA3C548F4D3455F0C3FEEF8C] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe   [169312] [PID.1984]
[MD5.A5299D04ED225D64CF07A568A3E1BF8C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [55184] [PID.1128]
[MD5.C98ACDE22458C8F46FD0503CB9E2D01F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe   [223112] [PID.1580]
[MD5.B747B6BB015E552F49C634BB19540F3D] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe   [348008] [PID.2100]
[MD5.10F95F7B5BD818148F652C9DA4CDEFBE] - (.Baidu, Inc. - Baidu Antivirus Service.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe   [1923376] [PID.2128]  =>Adware.BDSearch
[MD5.0877B7F9B1BB973AAD7AA9EE24BE3B7E] - (.Baidu, Inc. - Baidu Antivirus Hips Service.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe   [459416] [PID.2184]  =>Adware.BDSearch
[MD5.213822072085B5BBAD9AF30AB577D817] - (.InterVideo - RegMgr Module.) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe   [112152] [PID.2480]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe   [418376] [PID.2800]
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe   [701512] [PID.2844]
[MD5.D69FBE1B6883A8F4D58EEACCD4624AE2] - (.Baidu Inc. - Baidu PC App Store Service.) -- C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe   [576032] [PID.2984]  =>Adware.BDSearch
[MD5.98EF79CC2B07398AC525F9EA1AE0366F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe   [3921880] [PID.1184]
[MD5.140FCF5FFAE4EFBA9740A9FD8B49E0BF] - (.Sony Corporation - VAIO Media plus Database Manager.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe   [70952] [PID.3660]
[MD5.63F6D08C54D5B3C1B12A6172032055C7] - (.ArcSoft, Inc. - MgiSvr.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe   [104960] [PID.3768]
[MD5.73328C784ECFE7072BD102F370076B50] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe   [203624] [PID.3784]
[MD5.BE01E566D1F569AAB32D0335613E1EEA] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\SysWOW64\DllHost.exe   [7168] [PID.3844]
[MD5.669586797F52E6FFA187AFB9C55C6823] - (.Sony Corporation - VAIO Event Service(Service Sub Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe   [112488] [PID.4016]
[MD5.0ED1D51DCEC67F96CC313D02A1741CF3] - (.Sony Corporation - VAIO Content Folder Watcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe   [5184872] [PID.3160]
[MD5.7295A2B5795E7B8AA128E5DF5A29B656] - (.Sony Corporation - VCM Intelligent Analyzing Manager.) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe   [394536] [PID.2036]
[MD5.79EB419F4A694B4514249E0D3DB16ECF] - (.Sony Corporation - VAIO Entertainment Database Service.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe   [192512] [PID.1152]
[MD5.14BF6B3AB327D519ED007CDDC56F6900] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe   [1042272] [PID.2604]
[MD5.D8C244121A06B581B097D9617D94CFF1] - (.Sony Corporation - VAIO Media plus Digital Media Server.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe   [390440] [PID.2120]
[MD5.2DB561887EA122B946BBE2821473EDD8] - (.Sony Corporation - VAIO Media plus Device Searcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe   [75048] [PID.2084]
[MD5.AB9EE246A1EB2C3C7C6CB16E0B9462F7] - (.Sony Corporation - VAIO Media plus Playlist Manager.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe   [91432] [PID.2004]
[MD5.820EBE67AB99F033FDE25B2692157991] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe   [171416] [PID.3340]
[MD5.7B24EFA2A60BA7388FECDA63AB24560A] - (.Sony Corporation - VAIO Media plus Content Importer.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe   [120104] [PID.4248]
[MD5.313CE91F1B734E2E02F0F4465B52115A] - (.Sony Corporation - VAIO Entertainment UPnP Client Adapter.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe   [313264] [PID.4960]
~ Processes Running:  Scanned in 00mn 01s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Jackeline\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
~ Google Browser: 29 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1
~ IE Browser: 23 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys:  Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Barras do Internet Explorer (03))
O3 - Toolbar: Bing Bar - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation. - Bing Client Extensions.) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll =>Toolbar.Bing
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E0301295-AB3E-4AF3-979F-3D453C5F9F48} Chave orfã
~ Toolbar:  Scanned in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [Public]: Ashampoo Burning Studio 2010.lnk . (...)  -- C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 2010\burningstudio2010.exe
O4 - GS\Desktop [Public]: aTube Catcher.lnk . (.DsNET - aTube Catcher to download and convert video.)  -- C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
O4 - GS\Desktop [Public]: AVG Manutenção em um Clique.lnk . (.AVG - Manutenção em um Clique AVG.)  -- C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe
O4 - GS\Desktop [Public]: Baidu Antivirus.lnk . (.Baidu, Inc. - Bav.)  -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\Bav.exe =>Adware.BDSearch
O4 - GS\Desktop [Public]: focus booster.lnk . (...)  -- C:\Program Files (x86)\focus booster\focus booster.exe
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: HP Print and Scan Doctor.lnk . (...)  -- C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSDr.exe
O4 - GS\Desktop [Public]: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\Desktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.)  -- C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
O4 - GS\Desktop [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.)  -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - GS\Desktop [Public]: TotalMedia 3.5.lnk . (.ArcSoft, Inc. - ArcSoft TotalMedia.)  -- C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
O4 - GS\Desktop [Public]: Video Search.lnk . (.DsNET - aTube Catcher to download and convert video.)  -- C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
O4 - GS\Program [Public]: Click to Disc Editor.lnk . (.Sony Corporation - ctdEditor.)  -- C:\Program Files (x86)\Sony\Click to Disc Editor\ctdEditor.exe
O4 - GS\Program [Public]: Click to Disc.lnk . (.Sony Corporation - AutoModeEntrance.)  -- C:\Program Files (x86)\Sony\VAIO VP Utilities\VCAutoModeEntrance.exe
O4 - GS\Program [Public]: Dolby Control Center.lnk . (...)  -- C:\Windows\Installer\{D035FBF6-FDEF-487D-89CA-6F9DD07B783F}\_DF30B6672BAD027FB62666.exe
O4 - GS\Program [Public]: focus booster.lnk . (...)  -- C:\Program Files (x86)\focus booster\focus booster.exe
O4 - GS\Program [Public]: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (...)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O4 - GS\Program [Public]: Registro OCR I.R.I.S..lnk . (.I.R.I.S. SA - Registration Wizard for I.R.I.S. products.)  -- C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe
O4 - GS\Program [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.)  -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - GS\QuickLaunch [Jackeline]: Acelerador de Vídeo Bywifi.lnk . (...)  -- C:\Program Files (x86)\Bywifi\bywifi.exe (.not file.) =>Spyware.Bywifi
O4 - GS\QuickLaunch [Jackeline]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Jackeline]: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\QuickLaunch [Jackeline]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Jackeline]: Mozilla Firefox.lnk . (...)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O4 - GS\QuickLaunch [Jackeline]: Transcodificador de Mídia Bywifi.lnk . (...)  -- C:\Program Files (x86)\Bywifi\bywifidl.exe (.not file.) =>Spyware.Bywifi
O4 - GS\Program [Jackeline]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Jackeline]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Jackeline]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Jackeline]: Continue Spybot - Search & Destroy Installation.lnk . (...)  -- C:\Users\Jackeline\AppData\Local\Temp\ICReinstall_spybot-search-destroy-22250-32-bits (1).exe (.not file.)
O4 - GS\Desktop [Jackeline]: PC App Store.lnk . (.Baidu Inc. - Baidu PC App Store.)  -- C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStore.exe =>Adware.BDSearch
O4 - GS\Desktop [Jackeline]: Transcodificador de Mídia Bywifi.lnk . (...)  -- C:\Program Files (x86)\Bywifi\bywifidl.exe (.not file.) =>Spyware.Bywifi
~ Global Startup: 103 Legitimates Filtered in 00mn 01s

---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [UnThreat] C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe (.not file.)
O4 - HKLM\..\Run: [SBRegRebootCleaner] C:\Program Files (x86)\UnThreat AntiVirus\SBRC.exe (.not file.)
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [VMpTtray.exe] . (.Sony Corporation - VMpTtray.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKLM\..\Wow6432Node\Run: [VAIOSurvey] . (...) -- C:\Program Files (x86)\Sony\VAIO Survey\VAIO Sat Survey.exe
O4 - HKLM\..\Wow6432Node\Run: [UnlockerAssistant] . (...) -- C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe
O4 - HKLM\..\Wow6432Node\Run: [SmartWiHelper] . (.Sony Electronics Corporation - SmartWi Helper.) -- C:\Program Files\Sony Corporation\SmartWi Connection Utility\SmartWiHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Baidu PC Faster 4.0.0.0] C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFaster.exe (.not file.) =>Adware.BDSearch
O4 - HKLM\..\Wow6432Node\Run: [Baidu Antivirus] . (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe =>Adware.BDSearch
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Barra Lateral do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Chave orfã
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Barra Lateral do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Chave orfã
O4 - HKUS\S-1-5-21-1571609789-1391897024-2847255980-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-1571609789-1391897024-2847255980-1000\..\Run: [VMpTtray.exe] . (.Sony Corporation - VMpTtray.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe
O4 - HKUS\S-1-5-21-1571609789-1391897024-2847255980-1000\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
~ Application:  Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: @btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\Domains\www] *.bancobrasil.com.br
O15 - Trusted Zone: [HKCU\...\Domains\www] *.bb.com.br
~ IE Zone Confiance:  Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{42FEA38A-71A1-4692-86F4-398CFF4EA646}: DhcpNameServer = 186.207.160.29 186.207.160.26 201.6.4.116
O17 - HKLM\System\CS1\Services\Tcpip\..\{42FEA38A-71A1-4692-86F4-398CFF4EA646}: DhcpNameServer = 10.20.31.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{BF9A59DB-EAAF-4EAE-8768-53B232E596C7}: DhcpNameServer = 10.11.0.1 10.11.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{42FEA38A-71A1-4692-86F4-398CFF4EA646}: DhcpNameServer = 186.207.160.29 186.207.160.26 201.6.4.116
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 186.207.160.29 186.207.160.26 201.6.4.116
~ Domain:  Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Chave do Registo autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioteca da interface de usuário do naveg.) -- C:\Windows\System32\browseui.dll
~ STS/SSO:  Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: Baidu Antivirus Service (BAVSvc) . (.Baidu, Inc. - Baidu Antivirus Service.) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe =>Adware.BDSearch
O23 - Service: Baidu Hips Service (BHipsSvc) . (.Baidu, Inc. - Baidu Antivirus Hips Service.) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe =>Adware.BDSearch
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
O23 - Service: Baidu PC App Store Service 4.0.6.4959 (PCAppStoreSvc_{PCAppStore_4.0.6.4959}) . (.Baidu Inc. - Baidu PC App Store Service.) - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe =>Adware.BDSearch
O23 - Service: Baidu PC Faster Service 4.0.0.0 (PCFasterSvc_{PCFaster_4.0.0.0}) . (...) - C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe (.not file.) =>Adware.BDSearch
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\System32\DRIVERS\xaudio64.exe
~ Services: 35 Legitimates Filtered in 00mn 14s



---\\ Enumeração Ativa do Ambiente de trabalho & Editor MHTML (024)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Windows\Web\Wallpaper\VAIO C Wallpaper Red 1280x800.jpg
O24 - Desktop General: WallPaper - .(...) - C:\Windows\Web\Wallpaper\VAIO C Wallpaper Red 1280x800.jpg
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Listagem dos dados do BootExecute (Bex) (034)
O34 - HKLM BootExecute: (C:\Users\JACKEL~1\AppData\Local\Temp\Partizan.exe) - File not found
~ BEX: 3 Legitimates Filtered in 00mn 00s



---\\ Tarefas planificadas automaticamente (039)
[MD5.00000000000000000000000000000000] [APT] [SearchGuardPlusUpdater] (...) -- C:\Program Files\Search Guard PlusU\sgpupdaters.exe (.not file.)   [0]  =>PUP.FBSearch
[MD5.00000000000000000000000000000000] [APT] [Speedbit SBW setup] (...) -- C:\Users\Jackeline\AppData\Local\Temp\Stub\1064439952\va33.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [Speedbit Video Accelerator Setup] (...) -- C:\Users\Jackeline\AppData\Local\Temp\Stub\1064439952\va33.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{363343C5-C900-4B51-86FA-D9C71B89CAF7}] (...) -- C:\Users\Jackeline\Downloads\Nota_fiscal_1910.PDF (1).cpl" (.not file.)   [0]
~ Scheduled Task: 52 Legitimates Filtered in 00mn 05s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver:  (Bfilter) . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - C:\Windows\system32\drivers\Bfilter.sys =>Adware.BDSearch
O41 - Driver:  (Bfmon) . (.Baidu, Inc. - Baidu FS Monitor Driver.) - C:\Windows\system32\drivers\Bfmon.sys =>Adware.BDSearch
O41 - Driver:  (Bprotect) . (...) - C:\Windows\system32\drivers\Bprotect.sys
O41 - Driver:  (BprotectEx) . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - C:\Windows\system32\drivers\BprotectEx.sys =>Adware.BDSearch
O41 - Driver:  (DMICall) . (. - .) - C:\Windows\System32\DRIVERS\DMICall.sys (.not file.)
O41 - Driver:  (ccHP) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\ccHPx64.sys (.not file.)
O41 - Driver:  (eeCtrl) . (. - .) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (.not file.)
O41 - Driver:  (SRTSPX) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSPX64.sys (.not file.)
O41 - Driver:  (SymIM) . (. - .) - C:\Windows\System32\DRIVERS\SymIMv.sys (.not file.)
O41 - Driver:  (SYMTDI) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SYMTDI.sys (.not file.)
~ Drivers: 86 Legitimates Filtered in 00mn 00s



---\\ Software instalados (042)
O42 - Logiciel: Audio Converter - (...) [HKCU][64Bits] -- Audio Converter
O42 - Logiciel: Baidu PC Faster - (.Baidu, Inc..) [HKLM][64Bits] -- Baidu PC Faster 4.0.0.0 =>Adware.BDSearch
O42 - Logiciel: DibCom TV Stick 315 x64 - (.DiBcom.) [HKLM][64Bits] -- InstallShield_{46A4186B-A6DD-4C6C-BF54-4A22020AC3B2}
O42 - Logiciel: DibCom TV Stick 315 x64 - (.DiBcom.) [HKLM][64Bits] -- {46A4186B-A6DD-4C6C-BF54-4A22020AC3B2}
O42 - Logiciel: FindRight - (.FindRight.) [HKLM][64Bits] -- FindRight =>Hijacker.FindrToolbar
O42 - Logiciel: WMPx64PluginFix - (...) [HKLM][64Bits] -- {00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb
O42 - Logiciel: focus booster - (.The Memphis Agency.) [HKLM][64Bits] -- com.focusboosterapp.focusbooster.8E5F79C899747AD22E21DB62AA496926DA6BBC64.1
O42 - Logiciel: focus booster - (.The Memphis Agency.) [HKLM][64Bits] -- {06ED8674-1191-5DF4-88E9-5732C927ADF7}
~ Logic: 17 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Baidu Security] =>Adware.BDSearch
[HKCU\Software\Bywifi] =>Spyware.Bywifi
[HKCU\Software\GbAs]
[HKCU\Software\OrolixCommunicator]
[HKCU\Software\Orolix]
[HKCU\Software\Pando Networks]
[HKCU\Software\SpeedBit]
[HKCU\Software\ziggi]
[HKLM\Software\UnThreat]
[HKLM\Software\Wow6432Node\AutoHelpDesk]
[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\Baidu_Drp_pos] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\Bywifi] =>Spyware.Bywifi
[HKLM\Software\Wow6432Node\IncrediMail]
[HKLM\Software\Wow6432Node\Orolix]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Vivo 3G]
~ Key Software: 395 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/06/2012 - 18:56:43 - [0] ----D C:\Program Files (x86)\3c5030b4
O43 - CFD: 20/01/2014 - 23:52:41 - [124,835] ----D C:\Program Files (x86)\Baidu Security =>Adware.BDSearch
O43 - CFD: 19/07/2010 - 23:26:06 - [0,967] ----D C:\Program Files (x86)\DiBcom
O43 - CFD: 31/08/2013 - 22:05:12 - [1,935] ----D C:\Program Files (x86)\focus booster
O43 - CFD: 18/06/2011 - 09:41:46 - [7,120] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 03/02/2014 - 01:14:34 - [0,177] ----D C:\Program Files (x86)\VIVO INTERNET
O43 - CFD: 14/07/2013 - 14:53:13 - [2,898] ----D C:\Program Files (x86)\Common Files\SpeedBit
O43 - CFD: 04/03/2014 - 16:30:21 - [0] ----D C:\ProgramData\Baidu =>Adware.BDSearch
O43 - CFD: 28/08/2013 - 20:53:52 - [9,627] ----D C:\ProgramData\Baidu Security =>Adware.BDSearch
O43 - CFD: 25/04/2009 - 14:19:00 - [0] ----D C:\ProgramData\SmartWi Connection Utility
O43 - CFD: 27/01/2014 - 12:43:38 - [0] ----D C:\ProgramData\UnThrea
O43 - CFD: 20/01/2014 - 23:52:33 - [23,692] ----D C:\Users\Jackeline\AppData\Roaming\Baidu Security =>Adware.BDSearch
O43 - CFD: 31/08/2013 - 22:05:24 - [0] ----D C:\Users\Jackeline\AppData\Roaming\com.focusboosterapp.focusbooster
O43 - CFD: 31/08/2013 - 22:05:23 - [0] ----D C:\Users\Jackeline\AppData\Roaming\com.focusboosterapp.focusbooster.8E5F79C899747AD22E21DB62AA496926DA6BBC64.1
O43 - CFD: 28/02/2014 - 17:49:39 - [0,005] ----D C:\Users\Jackeline\AppData\Roaming\ProductData
O43 - CFD: 03/02/2014 - 01:17:04 - [9,675] ----D C:\Users\Jackeline\AppData\Roaming\VIVO INTERNET
O43 - CFD: 14/10/2012 - 21:39:35 - [0,074] ----D C:\Users\Jackeline\AppData\Local\Ares
O43 - CFD: 01/03/2014 - 00:33:48 - [0,001] ----D C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster =>Adware.BDSearch
~ Program Folder: 265 Legitimates Filtered in 00mn 03s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 04/03/2014 - 15:23:07 ---A- . (...) -- C:\Windows\zoek-delete.exe   [24064]
O44 - LFC:[MD5.BE6CDA37625D72D69FA297C5F5DE82CE] - 04/03/2014 - 16:31:56 ---A- . (...) -- C:\zoek-results.log   [42972]
O44 - LFC:[MD5.00E0645DD207A083C0353D2AB7A1D2B2] - 04/03/2014 - 16:35:32 ---A- . (...) -- C:\Windows\System32\prfc0416.dat   [125904]
O44 - LFC:[MD5.DB8156155FD10DDFC2E8138442C0291A] - 04/03/2014 - 16:35:32 ---A- . (...) -- C:\Windows\System32\prfh0416.dat   [646460]
O44 - LFC:[MD5.7EF73C69DB577AD97589CCEC7F2E7A04] - 28/02/2014 - 17:15:16 ---A- . (...) -- C:\Windows\System32\spsys.log   [2856]
~ Files: 12 Legitimates Filtered in 00mn 02s



---\\ Chave do registo Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{2907454b-dd8d-11e0-827e-93ca581f80b2}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{525b8745-d174-11e0-8d94-df9cf8ad2b08}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
O51 - MPSK:{525b8758-d174-11e0-8d94-df9cf8ad2b08}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{6f044dda-da48-11e0-be5d-9e8a113a110e}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
O51 - MPSK:{8270001e-2284-11e0-bc36-c3f86a70e020}\AutoRun\command. (...) -- F:\application\Nokia_Internet_Modem.exe (.not file.)
O51 - MPSK:{ab967751-c993-11e2-9a4f-99d174717f77}\AutoRun\command. (...) -- F:\NokiaPCIA_Autorun.exe (.not file.)
O51 - MPSK:{c38634c0-2dc4-11df-bccf-00243373a292}\AutoRun\command. (...) -- F:\3dcs9.exe (.not file.)
O51 - MPSK:{d91a2c8d-d3e5-11de-8bb8-00243373a292}\AutoRun\command - Chave orfã
~ Keys:  Scanned in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 18 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:[MD5.2E83D2621E87C493AB45DC6655BA77D4] - 18/08/2013 - 21:24:15 ---A- . (...) -- C:\Windows\System32\Drivers\aswSnx.sys.sum   [175]
O58 - SDL:[MD5.A5F29AC2F0ADE8B995B49D7350CE3AC0] - 18/08/2013 - 21:24:15 ---A- . (...) -- C:\Windows\System32\Drivers\aswSP.sys.sum   [175]
O58 - SDL:[MD5.E86C64478D9A90D62255FE9EB0150C6E] - 18/08/2013 - 21:24:15 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys.sum   [175]
O58 - SDL:[MD5.494D668B4CB866A1D6835E5F01B13EF1] - 25/11/2013 - 21:47:22 ---A- . (...) -- C:\Windows\System32\Drivers\avgidsha.sys   [196376]
O58 - SDL:[MD5.40014A6251A68D1EC48001B1653CCEE0] - 20/01/2008 - 23:47:30 ---A- . (...) -- C:\Windows\System32\Drivers\bdasup.sys   [15616]
O58 - SDL:[MD5.3741B76F9B10CAA08415ECC0DCCFCC5C] - 23/12/2013 - 04:55:12 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\Windows\System32\Drivers\Bfilter.sys   [52032]  =>Adware.BDSearch
O58 - SDL:[MD5.7CD8A8C19B39863BAFEA6C044DE2883D] - 17/12/2013 - 06:59:30 ---A- . (.Baidu, Inc. - Baidu FS Monitor Driver.) -- C:\Windows\System32\Drivers\Bfmon.sys   [34624]  =>Adware.BDSearch
O58 - SDL:[MD5.2E0CBB33003601DD3B43B5209699E56C] - 10/01/2014 - 07:12:11 ---A- . (...) -- C:\Windows\System32\Drivers\Bprotect.sys   [128992]
O58 - SDL:[MD5.90FC18CBEFCD54BE4288541558E5187E] - 14/01/2014 - 16:59:41 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\Windows\System32\Drivers\BProtectEx.sys   [83264]  =>Adware.BDSearch
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 18:30:18 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbMdm.sys   [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 08:42:33 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbSer.sys   [14720]
O58 - SDL:[MD5.651154EE76EA31EEE050F3B66E5D086B] - 05/02/2009 - 17:03:56 ---A- . (...) -- C:\Windows\System32\Drivers\btwrchid.sys   [21160]
O58 - SDL:[MD5.B52D9A14CE4101577900A364BA86F3DF] - 20/01/2008 - 23:46:51 ---A- . (...) -- C:\Windows\System32\Drivers\CmBatt.sys   [17792]
O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 20/01/2008 - 23:46:56 ---A- . (...) -- C:\Windows\System32\Drivers\E1G6032E.sys   [146176]
O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 20/01/2008 - 23:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys   [397368]
O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 21/08/2012 - 13:01:20 ---A- . (...) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys   [33240]
O58 - SDL:[MD5.4EA5458FCA8518344686C543749365B1] - 23/05/2013 - 07:39:23 ---A- . (.ThreatTrack Security - gfiark64.sys.) -- C:\Windows\System32\Drivers\gfiark.sys   [41032]
O58 - SDL:[MD5.52D7906C6D00D9D62AA52D52B101F7BE] - 16/04/2008 - 23:36:32 ---A- . (...) -- C:\Windows\System32\Drivers\hidparse.sys   [31744]
O58 - SDL:[MD5.51D1FC6B0D4C3855A75D167DA9D87BBA] - 06/01/2009 - 17:44:32 ---A- . (...) -- C:\Windows\System32\Drivers\igdkmd64.sys   [7907872]
O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 09:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys   [37480]
O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 09:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys   [37480]
O58 - SDL:[MD5.1D419CF43DB29396ECD7113D129D94EB] - 20/01/2008 - 23:49:00 ---A- . (...) -- C:\Windows\System32\Drivers\ksthunk.sys   [20864]
O58 - SDL:[MD5.E4F44EC214B3E381E1FC844A02926666] - 07/01/2009 - 17:16:15 ---A- . (...) -- C:\Windows\System32\Drivers\mdmxsdk.sys   [17024]
O58 - SDL:[MD5.7071044FBCB23B47177E866A4F2EE802] - 13/07/2007 - 12:22:56 ---A- . (.DiBcom S.A. - HID Infrared Remote Control minidriver.) -- C:\Windows\System32\Drivers\modrc.sys   [24200]
O58 - SDL:[MD5.0EA73E498F53B96D83DBFCA074AD4CF8] - 20/01/2008 - 23:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mskssrv.sys   [11008]
O58 - SDL:[MD5.52E59B7E992A58E740AA63F57EDBAE8B] - 02/11/2006 - 06:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspclock.sys   [7040]
O58 - SDL:[MD5.49084A75BAE043AE02D5B44D02991BB2] - 02/11/2006 - 06:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspqm.sys   [6656]
O58 - SDL:[MD5.86D632D75D05D5B7C7C043FA3564AE86] - 20/01/2008 - 23:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mstee.sys   [7936]
O58 - SDL:[MD5.1B30103FDE512915A9214B108B6E7A9C] - 20/01/2008 - 23:46:54 ---A- . (...) -- C:\Windows\System32\Drivers\ohci1394.sys   [72192]
O58 - SDL:[MD5.FBF4DB6D53585437E41A113300002A2B] - 16/06/2008 - 03:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\PxHlpa64.sys   [55024]
O58 - SDL:[MD5.7EAE3999B94A8CE60BFBAA83462B89A1] - 22/10/2008 - 21:02:20 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\Drivers\rimssn64.sys   [85504]
O58 - SDL:[MD5.FA6D7CD63AD08A01D9259F58E0C5C09E] - 22/10/2008 - 21:02:11 ---A- . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\System32\Drivers\risdsn64.sys   [76288]
O58 - SDL:[MD5.70F9C476B62DE4F2823E918A6C181ADE] - 18/11/2008 - 21:08:46 ---A- . (...) -- C:\Windows\System32\Drivers\SFEP.sys   [11392]
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/01/1601 - 03:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\sptd.sys   [834544]
O58 - SDL:[MD5.75576CFC649C1A3FAA196DD1FBF23434] - 20/01/2008 - 23:51:03 ---A- . (...) -- C:\Windows\System32\Drivers\stream.sys   [68224]
O58 - SDL:[MD5.7D86275FB640011B372FD566C0EAFA8D] - 16/06/2010 - 13:40:37 ---A- . (...) -- C:\Windows\System32\Drivers\tcpip.sys   [1420176]
O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 20/01/2008 - 23:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys   [284728]
O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 08:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys   [148072]
O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 20/01/2008 - 23:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\System32\Drivers\ulsata2.sys   [174696]
O58 - SDL:[MD5.AA33FC47ED58C34E6E9261E4F850B7EB] - 10/05/2011 - 08:06:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys   [51712]
O58 - SDL:[MD5.BBA210DA84215350A9D377C474CFDE63] - 20/01/2008 - 23:48:42 ---A- . (...) -- C:\Windows\System32\Drivers\USBCAMD2.sys   [32512]
O58 - SDL:[MD5.3B4A8392FF614F71C093922836EFFF23] - 05/02/2008 - 01:55:09 ---A- . (...) -- C:\Windows\System32\Drivers\usbd.sys   [7680]
O58 - SDL:[MD5.FEF8FE5923FEAD2CEE4DFABFCE3393A7] - 02/11/2006 - 06:40:24 ---A- . (...) -- C:\Windows\System32\Drivers\wacompen.sys   [26624]
O58 - SDL:[MD5.8F866DF9A974BFFDCB2001D303BC0695] - 08/05/2013 - 09:52:48 ----- . (.GAS Tecnologia - GbPlugin Device Driver.) -- C:\Windows\SysWOW64\drivers\gbpkm.sys   [49536]
O58 - SDL:[MD5.B7CC2AF3D5604EFDC5F82AF7A5B21FB1] - 04/03/2014 - 16:26:26 ---A- . (.GbPlugin NDIS Device Driver - GbPlugin NDIS Device Driver.) -- C:\Windows\SysWOW64\drivers\gbpndisrd.sys   [31088]
~ Drivers: 18 Legitimates Filtered in 00mn 03s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Lista dos serviços Legacy du registo (064)
O64 - Services: CurCS - 03/01/2014 - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys (BdApiUtil)  .(.Baidu, Inc. - Baidu Antivirus BdApi Driver.) - LEGACY_BDAPIUTIL =>Adware.BDSearch
O64 - Services: CurCS - 17/12/2013 - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys (BdCameraProtect)  .(.Baidu, Inc. - Baidu Antivirus Camera Protector Driver.) - LEGACY_BDCAMERAPROTECT =>Adware.BDSearch
O64 - Services: CurCS - 23/12/2013 - C:\Windows\system32\drivers\Bfilter.sys (Bfilter)  .(.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - LEGACY_BFILTER =>Adware.BDSearch
O64 - Services: CurCS - 17/12/2013 - C:\Windows\system32\drivers\Bfmon.sys (Bfmon)  .(.Baidu, Inc. - Baidu FS Monitor Driver.) - LEGACY_BFMON =>Adware.BDSearch
O64 - Services: CurCS - 10/01/2014 - C:\Windows\system32\drivers\Bprotect.sys (Bprotect) .(...) - LEGACY_BPROTECT
O64 - Services: CurCS - 14/01/2014 - C:\Windows\system32\drivers\BprotectEx.sys (BprotectEx)  .(.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - LEGACY_BPROTECTEX =>Adware.BDSearch
~ Legacy: 116 Legitimates Filtered in 00mn 01s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
~ FASS Keys: 13 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Keys:  Scanned in 00mn 00s



---\\ Lista das exceções do FireWall (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{119C1322-3A3B-44A4-BE1C-BDF18CD804E4}C:\program files (x86)\bywifi\bywifi.exe" |In - Public - P6 - FALSE | .(...) -- C:\program files (x86)\bywifi\bywifi.exe (.not file.) =>Spyware.Bywifi
O87 - FAEL: "UDP Query User{C3402095-4012-4CB0-97A2-0075C25284DE}C:\program files (x86)\bywifi\bywifi.exe" |In - Public - P17 - FALSE | .(...) -- C:\program files (x86)\bywifi\bywifi.exe (.not file.) =>Spyware.Bywifi
O87 - FAEL: "{E9050971-0583-4EBB-AAB5-CA6109BB8844}" |In - Public - P6 - TRUE | .(...) -- C:\Users\Jackeline\AppData\Local\Temp\7zS2470\HPDiagnosticCoreUI.exe (.not file.)
O87 - FAEL: "{4D1DC087-A662-47BF-9D90-DD70625F650F}" |In - Public - P17 - TRUE | .(...) -- C:\Users\Jackeline\AppData\Local\Temp\7zS2470\HPDiagnosticCoreUI.exe (.not file.)
~ Firewall: 204 Legitimates Filtered in 00mn 02s



---\\ Listagem dos códigos dos software (PUC) (090)
O90 - PUC: "B6814A64DD6AC6C4FB45A42220A03C2B" . (.DibCom TV Stick 315 x64.) -- C:\Windows\Installer\{46A4186B-A6DD-4C6C-BF54-4A22020AC3B2}\ARPPRODUCTICON.exe
~ Update Products: 155 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.E947169F01AE0033832F5F67B12A729C] [WIS][27/01/2014] (.AVG - AVG PC TuneUp 2014 (pt-BR).) -- C:\Windows\Installer\22961b.msi   [29184]
[MD5.6BE86DB225CFA727849C0F1355608B65] [WIS][27/01/2014] (.AVG - AVG PC TuneUp 2014.) -- C:\Windows\Installer\22961f.msi   [8458752]
[MD5.86569BE38A9AB3339DEA1855A3EBD887] [WIS][28/06/2012] (.Nokia - Microsoft_VC100_CRT_SP1.) -- C:\Windows\Installer\2644cc8.msi   [29184]
[MD5.6FB1784D08C95546AF5F8718F371B256] [WIS][01/04/2009] (.Broadcom Corp. - WIDCOMM Bluetooth Profile Pack.) -- C:\Windows\Installer\52f02.msi   [4788736]
[MD5.2A9B568A7900FDDD7AA8E5CFDC610935] [WIS][04/04/2010] (.eSupportQFolder - eSupportQFolder.) -- C:\Windows\Installer\5a93a.msi   [121344]
[MD5.B62847FFDB991B6F926E3125242B7771] [WIS][04/04/2010] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\5a95c.msi   [648192]
[MD5.1518F17C3FA3A1E2A5EA04A5ECD056FC] [WIS][04/04/2010] (.CustomerResearchQFolder - CustomerResearchQFolder.) -- C:\Windows\Installer\5a980.msi   [121344]
[MD5.D3441D2E8EB04A9648593AC53106B7FE] [WIS][04/04/2010] (.DocumentViewerQFolder - DocumentViewerQFolder.) -- C:\Windows\Installer\5a98d.msi   [121344]
[MD5.BD1294F73BD30BCDECE7346F922A6415] [WIS][17/01/2011] (.SmartCom - Nokia Internet Modem Setup.) -- C:\Windows\Installer\831dc.msi   [4201472]
[MD5.296D62C967B44C330BA9377E30FEEF9A] [WIS][31/08/2013] (.The Memphis Agency - focus booster.) -- C:\Windows\Installer\f3471a6.msi   [21504]
~ WIS: 155 Legitimates Filtered in 00mn 03s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 21/12/2013 65432 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Auto 24/09/2013 1358944 |  (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
SS - | Auto 22/01/2014 3788816 |  (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
SS - | Auto 16/12/2013 193696 |  (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe
SS - | Demand 25/04/2009 651720 |  (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Auto 25/04/2009 133104 |  (gupdate1c9c5cb9145bbba) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 25/04/2009 133104 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Auto 28/02/2014 2151744 |  (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
SS - | Demand 08/01/2009 114688 |  (PACSPTISVR) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
SS - | Auto 10/07/1658 0 |  (PCFasterSvc_{PCFaster_4.0.0.0}) . (...) - C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe =>Adware.BDSearch
SS - | Demand 16/09/2009 167424 |  (SampleCollector) . (.Intel Corporation.) - C:\Program Files\Sony\VAIO Care\collsvc.exe
SS - | Demand 18/04/2013 737616 |  (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
SS - | Auto 23/10/2013 172192 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 21/01/2009 69632 |  (VAIO Entertainment TV Device Arbitration Service) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
SS - | Demand 16/01/2009 110376 |  (VcmXmlIfHelper) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
SS - | Auto 20/01/2008 27648 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Demand 10/07/1658 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation

SR - | Auto 18/03/2010 113152 |  (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SR - | Auto 08/12/2008 169312 |  (AdobeActiveFileMonitor7.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
SR - | Auto 11/08/2012 55184 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 24/09/2013 348008 |  (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
SR - | Auto 08/01/2014 1923376 |  (BAVSvc) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe =>Adware.BDSearch
SR - | Demand 16/12/2013 247968 |  (BBUpdate) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
SR - | Auto 08/01/2014 459416 |  (BHipsSvc) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe =>Adware.BDSearch
SR - | Auto 24/01/2009 839720 |  (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 20/08/2008 1449984 |  (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SR - | Auto 08/10/2013 452136 |  (GbpSv) . (.GAS Tecnologia.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
SR - | Demand 20/01/2008 27648 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 20/01/2008 27648 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 04/01/2007 112152 |  (IviRegMgr) . (.InterVideo.) - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
SR - | Auto 04/04/2013 418376 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Auto 20/01/2008 27648 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 21/02/2014 576032 |  (PCAppStoreSvc_{PCAppStore_4.0.6.4959}) . (.Baidu Inc..) - C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe =>Adware.BDSearch
SR - | Auto 20/01/2008 27648 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 20/08/2008 826368 |  (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - | Auto 15/10/2013 3921880 |  (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 20/09/2013 1042272 |  (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/09/2013 171416 |  (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - | Auto 20/01/2009 120104 |  (SOHCImp) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
SR - | Auto 20/01/2009 70952 |  (SOHDBSvr) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
SR - | Auto 20/01/2009 390440 |  (SOHDms) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
SR - | Auto 20/01/2009 75048 |  (SOHDs) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
SR - | Auto 20/01/2009 91432 |  (SOHPlMgr) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
SR - | Auto 18/12/2013 2102072 |  (TuneUp.UtilitiesSvc) . (.AVG.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
SR - | Auto 18/09/2008 104960 |  (uCamMonitor) . (.ArcSoft, Inc..) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
SR - | Auto 19/01/2009 203624 |  (VAIO Event Service) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
SR - | Auto 19/12/2008 411496 |  (VAIO Power Management) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
SR - | Auto 14/01/2009 5184872 |  (VCFw) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
SR - | Auto 19/01/2009 394536 |  (VcmIAlzMgr) . (.Sony Corporation.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
SR - | Demand 21/01/2009 313264 |  (Vcsw) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
SR - | Auto 21/01/2009 192512 |  (VzCdbSvc) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
SR - | Auto 20/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 07/01/2009 412672 |  (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\System32\DRIVERS\xaudio64.exe

~ Services:  Scanned in 00mn 04s



---\\ Lista dos emuladores de CD/DVD (MBR Hook)
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/01/1601 - 03:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\sptd.sys   [834544]
~ Emulateurs:  Scanned in 00mn 04s



---\\ Scâner Aditional (088)
Database Version : 13031 - (03/03/2014)
Clés trouvées (Keys found) : 21
Valeurs trouvées (Values found) : 2
Dossiers trouvés  (Folders found) : 5
Fichiers trouvés  (Files found) : 7

[HKLM\SYSTEM\CurrentControlSet\Services\BAVSvc]   =>Adware.BDSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\BHipsSvc]   =>Adware.BDSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\PCAppStoreSvc_{PCAppStore_4.0.6.4959}]   =>Adware.BDSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\PCFasterSvc_{PCFaster_4.0.0.0}]   =>Adware.BDSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Baidu PC Faster 4.0.0.0]   =>Adware.BDSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FindRight]   =>Hijacker.FindrToolbar^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}]   =>PUP.Funmoods
[HKLM\Software\Classes\Installer\Features\710B2EE4C28D21B40B17C51F2BD3A124]   =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\710B2EE4C28D21B40B17C51F2BD3A124]   =>PUP.SweetIM
[HKCU\Software\Bywifi]   =>Spyware.Bywifi
[HKLM\Software\Wow6432Node\Bywifi]   =>Spyware.Bywifi
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632]   =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E]   =>PUP.SweetIM
[HKCU\Software\USyndication]   =>Trojan.USyndication
[HKCU\Software\usyndication.com]   =>Trojan.USyndication
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Baidu Antivirus]   =>Adware.BDSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Baidu PC Faster 3.6.0.35848]   =>Adware.BDSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Baidu PC Faster 4.0.0.0]   =>Adware.BDSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]   =>Adware.BDSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094]   =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536]   =>PUP.SweetIM^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{8dcb7100-df86-4384-8842-8fa844297b3f}   =>Toolbar.Bing^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Baidu PC Faster 4.0.0.0   =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security   =>Adware.BDSearch^
C:\ProgramData\Baidu   =>Adware.BDSearch^
C:\ProgramData\Baidu Security   =>Adware.BDSearch^
C:\Users\Jackeline\AppData\Roaming\Baidu Security   =>Adware.BDSearch^
C:\Users\Jackeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster   =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe   =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BAVSvc.exe   =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe   =>Adware.BDSearch^
C:\Program Files (x86)\Baidu Security\PC App Store\4.0.6.4959\PCAppStoreSvc.exe   =>Adware.BDSearch^
[HKCU\Software\Baidu Security]   =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\Baidu Security]   =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\Baidu_Drp_pos]   =>Adware.BDSearch^
~ Additionnel Scan: 371659 Items scanned in 01mn 14s



---\\ Sumário das deteções encontradas na sua estação
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]  =>Adware.BDSearch
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>Spyware.Bywifi
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>PUP.Fbsearch
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>Hijacker.FindrToolbar
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>PUP.Funmoods
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>PUP.SweetIM
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]   =>Trojan.USyndication
~ MSI: 7 link(s) detected in 01mn 14s



~ 1388 Legitimates filtered by white list
End of the scan (1393 lines in 05mn 25s)(0)

Max, precisa mais alguma coisa??

Vou analisar o seu relatório agora e já te passo o próximo procedimento.

viu...  

 Sugiro que você desinstale o programa Spybot, que já está meio ultrapassado e ainda pode deixar seu PC mais lento.
___________________________________________________________________________________________________

 Acesse o site [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e envie este arquivo destacado em azul abaixo para ser analisado (caso apareça uma mensagem dizendo que ele já foi analisado peça para analisar novamente):

C:\Program Files (x86)\focus booster\focus booster.exe
____________________________________________________________________________________________________

 Copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Abra o Zhpfix > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta juntamente com o link da análise do arquivo no site Virus Total.

para abrir o ZHPfix ele pede senha ja o ZHP diag abre normalmente

Já o que escaneei no virus total deu esse resultado:

PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-05-28 23:38:23
Entry Point 0x00001726
Number of sections 5
PE sections
Name Virtual address Virtual size Raw size Entropy MD5
.text 4096 32002 32256 6.56 c189274985eb57251403e50248a06df7
.rdata 36864 15970 16384 4.90 ac2fdb221c9b22d0e25198d844580d6b
.data 53248 11228 4096 2.47 0d3246a35dc9b9568e0f2a6dd872a3d9
.rsrc 65536 83712 83968 5.71 7929aca0c7db7c4df3626aa20786db68
.reloc 151552 4380 4608 4.06 636da0891b11f6f21a7333b6185d0b3f
PE imports
[+] KERNEL32.dll
[+] SHELL32.dll
[+] SHLWAPI.dll
[+] USER32.dll
[+] msi.dll
Number of PE resources by type
RT_ICON 4
RT_GROUP_ICON 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 5
ENGLISH US 1
ExifTool file metadata
MIMETypeapplication/octet-stream
SubsystemWindows GUI
MachineTypeIntel 386 or later, and compatibles
TimeStamp2010:05:29 00:38:23+01:00
FileTypeWin32 EXE
PETypePE32
CodeSize32256
LinkerVersion9.0
FileAccessDate2014:03:05 02:07:25+01:00
EntryPoint0x1726
InitializedDataSize109056
SubsystemVersion5.0
ImageVersion0.0
OSVersion5.0
FileCreateDate2014:03:05 02:07:25+01:00
UninitializedDataSize0

para abrir o ZHPfix ele pede senha ja o ZHP diag abre normalmente

Ele não tem senha. é só você fazer exatamente como lhe pedi:

Você copia aquele texto em vermelho > depois você vai no menu Iniciar > Todos os programas > ZHP > Zhpfix > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

"Não é possível acessar o recurso de rede

Insira as credenciais do usuário que pode acessar este recurso."

Aparece essas palavras junto com os espaços para colocar usuário e senha, barrando a abertura do programa.

Siga, por gentileza, as dicas do tutorial abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste, por gentileza, o log do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.