Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.
Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14807 usuários registrados
O último membro registrado é Costa24

Os nossos membros postaram um total de 36044 mensagens em 3685 assuntos
Últimos assuntos
» Problema no disco rígido do Windows 11
por Costa24 Hoje à(s) 10:19

Quem está conectado?
15 usuários online :: 0 registrados, 0 invisíveis e 15 visitantes

Nenhum

O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
 
 

Resultados por:
 


Rechercher Pesquisa avançada

março 2024
SegTerQuaQuiSexSábDom
    123
45678910
11121314151617
18192021222324
25262728293031

Calendário Calendário


Não consigo eliminar CE_UMBRELLACERT

3 participantes

Página 1 de 2 1, 2  Seguinte

Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Não consigo eliminar CE_UMBRELLACERT

Mensagem por kipper Dom 08 Jun 2014, 20:19

Já baixei o adwcleaner_3.212, zoek e nada dessa msg desaparecer,tinha parado de vir,mas agora ta como tava antes aparecendo direto,alguém pode me ajudar?desde já agradeço.
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Dom 08 Jun 2014, 20:35

Olá. Poste o relatório do Zoek e do Adwcleaner aqui no seu tópico para podermos analisá-los.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty relatótio do zoek

Mensagem por kipper Seg 09 Jun 2014, 12:35

não tenho mais o do adwcleaner só do zoek prq estava lendo as postagem dos outros membros onde pedia para salvar mas eu já tinha excluído o do adwcleaner.
Zoek.exe v5.0.0.0 Updated 02-June-2014
Tool run by User on 06/06/2014 at 19:00:17,57.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\User\Downloads\zoek.exe [Scan all users]  [Checkboxes used]

==== System Restore Info ======================

06/06/2014 19:01:47 Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-05-15 00:14:12 7BA4307D4C947A0CF6F361A0C3E816CC 291 ----a-w- C:\Windows\shrek2tm.ini
2014-05-14 21:54:24 92866AED2234A769CB6AD181CEF2F5D7 538 ----a-w- C:\Windows\eReg.dat
2014-05-09 17:04:38 E9E3B469FF1F89F5ADAB7E57DA16131C 1234 ----a-w- C:\Windows\disney.ini
====== C:\Users\User\AppData\Local\Temp ====
2014-06-04 23:08:54 557F9B0834A5109F2957E851C7EB5F1A 456280 ----a-w- C:\Users\User\AppData\Local\Temp\_is745A.exe
2014-06-04 23:08:30 FE96F3C0EFD502632CF62331079988B3 17408 ------w- C:\Users\User\AppData\Local\Temp\vorbisfile.dll
2014-06-04 23:08:30 AF192271F39C2EF1BF2DFC57072669C1 49152 ------w- C:\Users\User\AppData\Local\Temp\vorbisfile_d.dll
2014-06-04 23:08:30 98C290BF7A147FE7460075098225F2A7 36864 ------w- C:\Users\User\AppData\Local\Temp\ogg_d.dll
2014-06-04 23:08:30 4C3A68552D8E7B89FD9E2CB08EAFDA7E 1333760 ------w- C:\Users\User\AppData\Local\Temp\Window.dll
2014-06-04 23:08:30 4A5EEA471F6194540515EF3E0F49003F 126976 ------w- C:\Users\User\AppData\Local\Temp\vorbis.dll
2014-06-04 23:08:30 3078DD8771C1284B2EF3FE65CA4F517B 184320 ------w- C:\Users\User\AppData\Local\Temp\vorbis_d.dll
2014-06-04 23:08:29 E1B69A678C6FAB162966CC1A4A1E592E 536576 ------w- C:\Users\User\AppData\Local\Temp\MSVCR70d.dll
2014-06-04 23:08:29 D7E451FAE90281DE2460A02A56020DA7 737280 ------w- C:\Users\User\AppData\Local\Temp\msvcp70d.dll
2014-06-04 23:08:29 D752342F33BA6090D12CBC2C8139BD39 765952 ------w- C:\Users\User\AppData\Local\Temp\msvcp71d.dll
2014-06-04 23:08:29 D04F7AACA2319A3BCDB2C5D5DD6F6026 487424 ------w- C:\Users\User\AppData\Local\Temp\msvcp70.dll
2014-06-04 23:08:29 CA3A59D92F479A17E5CA6A0E13896846 54784 ------w- C:\Users\User\AppData\Local\Temp\msvci70.dll
2014-06-04 23:08:29 C7DF00914DF7FF8038B8A070C3482282 11264 ------w- C:\Users\User\AppData\Local\Temp\ogg.dll
2014-06-04 23:08:29 9972A6ED4F2388DBFA8E0A96F6F3FDF1 344064 ------w- C:\Users\User\AppData\Local\Temp\MSVCR70.dll
2014-06-04 23:08:29 8CBA0FE5D5CB9609DBFE66EDA1B1D275 1032192 ------w- C:\Users\User\AppData\Local\Temp\Core.dll
2014-06-04 23:08:29 886A6C3C185AAEDECD00477F72279B07 323072 ------w- C:\Users\User\AppData\Local\Temp\MSVCRt.dll
2014-06-04 23:08:29 86F1895AE8C5E8B17D99ECE768A70732 348160 ------w- C:\Users\User\AppData\Local\Temp\MSVCR71.dll
2014-06-04 23:08:29 561FA2ABB31DFA8FAB762145F81667C2 499712 ------w- C:\Users\User\AppData\Local\Temp\msvcp71.dll
2014-06-04 23:08:29 40D72771DED1A9B92110A20E65CD15E9 544768 ------w- C:\Users\User\AppData\Local\Temp\MSVCR71d.dll
2014-06-04 23:08:29 2DFF4D8C01F23ACD51350C70CAA3A0AD 237568 ------w- C:\Users\User\AppData\Local\Temp\IFC23.dll
2014-06-04 23:08:29 28DD68B7F695A6876D21E53644B0CCA6 50688 ------w- C:\Users\User\AppData\Local\Temp\msvcirt.dll
2014-06-04 23:08:29 245BD2EA9E44300EDB396EE6B487730D 338944 ------w- C:\Users\User\AppData\Local\Temp\binkw32.dll
2014-06-04 23:08:29 1274179D2DE62821603174FFC41363D2 94208 ------w- C:\Users\User\AppData\Local\Temp\msvci70d.dll
2014-06-04 23:08:29 0500647CAE7A7147E7BC884BF71FA30F 6313984 ------w- C:\Users\User\AppData\Local\Temp\Engine.dll
2014-06-04 23:06:14 FEFEF2F226FD6BE184BC4A3378B02AAF 155648 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\psmachine.dll
2014-06-04 23:06:14 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdateBroker.exe
2014-06-04 23:06:14 E5C4B59D83D7D751381C12672F63705C 220672 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\npGoogleUpdate4.dll
2014-06-04 23:06:14 8D90BB3A36521B50D0E512A781E36871 155648 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\psuser.dll
2014-06-04 23:06:14 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdateOnDemand.exe
2014-06-04 23:06:14 5B497D63B63F6835F39EB70640F22DF7 761856 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\goopdate.dll
2014-06-04 23:06:14 4454919668558607F360B061495E1197 32768 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdateHelper.msi
2014-06-04 23:06:13 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdate.exe
2014-06-04 23:06:13 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleCrashHandler.exe
2014-06-04 23:04:04 1DA17D08CD2EBD94D95160F81BD0E113 18973044 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\185-eav_nt32_ptb.msi
2014-06-04 23:03:50 09BE87381F8A4D322B7AB019B951AEB9 7826216 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\HQVideo-BRInstaller.exe
2014-06-04 23:03:46 46B697B560BF3936DF7C9EA3EF4D12E3 399360 ----a-w- C:\Users\User\AppData\Local\Temp\dgen.exe
2014-06-04 23:03:40 EC8BD809784922BB1ABA8A854CB232AE 4025421 ----a-w- C:\Users\User\AppData\Local\Temp\app_d.exe
2014-06-04 23:03:39 FEB89613542D17A01E7A9512D8EDF9D8 505024 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\HAO123_BR_0406-b82740d7.exe
2014-06-04 23:03:39 8EBB67B1EB3812316CB134ED10AE2867 144384 ----a-w- C:\Users\User\AppData\Local\Temp\crpt.exe
2014-06-04 23:03:39 80A0141AD1D8161977CE046F1138DEA9 262984 ----a-w- C:\Users\User\AppData\Local\Temp\bdgA827.exe
2014-06-04 23:03:21 C303E26911CA12DE2E2E2FA90DE539CB 96528 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\CEInstaller-b07e5de2.exe
2014-06-04 23:03:18 2E100C53BD2DF1BC7C773BDB78DAE501 4154285 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\pcdataapp_0206-e5ffc2af.exe
2014-06-04 23:03:05 287691EC2782AFA230C131867A3FC0C5 378099 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\BaixakiHPSE_2904v2-a697cfec.exe
2014-05-30 16:06:00 B0F13753C607BCF8AF59C14DF5A431AA 4025717 ----a-w- C:\Users\User\AppData\Local\Temp\app_e.exe
2014-05-28 02:41:26 90BE1173B2DA47228277F6DB125CE065 557056 ------w- C:\Users\User\AppData\Local\Temp\setup.exe
2014-05-27 19:58:18 A06ED9FCD8F114E270AA64C46063D8C3 552214 ----a-r- C:\Users\User\AppData\Local\Temp\{2235C04A-5985-40CA-9C5C-BF20D7CAEE56}\ISSetup.dll
2014-05-26 21:26:25 F8B11084B042C5109AB7C617492EFB2F 5609 ----a-w- C:\Users\User\AppData\Local\Temp\PCDataApp.exe
====== Java Cache =====
2014-06-06 14:14:55 952332BF3186F3B54D157012AAFC1E44 18786 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2fb889a6-45f9c08d
2014-06-05 14:29:09 5E9E0394FD8212A83D3F545A47DE3E73 18786 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2fb889a6-61afc556
2014-05-09 15:08:48 5958838ADBA28893D63792F8D5F26B96 36023 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\5d3281f0-341cef1a
2014-06-05 01:46:02 F2214D5F0BD7D67D7CA1A2A29AB6C944 500 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\32a4e8f8-4fc5cd95
2014-06-06 14:14:56 0F66DA8AFB0F3936C7FF94B14DEDC5F3 170617 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\13b501ba-1d997ba9
2014-06-05 14:29:10 DAD94725581A4EB8D376471B47EBB591 170477 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\13b501ba-6ca5eead
2014-05-09 15:09:11 B41C9AC43FB7E676095934C613BCD722 112997 ----a-w- C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\5606d648-1601669d
====== C:\Windows\SysWOW64 =====
2014-06-06 00:44:20 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\Windows\SysWOW64\sqlite3.dll
2014-06-05 01:38:15 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\SysWOW64\s.o
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2014-05-21 01:03:45 7942B7AC3FF598F8A1736D51ADAF04E8 376688 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2014-05-21 01:03:44 41C67E4205C606A103DEC8651D0B6FE6 288088 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-05-21 01:03:44 40AF23633D197905F03AB5628C558C51 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-05-21 01:03:44 314C17917AC8523EC77A710215012A65 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2014-05-09 23:19:41 33F90B202E9DD9B7D489EB59310FDC34 283064 ----a-w- C:\Windows\Sysnative\drivers\dtsoftbus01.sys
2014-05-09 22:19:10 74D30C2EF66C2EB19F17ED5423AA8038 386680 ----a-w- C:\Windows\Sysnative\drivers\sptd.sys
====== C:\Windows\Tasks ======
2014-05-27 19:54:22 AC3534087B2D136799583B74DDFB06A5 3108 ----a-w- C:\Windows\Sysnative\Tasks\{ED0DAA02-AA71-4320-9B33-F218931071EE}
2014-05-13 19:27:45 79EF235F72E00101223ADC2AD130F7A4 3004 ----a-w- C:\Windows\Sysnative\Tasks\{D5B18C28-40B9-4F9D-B759-6CADF0A43225}
2014-05-13 19:27:23 DF91A004C3BB87A95A61DF9EFDFD1CAF 3204 ----a-w- C:\Windows\Sysnative\Tasks\{8DD405A6-E38E-4E13-A8D5-530B76CDED45}
2014-05-13 19:00:08 0C13236260F4350C3E0F6A3EFE2A28D7 3140 ----a-w- C:\Windows\Sysnative\Tasks\{25820BAC-BB2E-4F9C-AF1A-11A7B6909FDF}
2014-05-13 18:55:21 EAEAA5F43EA11139808D941C19F27552 3094 ----a-w- C:\Windows\Sysnative\Tasks\{EADD96C5-4BC8-4519-9A9D-0A6325330156}
2014-05-09 21:04:11 BC21EC1FDF0BD00CFF260DBAC156C510 3498 ----a-w- C:\Windows\Sysnative\Tasks\AdobeAAMUpdater-1.0-User-PC-User
2014-05-09 20:59:59 FD64F1991E321D81C1266243D1C3BCEE 3174 ----a-w- C:\Windows\Sysnative\Tasks\{323D5C00-E95B-4FA1-ADA4-0C9047D5C0E3}
2014-05-09 17:06:52 2A7779A886852B03FA1FF16827967F40 3138 ----a-w- C:\Windows\Sysnative\Tasks\{D19B375C-3F48-4EDC-8258-8ABD976ECD72}
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-06-04 23:06:02 -------- d-----w- C:\PROGRA~2\HQPro-1
2014-05-27 19:44:17 -------- d-----w- C:\PROGRA~2\Ubisoft
2014-05-26 20:40:55 -------- d-----w- C:\PROGRA~2\CGN
2014-05-21 23:05:27 -------- d-----w- C:\PROGRA~2\RkSoft
2014-05-20 21:04:33 -------- d-----w- C:\PROGRA~2\Black Bean
2014-05-19 22:56:18 -------- d-----w- C:\PROGRA~2\Show do Cristão
2014-05-15 00:13:25 -------- d-----w- C:\PROGRA~2\Activision
2014-05-13 19:01:01 -------- d-----w- C:\PROGRA~2\Rosso Rabbit in Trouble
2014-05-11 19:42:12 -------- d-----w- C:\PROGRA~2\Aspyr
2014-05-09 23:32:44 -------- d-----w- C:\PROGRA~2\Turtle Games
2014-05-09 22:31:53 -------- d-----w- C:\PROGRA~2\Aquaria
2014-05-09 22:25:39 -------- d-----w- C:\PROGRA~2\DAEMON Tools Lite
2014-05-09 21:00:29 -------- d-----w- C:\PROGRA~2\Disney Interactive
======= C: =====
====== C:\Users\User\AppData\Roaming ======
2014-06-04 23:03:38 -------- d-----w- C:\Users\User\AppData\Roaming\ContentExplorer
2014-05-20 20:28:43 -------- d-----w- C:\Users\User\AppData\Local\CrashDumps
2014-05-16 17:47:55 -------- d-----w- C:\Users\User\AppData\Locallow\Mimimi Productions
2014-05-13 20:45:06 BB6EF15788509943603F9C7BC9166C80 42 ----a-w- C:\Users\User\AppData\Roaming\WB.CFG
2014-05-13 20:18:28 -------- d-----w- C:\Users\User\AppData\Roaming\Leadertech
2014-05-10 00:41:24 -------- d-----w- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-05-09 23:32:52 -------- d-----w- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Turtle Games
2014-05-09 23:32:00 -------- d-----w- C:\Users\User\AppData\Roaming\Crazy.Frog.Racer
2014-05-09 22:32:26 -------- d-----w- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aquaria
2014-05-09 22:30:37 -------- d-s---w- C:\Windows\serviceprofiles\networkservice\AppData\Locallow\Microsoft
2014-05-09 22:25:40 -------- d-----w- C:\Users\User\AppData\Roaming\DAEMON Tools Lite
====== C:\Users\User ======
2014-06-06 00:38:26 42F24559E8C472F6FF745BB7C5465FB2 1333465 ----a-w- C:\Users\User\Desktop\adwcleaner_3.212.exe
2014-06-04 23:03:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil
2014-05-21 23:05:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblia Eletrônica
2014-05-20 21:04:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean
2014-05-19 22:56:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Show do Cristão
2014-05-19 21:49:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Gaming Network
2014-05-15 00:14:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
2014-05-13 19:01:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosso Rabbit in Trouble
2014-05-11 19:42:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aspyr
2014-05-09 23:32:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Turtle Games
2014-05-09 22:32:26 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aquaria
2014-05-09 22:25:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-05-09 21:28:41 -------- d-----w- C:\Users\TODOSO~1\DAEMON Tools Lite
2014-05-09 21:28:41 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2014-05-09 21:00:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disney Interactive
2014-05-09 17:38:18 -------- d-----w- C:\Users\TODOSO~1\regid.1986-12.com.adobe
2014-05-09 17:38:18 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe

====== C: exe-files ==
2014-06-06 01:12:01 9FAE023E2BFFD2C997234F5C1ED01BC9 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2123034537-1514316849-1306321605-1000\$I7UMEAW.exe
2014-06-06 00:38:26 42F24559E8C472F6FF745BB7C5465FB2 1333465 ----a-w- C:\Users\User\Desktop\adwcleaner_3.212.exe
2014-06-05 01:38:14 8EBB67B1EB3812316CB134ED10AE2867 144384 ----a-w- C:\Windows\Temp\crpt.exe
2014-06-05 01:38:14 46B697B560BF3936DF7C9EA3EF4D12E3 399360 ----a-w- C:\Windows\Temp\dgen.exe
2014-06-04 23:08:54 557F9B0834A5109F2957E851C7EB5F1A 456280 ----a-w- C:\Users\User\AppData\Local\Temp\_is745A.exe
2014-06-04 23:08:06 4FA7DF7398A9EB78579CDC4AA394A67E 458088 ----a-w- C:\Program Files (x86)\HQPro-1\a4830365-2b6a-48b5-91cc-0fa59bbd7544-5.exe
2014-06-04 23:06:14 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdateBroker.exe
2014-06-04 23:06:14 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdateOnDemand.exe
2014-06-04 23:06:13 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleUpdate.exe
2014-06-04 23:06:13 727727A096F6A6A1B52272E26F521B1D 84328 ----a-w- C:\Program Files (x86)\HQPro-1\Uninstall.exe
2014-06-04 23:06:13 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Users\User\AppData\Local\Temp\comh.308383\GoogleCrashHandler.exe
2014-06-04 23:03:50 09BE87381F8A4D322B7AB019B951AEB9 7826216 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\HQVideo-BRInstaller.exe
2014-06-04 23:03:46 46B697B560BF3936DF7C9EA3EF4D12E3 399360 ----a-w- C:\Users\User\AppData\Local\Temp\dgen.exe
2014-06-04 23:03:40 EC8BD809784922BB1ABA8A854CB232AE 4025421 ----a-w- C:\Users\User\AppData\Local\Temp\app_d.exe
2014-06-04 23:03:39 FEB89613542D17A01E7A9512D8EDF9D8 505024 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\HAO123_BR_0406-b82740d7.exe
2014-06-04 23:03:39 8EBB67B1EB3812316CB134ED10AE2867 144384 ----a-w- C:\Users\User\AppData\Local\Temp\crpt.exe
2014-06-04 23:03:39 80A0141AD1D8161977CE046F1138DEA9 262984 ----a-w- C:\Users\User\AppData\Local\Temp\bdgA827.exe
2014-06-04 23:03:21 C303E26911CA12DE2E2E2FA90DE539CB 96528 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\CEInstaller-b07e5de2.exe
2014-06-04 23:03:18 2E100C53BD2DF1BC7C773BDB78DAE501 4154285 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\pcdataapp_0206-e5ffc2af.exe
2014-06-04 23:03:05 287691EC2782AFA230C131867A3FC0C5 378099 ----a-w- C:\Users\User\AppData\Local\Temp\n7191\BaixakiHPSE_2904v2-a697cfec.exe
2014-06-04 18:29:52 ADD82B8C624CA29E4D999A28B356712F 1063664 ----a-w- C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe
2014-06-04 18:29:52 1BFBDEF406B33F8AB6B4A05308F85DD4 133360 ----a-w- C:\Users\User\AppData\Roaming\ContentExplorer\uninstall.exe
=== C: other files ==
2014-06-02 00:06:58 7F1FCA804A7EBAF094A4F261DFFE45C7 781111 ----a-w- C:\Users\User\Downloads\Fiat Palio 4 porta ,aceito troca por moto ou carro.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2123034537-1514316849-1306321605-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"uTorrent"="C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Crazy.Frog.Racer"="C:\Users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe"
"ContentExplorer"="C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"PowerDVD12DMREngine"="C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe"
"PowerDVD12Agent"="C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"uTorrent"="C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Crazy.Frog.Racer"="C:\Users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe"
"ContentExplorer"="C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"

==== Startup Folders ======================


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [15/05/2014 15:31]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [17/04/2014 15:22]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [17/04/2014 15:22]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-User-PC-User" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 1050 J410 series" ["C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{6DF43704-786C-4865-866E-97611BE0333B}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{1C01D39C-FF48-4DC8-BC31-0AD1DDAE6804}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{D5B18C28-40B9-4F9D-B759-6CADF0A43225}" [C:\Program Files (x86)\Rosso Rabbit in Trouble\RossoRabbitInTrouble.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
"C:\Windows\SysNative\tasks\SystemSockets\SystemSockets" ["C:\Program Files (x86)\HomeTab\WBrowserDirect.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"quiknowledge@quiknowledge.com"="C:\Program Files (x86)\Mozilla Firefox\extensions\quiknowledge@quiknowledge.com" []

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]
jlceijfdfeghdhmmbhbcffanmcggoojf - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]

NewTab Connect - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlceijfdfeghdhmmbhbcffanmcggoojf
Google Wallet - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Freeven Pro 1.4 - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfjkhpoplhjgghojojfaceimcojjafb

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on 06/06/2014 at 19:03:21,39 ======================
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Seg 09 Jun 2014, 13:13

Desative temporariamente seu antivírus para evitar conflitos.

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Selecione e copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek:

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) resultado zoek

Mensagem por kipper Ter 10 Jun 2014, 21:59

Zoek.exe v5.0.0.0 Updated 02-June-2014
Tool run by User on 10/06/2014 at 21:41:06,12.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\User\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-06-06-220321.log 22916 bytes
C:\zoek-results2014-06-06-220755.log 26754 bytes

==== System Restore Info ======================

10/06/2014 21:41:52 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1       localhost
::1             localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2123034537-1514316849-1306321605-1000\Software\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B} deleted successfully
HKEY_USERS\S-1-5-21-2123034537-1514316849-1306321605-1000\Software\Microsoft\Internet Explorer\SearchScopes\{86c83f9e-48a4-4cd2-a763-64fea5df35f7} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\prefs.js:
user_pref("browser.startup.homepage", "[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
user_pref("browser.newtab.url", "about:home");
user_pref("browser.search.useDBForOrder", false);

Added to C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\Users\User\.android deleted
C:\PROGRA~2\Plus-HD-9.5v4 deleted
C:\PROGRA~3\FileSplitUpLoad.dll deleted
C:\Users\User\AppData\Local\cache deleted
C:\windows\SysNative\Tasks\SystemSockets deleted
C:\windows\SysNative\Tasks\Browser Updater deleted
C:\windows\SysNative\tasks\ProtectedSearch deleted
C:\Windows\Launcher.exe deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"quiknowledge@quiknowledge.com"="C:\Program Files (x86)\Mozilla Firefox\extensions\quiknowledge@quiknowledge.com" []

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]
jlceijfdfeghdhmmbhbcffanmcggoojf - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]

NewTab Connect - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlceijfdfeghdhmmbhbcffanmcggoojf
Google Wallet - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Freeven Pro 1.4 - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfjkhpoplhjgghojojfaceimcojjafb

==== Chrome Fix ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlceijfdfeghdhmmbhbcffanmcggoojf deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jlceijfdfeghdhmmbhbcffanmcggoojf_0.localstorage deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jlceijfdfeghdhmmbhbcffanmcggoojf_0.localstorage-journal deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfjkhpoplhjgghojojfaceimcojjafb deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_okfjkhpoplhjgghojojfaceimcojjafb_0.localstorage deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_okfjkhpoplhjgghojojfaceimcojjafb_0.localstorage-journal deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_okfjkhpoplhjgghojojfaceimcojjafb_0 deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\okfjkhpoplhjgghojojfaceimcojjafb deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://br.hao123.com/?tn=brosoft_pay_hp_03_hao123_br"
"Search Page"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Bar"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Page"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Bar"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Page"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://www.google.com"
"Default"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://www.google.com"
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=5.7&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
@="http://search.certified-toolbar.com?si=77324&st=bs&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://www.google.com"
"Default"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Bar"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Page"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Bar"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
"Search Page"="http://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q="
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Search Page"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2123034537-1514316849-1306321605-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{91932eaa-ced3-42eb-a64e-a981b8b52330} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\quiknowledge@quiknowledge.com deleted successfully

==== shortcuts on Users Desktops ======================

C:\Users\User\Desktop\Adobe Photoshop CS5.lnk - C:\Program Files (x86)\Adobe\Adobe Photoshop CS5\Photoshop.exe
C:\Users\User\Desktop\Biblia Eletrônica.lnk -  
C:\Users\User\Desktop\CorelDRAW X6.lnk - c:\Windows\Installer\{27AE72A4-B217-4CDC-B82B-3311E9D7460E}\NewShortcut1_41AAC0AC880545E6A1C81230F4159C30.exe
C:\Users\User\Desktop\Format Factory.lnk - C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
C:\Users\User\Desktop\MinhaBiblia - Atalho.lnk - C:\Program Files (x86)\Friendship\MinhaBiblia\MinhaBiblia.exe
C:\Users\User\Desktop\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
C:\Users\User\Desktop\Show do Cristão.lnk -  

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
C:\Users\Public\Desktop\CyberLink PowerDVD 12.lnk - C:\Program Files (x86)\CyberLink\PowerDVD12\PDVDLaunchPolicy.exe
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\HP Deskjet 1050 J410 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 1050 J410 series\Bin\HP Deskjet 1050 J410 series.exe
C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe

==== shortcuts in Users Start Menu ======================

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory\FormatFactory.lnk - C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory\Help.lnk - C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe /help
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory\Uninstall.lnk - C:\Program Files (x86)\FreeTime\FormatFactory\uninst.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Global Operations™.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Shrek 2 Team Action™.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe -hunter
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revo Uninstaller.url
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Ferramenta de Verificação de Mídia do PMB.lnk -  

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1046-7B44-AB0000000001}\SC_Reader.ico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Shrek 2 Team Action\Customer Support.lnk - C:\Program Files (x86)\Activision\Shrek 2 Team Action\Docs\Customer_support.htm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Shrek 2 Team Action\Readme.lnk - C:\Program Files (x86)\Activision\Shrek 2 Team Action\Docs\Readme.htm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Shrek 2 Team Action\Shrek 2 Team Action Manual  (Adobe(R) Acrobat(R) Reader(R) required).lnk - C:\Program Files (x86)\Activision\Shrek 2 Team Action\Docs\Manual\Shrek2TeamAction.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Shrek 2 Team Action\Shrek 2 Team Action.lnk - C:\Program Files (x86)\Activision\Shrek 2 Team Action\Launcher.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Shrek 2 Team Action\Uninstall Shrek 2 Team Action.lnk - C:\Program Files (x86)\Common Files\InstallShield\Driver\9\Intel 32\IDriver.exe /M{0A387537-CCAA-4E41-81D6-B3BDF349BB7F}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Shrek 2 Team Action\Visit Activision Website.lnk - C:\Program Files (x86)\Activision\Shrek 2 Team Action\Activision.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblia Eletrônica\Ajuda.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblia Eletrônica\Biblia Eletrônica.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean\Super-Bikes Riding Challenge\Super-Bikes Riding Challenge.lnk - C:\Program Files (x86)\Black Bean\Super-Bikes Riding Challenge\Starter.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean\Super-Bikes Riding Challenge\Uninstall Super-Bikes Riding Challenge.lnk - C:\Windows\system32\RunDll32.exe C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{190F801F-A2D2-40CF-85A3-8FEF893D1A29}\Setup.exe" -l0x9
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Gaming Network\Newman Haas Racing.lnk - C:\Program Files (x86)\CGN\Newman Haas Racing\NewHaas.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Gaming Network\Uninstall\Remove Newman Haas Racing.lnk - C:\Program Files (x86)\CGN\Newman Haas Racing\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil\Hao123.lnk - C:\Users\User\AppData\Roaming\Baidu\hao123-br\hao123.1.0.0.1111.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosso Rabbit in Trouble\Rosso Rabbit in Trouble.lnk - C:\Program Files (x86)\Rosso Rabbit in Trouble\RossoRabbitInTrouble.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosso Rabbit in Trouble\Óäàëèòü Rosso Rabbit in Trouble.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Show do Cristão\Show do Cristão on the Web.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Show do Cristão\Show do Cristão.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Show do Cristão\Uninstall Show do Cristão.lnk -  

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\DAEMON Tools Lite.lnk - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Show do Cristão.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Super-Bikes Riding Challenge.lnk - C:\Program Files (x86)\Black Bean\Super-Bikes Riding Challenge\Starter.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\µTorrent.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="http=127.0.0.1:53101;https=127.0.0.1:53101"
"ProxyOverride"="<-loopback>"
"ProxyEnable"=dword:00000001

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jlceijfdfeghdhmmbhbcffanmcggoojf deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-9.5v4 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{18ab78ae-47ce-41a8-8aa3-a7689dafea76}_is1 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=398 folders=65 8020392 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\User\AppData\Local\Temp will be emptied at reboot
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\User\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on 10/06/2014 at 21:52:49,39 ======================
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Ter 10 Jun 2014, 22:24

Se você tiver executado o AdwCleaner, poste o log (relatório) do Adwcleaner que está em C:\AdwCleaner\AdwCleaner[S0].txt

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) AdwCleaner v3.212 - Relatório criado 05/06/2014

Mensagem por kipper Qua 11 Jun 2014, 14:11

#  Laughing  Embarassed  às 21:53:45
# Atualizado 05/06/2014 por Xplode
# Sistema Operacional : Windows 7 Ultimate Service Pack 1 (64 bits)
# Usuário : User - USER-PC
# Executando de : C:\Users\User\Downloads\adwcleaner_3.212.exe
# Opção : Limpar

***** [ Serviços ] *****

[#] Serviço Deletada : 70e6ca8c
[#] Serviço Deletada : buuoujqmrk64
[#] Serviço Deletada : globalUpdate
[#] Serviço Deletada : globalUpdatem
[#] Serviço Deletada : IePluginService
[#] Serviço Deletada : qknfd
[#] Serviço Deletada : Wpm

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\ProgramData\baidu
Pasta Deletada : C:\ProgramData\IePluginService
Pasta Deletada : C:\ProgramData\WPM
Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiDefMedia
Pasta Deletada : C:\Program Files (x86)\BrowseMark
Pasta Deletada : C:\Program Files (x86)\globalUpdate
Pasta Deletada : C:\Program Files (x86)\HiDefMedia
Pasta Deletada : C:\Program Files (x86)\HomeTab
Pasta Deletada : C:\Program Files (x86)\MediaPlayerplus
Pasta Deletada : C:\Program Files (x86)\Optimizer Pro
Pasta Deletada : C:\Program Files (x86)\SupTab
Pasta Deletada : C:\Program Files (x86)\Uninstaller
Pasta Deletada : C:\Program Files (x86)\fst_br_102
Pasta Deletada : C:\Program Files\003
Pasta Deletada : C:\Program Files\HomeTab
Pasta Deletada : C:\Users\User\AppData\Local\Freesofttoday
Pasta Deletada : C:\Users\User\AppData\Local\globalUpdate
Pasta Deletada : C:\Users\User\AppData\Local\lollipop
Pasta Deletada : C:\Users\User\AppData\Local\LPT
Pasta Deletada : C:\Users\User\AppData\Local\Mobogenie
Pasta Deletada : C:\Users\User\AppData\Local\Smartbar
Pasta Deletada : C:\Users\User\AppData\Local\Tuguu_SL
Pasta Deletada : C:\Users\User\AppData\Local\fst_br_102
Pasta Deletada : C:\Users\User\AppData\Local\Temp\AirInstaller
Pasta Deletada : C:\Users\User\AppData\Local\Temp\BrowseMark
Pasta Deletada : C:\Users\User\AppData\Local\Temp\Smartbar
Pasta Deletada : C:\Users\User\AppData\LocalLow\HomeTab
Pasta Deletada : C:\Users\User\AppData\LocalLow\SimplyTech
Pasta Deletada : C:\Users\User\AppData\LocalLow\Smartbar
Pasta Deletada : C:\Users\User\AppData\Roaming\Activeris
Pasta Deletada : C:\Users\User\AppData\Roaming\baidu
Pasta Deletada : C:\Users\User\AppData\Roaming\SimilarSites
Pasta Deletada : C:\Users\User\AppData\Roaming\SimplyTech
Pasta Deletada : C:\Users\User\AppData\Roaming\SupTab
Pasta Deletada : C:\Users\User\AppData\Roaming\Systweak
Pasta Deletada : C:\Users\User\AppData\Roaming\VOPackage
Pasta Deletada : C:\Users\User\AppData\Roaming\webssearches
Pasta Deletada : C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
Pasta Deletada : C:\Users\User\Documents\Mobogenie
Pasta Deletada : C:\Users\User\Documents\Optimizer Pro
Pasta Deletada : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\deghekbbihbapplmbffglehkdhkeibbm
Pasta Deletada : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd
Pasta Deletada : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip
Arquivo Deletada : C:\END
Arquivo Deletada : C:\Windows\System32\roboot64.exe
Arquivo Deletada : C:\Users\User\daemonprocess.txt
Arquivo Deletada : C:\Users\User\AppData\Local\Temp\Uninstall.exe
Arquivo Deletada : C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lollipop.lnk
Arquivo Deletada : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\searchplugins\Web Search.xml
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Web Search.xml
Arquivo Deletada : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\user.js
Arquivo Deletada : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Arquivo Deletada : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Arquivo Deletada : C:\Windows\System32\Tasks\Browser Updater
Arquivo Deletada : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
Arquivo Deletada : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
Arquivo Deletada : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
Arquivo Deletada : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
Arquivo Deletada : C:\Windows\System32\Tasks\ProtectedSearch
Arquivo Deletada : C:\Windows\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-1.job
Arquivo Deletada : C:\Windows\System32\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-1
Arquivo Deletada : C:\Windows\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-2.job
Arquivo Deletada : C:\Windows\System32\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-2
Arquivo Deletada : C:\Windows\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-3.job
Arquivo Deletada : C:\Windows\System32\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-3
Arquivo Deletada : C:\Windows\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-4.job
Arquivo Deletada : C:\Windows\System32\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-4
Arquivo Deletada : C:\Windows\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-5.job
Arquivo Deletada : C:\Windows\System32\Tasks\0a5a8eca-db08-4f00-b404-d2bc2171952b-5
Arquivo Deletada : C:\Windows\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-1.job
Arquivo Deletada : C:\Windows\System32\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-1
Arquivo Deletada : C:\Windows\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-2.job
Arquivo Deletada : C:\Windows\System32\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-2
Arquivo Deletada : C:\Windows\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-3.job
Arquivo Deletada : C:\Windows\System32\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-3
Arquivo Deletada : C:\Windows\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-4.job
Arquivo Deletada : C:\Windows\System32\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-4
Arquivo Deletada : C:\Windows\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-5.job
Arquivo Deletada : C:\Windows\System32\Tasks\3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-5
Arquivo Deletada : C:\Windows\Tasks\414b386e-3a42-4bfc-803f-586238088491-1.job
Arquivo Deletada : C:\Windows\System32\Tasks\414b386e-3a42-4bfc-803f-586238088491-1
Arquivo Deletada : C:\Windows\Tasks\414b386e-3a42-4bfc-803f-586238088491-2.job
Arquivo Deletada : C:\Windows\System32\Tasks\414b386e-3a42-4bfc-803f-586238088491-2
Arquivo Deletada : C:\Windows\Tasks\414b386e-3a42-4bfc-803f-586238088491-3.job
Arquivo Deletada : C:\Windows\System32\Tasks\414b386e-3a42-4bfc-803f-586238088491-3
Arquivo Deletada : C:\Windows\Tasks\414b386e-3a42-4bfc-803f-586238088491-4.job
Arquivo Deletada : C:\Windows\System32\Tasks\414b386e-3a42-4bfc-803f-586238088491-4
Arquivo Deletada : C:\Windows\Tasks\414b386e-3a42-4bfc-803f-586238088491-5.job
Arquivo Deletada : C:\Windows\System32\Tasks\414b386e-3a42-4bfc-803f-586238088491-5
Arquivo Deletada : C:\Windows\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-3.job
Arquivo Deletada : C:\Windows\System32\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-3
Arquivo Deletada : C:\Windows\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-5.job
Arquivo Deletada : C:\Windows\System32\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-5
Arquivo Deletada : C:\Windows\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-6.job
Arquivo Deletada : C:\Windows\System32\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-6
Arquivo Deletada : C:\Windows\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-7.job
Arquivo Deletada : C:\Windows\System32\Tasks\a4830365-2b6a-48b5-91cc-0fa59bbd7544-7

***** [ Atalhos ] *****


***** [ Registro ] *****

Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_start@gmail.com]
Chave Deletedo : HKCU\Software\Classes\Applications\lollipop.exe
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\HomeTab.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.bho
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.smartbardisplaystate
Chave Deletedo : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Chave Deletedo : HKLM\SOFTWARE\Classes\speedupmypc
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.Band
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.Band.1
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.NotificationSource
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.NotificationSource.1
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl.1
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo
Chave Deletedo : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo.1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\ActiverisAntiMalware_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\ActiverisAntiMalware_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\HomeTab_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\HomeTab_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-9_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-9_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SpeeDial_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SpeeDial_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\speedupmypc_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\speedupmypc_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SupTab_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SupTab_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\wpm_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\wpm_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0053166.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0053166.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0053166.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0053166.Sandbox.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054246.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054246.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054246.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054246.Sandbox.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054256.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054256.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054256.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0054256.Sandbox.1
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511311166}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511421146}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511421156}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522312266}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522422246}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522422256}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555315566}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555425546}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555425556}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566316666}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566426646}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566426656}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440544314466}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440544424446}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440544424456}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511311166}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511421146}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511421156}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511311166}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511421146}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511421156}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522312266}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522422246}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522422256}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555315566}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555425546}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555425556}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566316666}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566426646}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566426656}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311166}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511421146}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511421156}
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Chave Deletedo : HKCU\Software\BrowseMark
Chave Deletedo : HKCU\Software\FreeSoftToday
Chave Deletedo : HKCU\Software\HomeTab
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKCU\Software\installedbrowserextensions
Chave Deletedo : HKCU\Software\lollipop
Chave Deletedo : HKCU\Software\simplytech
Chave Deletedo : HKCU\Software\SmartBar
Chave Deletedo : HKCU\Software\smartbarbackup
Chave Deletedo : HKCU\Software\smartbarlog
Chave Deletedo : HKCU\Software\systweak
Chave Deletedo : HKCU\Software\Tutorials
Chave Deletedo : HKCU\Software\TutoTag
Chave Deletedo : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Deletedo : HKCU\Software\AppDataLow\Software\Crossrider
Chave Deletedo : HKCU\Software\AppDataLow\Software\MediaPlayerplus
Chave Deletedo : HKCU\Software\AppDataLow\Software\simplytech
Chave Deletedo : HKCU\Software\AppDataLow\Software\Supra Savings
Chave Deletedo : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Deletedo : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Chave Deletedo : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Chave Deletedo : HKLM\Software\BrowseMark
Chave Deletedo : HKLM\Software\free_soft_to_day
Chave Deletedo : HKLM\Software\installedbrowserextensions
Chave Deletedo : HKLM\Software\MediaPlayerplus
Chave Deletedo : HKLM\Software\SupTab
Chave Deletedo : HKLM\Software\supWPM
Chave Deletedo : HKLM\Software\Tutorials
Chave Deletedo : HKLM\Software\Uniblue
Chave Deletedo : HKLM\Software\webssearchesSoftware
Chave Deletedo : HKLM\Software\Wpm
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DMUninstaller
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MediaPlayerplus
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wpm
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\fst_br_102_is1
Chave Deletedo : [x64] HKLM\SOFTWARE\installedbrowserextensions
Chave Deletedo : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Chave Deletedo : [x64] HKLM\SOFTWARE\suprasavings
Dados Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\optimi~1\optpro~2.dll
Dados Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\OPTIMI~1\OPTPRO~3.DLL

***** [ Navegadores ] *****

-\\ Internet Explorer v9.0.8112.16496

Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl []
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl []
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v29.0.1 (pt-BR)

[ Arquivo : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\prefs.js ]

Linha deletada : user_pref("browser.search.defaultengine", "Web Search");
Linha deletada : user_pref("browser.search.order.1", "Web Search");
Linha deletada : user_pref("keyword.URL", "hxxp://search.certified-toolbar.com?si=77324&tid=18194&ver=6.0&ts=1397703600000.000008&tguid=77324-18194-1397766122309-49876-a1234&st=chrome&q=");

-\\ Google Chrome v35.0.1916.114

[ Arquivo : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deletedo [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deletedo [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deletedo [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deletedo [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deletedo [Extension] : deghekbbihbapplmbffglehkdhkeibbm
Deletedo [Extension] : majjphhgppkndjjkmhhnbgafooenebhd
Deletedo [Extension] : olnkgiapbjhdboldbhkagdodklkphaip

*************************

AdwCleaner[R0].txt - [34789 octets] - [05/06/2014 21:42:42]
AdwCleaner[S0].txt - [27232 octets] - [05/06/2014 21:53:45]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [27293 octets] ##########
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Qua 11 Jun 2014, 14:55

Baixe o programa Junkware Removal Tool no link abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) relatório Junkware Removal Too

Mensagem por kipper Qua 11 Jun 2014, 19:09

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x64
Ran by User on 11/06/2014 at 18:46:14,67
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\baidu
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\baidu
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASMANCS



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\sitefinder"



~~~ FireFox

Emptied folder: C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\02dwc90y.default-1399424852910\minidumps [33 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11/06/2014 at 18:51:01,97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Qua 11 Jun 2014, 19:15

zoek - Não consigo eliminar CE_UMBRELLACERT 772309 Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] > < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )

Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPDiag para baixá-lo, tal como mostra a imagem abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) A msg do unbrella não apareceu mais.

Mensagem por kipper Seg 16 Jun 2014, 15:00

Agora depois de eu fazer tudo isso que vc me mandou fazer,aparece uma msg de " Esta conexão não é confiável ",e não consigo entrar no face pelo firefox,pelo chrome blz.!
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Seg 16 Jun 2014, 15:37

Ainda há adwares no seu PC. Execute o ZHPDiag como lhe passei acima e depois disto poste o relatório dele aqui em seu tópico para podermos analisá-lo.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por kipper Seg 16 Jun 2014, 21:33

 Neutral Tá pedindo a nova versão,assim q conseguir te mando o relatório. Rolling Eyes 
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Seg 16 Jun 2014, 21:35

Desinstale a versão antiga que você tem e baixe a nova versão no link que te passei acima e depois de executar a nova versão poste o relatório dela.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por kipper Ter 17 Jun 2014, 14:16

baixei a versão do dia 16/06/14 neste site" [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] " só q na hora de instalar aparece esta msg " the setup files corrupted.Please obtain a new copy of the program "
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Ter 17 Jun 2014, 15:01

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e salve-o no Desktop (Área de Trabalho)

Obs: Ao acessar o link acima, clique no botão Download Now 64-Bit Version

Execute o Farbar seguindo as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

*Serão criados dois relatórios no Desktop: FRST.txt e Addition.txt

Poste estes dois relatórios em sua próxima resposta. (Obs: se não couber em uma só resposta, pode dividi-la em mais postagens).

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) relatório FRST 1

Mensagem por kipper Ter 17 Jun 2014, 19:01

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2014
Ran by User (administrator) on USER-PC on 17-06-2014 18:54:32
Running from C:\Users\User\Desktop
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Download link for 64-Bit Version: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

==================== Processes (Whitelisted) =================

() C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe
(ContentExplorer) C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7203032 2013-10-22] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [4035152 2013-07-30] (ESET)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PowerDVD12DMREngine] => C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe [501544 2012-01-01] (CyberLink)
HKLM-x32\...\Run: [PowerDVD12Agent] => C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe [371256 2012-01-12] (CyberLink Corp.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [uTorrent] => C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe [1266520 2014-04-25] (BitTorrent Inc.)
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [Crazy.Frog.Racer] => C:\Users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe [9728 2012-03-16] ()
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [ContentExplorer] => C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe [1063664 2014-06-04] (ContentExplorer)
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\MountPoints2: {317c8485-c653-11e3-b37c-806e6f6e6963} - I:\Windows/AutoRun.exe
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\MountPoints2: {9a7df649-f937-11e2-803b-806e6f6e6963} - D:\ASRSetup.exe
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\MountPoints2: {faf46c8c-d7c8-11e3-9291-e03f49173750} - G:\setup.exe
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Ferramenta de Verificação de Mídia do PMB.lnk
ShortcutTarget: Ferramenta de Verificação de Mídia do PMB.lnk -> C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:59606;https=127.0.0.1:59606
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {86c83f9e-48a4-4cd2-a763-64fea5df35f7} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope Web URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - Web URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.1.1.1
Tcpip\..\Interfaces\{2AA5F584-48F4-4717-8706-73E96D441DA6}: [NameServer]8.8.8.8,8.8.4.4

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910
FF SearchEngineOrder.1: Google
FF Homepage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\searchplugins\Speedial.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-br.xml
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-07-30]

Chrome:
=======
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR StartupUrls: "hxxp://br.hao123.com/?tn=incore_pay_hp_05_hao123_br"
CHR DefaultSearchKeyword: google.com.br
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-11]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-11]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-11]
CHR Extension: (Pesquisa do Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-11]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-18]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-11]

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [927232 2012-10-29] ()
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [87336 2012-01-12] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [75048 2012-01-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296232 2012-01-12] (CyberLink)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [974944 2011-09-22] (ESET)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [52032 2014-01-21] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [34624 2014-01-21] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [128992 2014-01-21] (Baidu, Inc.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-09] (Disc Soft Ltd)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [137144 2011-08-04] (ESET)
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R2 ntk_PowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [82928 2011-10-27] (Cyberlink Corp.)
R3 RTLE8023x64; C:\Windows\System32\DRIVERS\Rtenic64.sys [438928 2012-05-23] (Realtek Semiconductor Corporation                           )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-05-09] (Duplex Secure Ltd.)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [146928 2012-01-11] (CyberLink Corp.)
U3 ae7x8su2; C:\Windows\System32\Drivers\ae7x8su2.sys [0 ] (Advanced Micro Devices)
S1 badriver; system32\drivers\badriver.sys [X]
S3 BdApiUtil; \??\C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys [X]
S3 BdCameraProtect; \??\C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys [X]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-17 18:54 - 2014-06-17 18:55 - 00017900 _____ () C:\Users\User\Desktop\FRST.txt
2014-06-17 18:54 - 2014-06-17 18:54 - 00000000 ____D () C:\FRST
2014-06-17 18:49 - 2014-06-17 18:49 - 03093939 _____ () C:\Users\User\Downloads\ComboFix.exe.part
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 _____ () C:\Users\User\Downloads\ComboFix.exe
2014-06-17 18:48 - 2014-06-17 18:50 - 00682120 _____ () C:\Users\User\Desktop\jre-7u51-windows-i586.exe
2014-06-17 18:46 - 2014-06-17 18:52 - 02081280 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2014-06-17 15:25 - 2014-06-17 15:25 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chernobyl Underground
2014-06-17 15:17 - 2014-06-17 15:17 - 00000000 ____D () C:\Program Files (x86)\Foxy Games
2014-06-17 14:11 - 2014-06-17 14:11 - 00003122 _____ () C:\Windows\System32\Tasks\{7F93592B-45AD-4CDB-BC02-8A3AA4F26612}
2014-06-16 22:09 - 2014-06-16 22:09 - 00003116 _____ () C:\Windows\System32\Tasks\{85A10420-D547-4A00-8E02-D7FFE30A205C}
2014-06-16 21:16 - 2014-06-16 21:16 - 00003176 _____ () C:\Windows\System32\Tasks\{4452D369-D03D-444A-A15F-9B6B3E4E0971}
2014-06-16 21:16 - 2014-06-16 21:16 - 00000561 _____ () C:\Users\User\AppData\Local\ZHPFixReport.txt
2014-06-16 14:31 - 2014-06-16 14:31 - 00000000 ____D () C:\Users\Todos os Usuários\reiza
2014-06-16 14:31 - 2014-06-16 14:31 - 00000000 ____D () C:\ProgramData\reiza
2014-06-16 14:30 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-06-16 14:30 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-06-16 14:30 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-06-16 14:30 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-06-16 14:30 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-06-16 14:30 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-06-16 14:28 - 2014-06-16 14:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAME STOCK CAR
2014-06-16 14:24 - 2014-06-16 14:32 - 00000000 ____D () C:\GSC
2014-06-14 23:05 - 2014-06-14 23:06 - 01724104 _____ () C:\Users\User\Downloads\RES RES RES Fiat Palio 4 porta ,aceito troca por moto ou carro.zip
2014-06-13 21:04 - 2014-06-13 21:04 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-13 21:04 - 2014-06-13 21:04 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-06-13 21:04 - 2014-06-13 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-13 21:04 - 2014-06-13 21:04 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-13 21:02 - 2014-06-13 21:02 - 04748896 _____ (Piriform Ltd) C:\Users\User\Downloads\917-ccsetup414.exe
2014-06-13 16:34 - 2014-06-13 16:34 - 00000000 ____D () C:\Users\User\AppData\Local\THQ
2014-06-13 16:23 - 2014-06-16 11:54 - 00000000 ____D () C:\Program Files (x86)\Black_Box
2014-06-13 16:03 - 2014-06-17 13:58 - 00003490 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-06-12 22:34 - 2014-06-12 22:34 - 00014783 _____ () C:\Users\User\Downloads\Outlook.com.zip
2014-06-11 23:02 - 2014-06-11 23:02 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-11 23:02 - 2014-06-11 23:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-11 22:56 - 2014-06-11 22:56 - 29816680 _____ (Mozilla) C:\Users\User\Downloads\956-Firefox%20Setup%2030.0.exe
2014-06-11 22:46 - 2014-06-12 17:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\baidu
2014-06-11 22:08 - 2014-06-16 21:40 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-06-11 22:08 - 2014-06-16 21:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\ZHP
2014-06-11 18:46 - 2014-06-11 18:46 - 00000000 ____D () C:\Windows\ERUNT
2014-06-11 18:41 - 2014-06-11 18:45 - 01016261 _____ (Thisisu) C:\Users\User\Desktop\JRT.exe
2014-06-10 21:51 - 2014-06-17 18:55 - 00000000 ____D () C:\Users\User\AppData\Local\Temp
2014-06-10 21:51 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\Usuário Padrão\AppData\Local\Temp
2014-06-10 21:51 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Temp
2014-06-10 21:51 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Temp
2014-06-10 21:51 - 2014-06-10 21:40 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-10 21:41 - 2014-06-06 19:07 - 00026754 _____ () C:\zoek-results2014-06-06-220755.log
2014-06-10 14:19 - 2014-06-10 14:19 - 00003058 _____ () C:\Windows\System32\Tasks\{6A7BFD11-562A-4D3B-A663-BED6D7698402}
2014-06-08 20:13 - 2014-06-08 20:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-06-06 19:07 - 2014-06-06 19:03 - 00022916 _____ () C:\zoek-results2014-06-06-220321.log
2014-06-06 19:01 - 2014-06-10 21:52 - 00033922 _____ () C:\zoek-results.log
2014-06-06 18:59 - 2014-06-10 21:49 - 00000000 ____D () C:\zoek_backup
2014-06-06 18:57 - 2014-06-06 18:59 - 01285120 _____ () C:\Users\User\Desktop\zoek.exe
2014-06-05 21:44 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-05 21:42 - 2014-06-09 13:32 - 00000000 ____D () C:\AdwCleaner
2014-06-05 21:38 - 2014-06-05 21:39 - 01333465 _____ () C:\Users\User\Desktop\adwcleaner_3.212.exe
2014-06-04 22:45 - 2014-06-04 22:45 - 00000000 ____D () C:\Windows\Sun
2014-06-04 22:38 - 2014-06-05 13:59 - 00000000 _____ () C:\Windows\SysWOW64\s.o
2014-06-04 20:06 - 2014-06-11 11:00 - 00000000 ____D () C:\Program Files (x86)\HQPro-1
2014-06-04 20:03 - 2014-06-13 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil
2014-06-04 20:03 - 2014-06-04 20:05 - 00000000 ____D () C:\Users\User\AppData\Roaming\ContentExplorer
2014-06-02 21:04 - 2014-06-17 14:06 - 00011428 _____ () C:\Users\User\Desktop\CONTAS.xlsx
2014-06-01 21:06 - 2014-06-01 21:07 - 00781111 _____ () C:\Users\User\Downloads\Fiat Palio 4 porta ,aceito troca por moto ou carro.zip
2014-05-27 16:54 - 2014-05-27 16:54 - 00003108 _____ () C:\Windows\System32\Tasks\{ED0DAA02-AA71-4320-9B33-F218931071EE}
2014-05-27 16:44 - 2014-05-27 16:44 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-26 20:36 - 2013-03-10 20:25 - 00000135 _____ () C:\Users\User\Downloads\[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
2014-05-26 20:36 - 2013-03-10 20:25 - 00000028 _____ () C:\Users\User\Downloads\[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
2014-05-26 17:40 - 2014-05-26 17:40 - 00000000 ____D () C:\Program Files (x86)\CGN
2014-05-26 17:31 - 2014-06-01 18:32 - 00000000 ____D () C:\Users\User\Desktop\Pastor Cláudio Duarte
2014-05-22 21:32 - 2014-06-17 18:13 - 00000000 ____D () C:\Users\User\Downloads\torrent's
2014-05-21 20:05 - 2014-05-21 20:05 - 00001024 _____ () C:\Users\User\Desktop\Biblia Eletrônica.lnk
2014-05-21 20:05 - 2014-05-21 20:05 - 00000000 ____D () C:\Users\User\Documents\biblia
2014-05-21 20:05 - 2014-05-21 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblia Eletrônica
2014-05-21 20:05 - 2014-05-21 20:05 - 00000000 ____D () C:\Program Files (x86)\RkSoft
2014-05-21 20:05 - 2003-07-25 18:14 - 00380928 _____ () C:\Windows\SysWOW64\ACTSKIN4.OCX
2014-05-21 20:05 - 2003-07-25 18:14 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\STKIT432.DLL
2014-05-20 22:04 - 2014-05-20 22:04 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-05-20 22:03 - 2014-05-20 22:03 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-05-20 22:03 - 2014-05-20 22:03 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-05-20 22:03 - 2014-05-20 22:03 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-05-20 22:03 - 2014-05-20 22:03 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-05-20 22:03 - 2014-05-20 22:03 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-05-20 22:03 - 2014-05-20 22:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-05-20 22:03 - 2014-05-20 22:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-05-20 22:01 - 2014-05-20 22:01 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-20 22:00 - 2014-05-20 22:00 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-05-20 22:00 - 2014-05-20 22:00 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-05-20 21:08 - 2014-05-20 21:41 - 02077392 _____ (Microsoft Corporation) C:\Users\User\Downloads\IE11-Windows6.1.exe
2014-05-20 18:04 - 2014-05-20 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean
2014-05-20 18:04 - 2014-05-20 18:04 - 00000000 ____D () C:\Program Files (x86)\Black Bean
2014-05-20 17:28 - 2014-06-13 21:23 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-05-20 12:17 - 2014-05-20 12:17 - 00327858 _____ () C:\Users\User\Downloads\Ferramentes para oficina automotiva.zip
2014-05-19 21:36 - 2014-05-19 21:36 - 00001025 _____ () C:\Users\User\Desktop\Show do Cristão.lnk
2014-05-19 19:56 - 2014-05-19 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Show do Cristão
2014-05-19 19:56 - 2014-05-19 19:56 - 00000000 ____D () C:\Program Files (x86)\Show do Cristão
2014-05-19 19:55 - 2014-05-19 19:55 - 01258864 _____ () C:\Users\User\Downloads\showdocristao.exe
2014-05-19 19:48 - 2014-05-19 19:48 - 00000000 ____D () C:\Users\User\Downloads\7001.Roms.de.Atari.2600.+.Stella.2.4.2 (By Lipe-GAMES ANTIGOS)
2014-05-19 19:47 - 2014-05-17 22:30 - 00000204 _____ () C:\Users\User\Downloads\Baixar Torrent  Filmes e Series ~  Atualizações Diarias!.url
2014-05-19 19:47 - 2014-05-16 01:27 - 00072318 _____ () C:\Users\User\Downloads\Resgatados.Pela.Graça.2014.DVDRip.XviD.Dual.Audio-TV.srt
2014-05-19 18:49 - 2014-06-16 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Gaming Network
2014-05-18 15:05 - 2014-05-18 15:05 - 00000000 ____D () C:\Users\User\Documents\Modelos Personalizados do Office
2014-05-18 11:39 - 2014-05-18 11:39 - 201642470 _____ () C:\Users\User\Desktop\Pudim de Leite Moça.avi
2014-05-18 11:27 - 2014-05-18 11:27 - 31032034 _____ () C:\Users\User\Desktop\Pudim de Maria Mole.avi
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) relatório FRST 2

Mensagem por kipper Ter 17 Jun 2014, 19:02

ed Files and Folders =======

2014-06-17 18:55 - 2014-06-17 18:54 - 00017900 _____ () C:\Users\User\Desktop\FRST.txt
2014-06-17 18:55 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\User\AppData\Local\Temp
2014-06-17 18:54 - 2014-06-17 18:54 - 00000000 ____D () C:\FRST
2014-06-17 18:53 - 2014-04-25 20:14 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6DF43704-786C-4865-866E-97611BE0333B}
2014-06-17 18:53 - 2014-04-17 16:28 - 00000000 ____D () C:\Users\User\AppData\Roaming\uTorrent
2014-06-17 18:52 - 2014-06-17 18:46 - 02081280 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2014-06-17 18:50 - 2014-06-17 18:48 - 00682120 _____ () C:\Users\User\Desktop\jre-7u51-windows-i586.exe
2014-06-17 18:49 - 2014-06-17 18:49 - 03093939 _____ () C:\Users\User\Downloads\ComboFix.exe.part
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 _____ () C:\Users\User\Downloads\ComboFix.exe
2014-06-17 18:44 - 2014-04-17 15:22 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-17 18:30 - 2014-04-17 11:39 - 00000902 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-17 18:19 - 2013-07-30 16:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Skype
2014-06-17 18:13 - 2014-05-22 21:32 - 00000000 ____D () C:\Users\User\Downloads\torrent's
2014-06-17 16:52 - 2014-05-09 19:25 - 00000000 ____D () C:\Users\User\AppData\Roaming\DAEMON Tools Lite
2014-06-17 16:52 - 2014-05-05 18:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\Media Player Classic
2014-06-17 15:25 - 2014-06-17 15:25 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chernobyl Underground
2014-06-17 15:21 - 2013-07-30 15:05 - 00136952 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-17 15:17 - 2014-06-17 15:17 - 00000000 ____D () C:\Program Files (x86)\Foxy Games
2014-06-17 14:11 - 2014-06-17 14:11 - 00003122 _____ () C:\Windows\System32\Tasks\{7F93592B-45AD-4CDB-BC02-8A3AA4F26612}
2014-06-17 14:06 - 2014-06-02 21:04 - 00011428 _____ () C:\Users\User\Desktop\CONTAS.xlsx
2014-06-17 14:03 - 2009-07-14 01:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-17 14:03 - 2009-07-14 01:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-17 14:01 - 2011-04-12 10:40 - 00702882 _____ () C:\Windows\system32\prfh0416.dat
2014-06-17 14:01 - 2011-04-12 10:40 - 00145668 _____ () C:\Windows\system32\prfc0416.dat
2014-06-17 14:01 - 2009-07-14 02:13 - 01626900 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-17 13:58 - 2014-06-13 16:03 - 00003490 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-06-17 13:57 - 2014-04-17 15:22 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-17 13:57 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-16 22:09 - 2014-06-16 22:09 - 00003116 _____ () C:\Windows\System32\Tasks\{85A10420-D547-4A00-8E02-D7FFE30A205C}
2014-06-16 21:40 - 2014-06-11 22:08 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-06-16 21:24 - 2014-06-11 22:08 - 00000000 ____D () C:\Users\User\AppData\Roaming\ZHP
2014-06-16 21:16 - 2014-06-16 21:16 - 00003176 _____ () C:\Windows\System32\Tasks\{4452D369-D03D-444A-A15F-9B6B3E4E0971}
2014-06-16 21:16 - 2014-06-16 21:16 - 00000561 _____ () C:\Users\User\AppData\Local\ZHPFixReport.txt
2014-06-16 17:39 - 2014-05-19 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Gaming Network
2014-06-16 14:32 - 2014-06-16 14:24 - 00000000 ____D () C:\GSC
2014-06-16 14:31 - 2014-06-16 14:31 - 00000000 ____D () C:\Users\Todos os Usuários\reiza
2014-06-16 14:31 - 2014-06-16 14:31 - 00000000 ____D () C:\ProgramData\reiza
2014-06-16 14:28 - 2014-06-16 14:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAME STOCK CAR
2014-06-16 11:54 - 2014-06-13 16:23 - 00000000 ____D () C:\Program Files (x86)\Black_Box
2014-06-14 23:06 - 2014-06-14 23:05 - 01724104 _____ () C:\Users\User\Downloads\RES RES RES Fiat Palio 4 porta ,aceito troca por moto ou carro.zip
2014-06-13 22:22 - 2014-04-17 18:39 - 00000000 ____D () C:\Users\User\AppData\Local\Microsoft Games
2014-06-13 21:23 - 2014-05-20 17:28 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-06-13 21:23 - 2013-07-30 13:46 - 00000000 ____D () C:\Windows\Panther
2014-06-13 21:04 - 2014-06-13 21:04 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-13 21:04 - 2014-06-13 21:04 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-06-13 21:04 - 2014-06-13 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-13 21:04 - 2014-06-13 21:04 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-13 21:02 - 2014-06-13 21:02 - 04748896 _____ (Piriform Ltd) C:\Users\User\Downloads\917-ccsetup414.exe
2014-06-13 18:39 - 2014-06-04 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil
2014-06-13 16:34 - 2014-06-13 16:34 - 00000000 ____D () C:\Users\User\AppData\Local\THQ
2014-06-12 22:34 - 2014-06-12 22:34 - 00014783 _____ () C:\Users\User\Downloads\Outlook.com.zip
2014-06-12 17:59 - 2014-06-11 22:46 - 00000000 ____D () C:\Users\User\AppData\Roaming\baidu
2014-06-11 23:02 - 2014-06-11 23:02 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-11 23:02 - 2014-06-11 23:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-11 23:02 - 2014-05-09 23:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 22:56 - 2014-06-11 22:56 - 29816680 _____ (Mozilla) C:\Users\User\Downloads\956-Firefox%20Setup%2030.0.exe
2014-06-11 21:03 - 2014-05-09 21:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-06-11 19:50 - 2014-04-17 15:42 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-11 18:46 - 2014-06-11 18:46 - 00000000 ____D () C:\Windows\ERUNT
2014-06-11 18:45 - 2014-06-11 18:41 - 01016261 _____ (Thisisu) C:\Users\User\Desktop\JRT.exe
2014-06-11 14:01 - 2009-07-14 02:08 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-11 11:00 - 2014-06-04 20:06 - 00000000 ____D () C:\Program Files (x86)\HQPro-1
2014-06-10 21:52 - 2014-06-06 19:01 - 00033922 _____ () C:\zoek-results.log
2014-06-10 21:51 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\Usuário Padrão\AppData\Local\Temp
2014-06-10 21:51 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Temp
2014-06-10 21:51 - 2014-06-10 21:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Temp
2014-06-10 21:49 - 2014-06-06 18:59 - 00000000 ____D () C:\zoek_backup
2014-06-10 21:40 - 2014-06-10 21:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-10 14:19 - 2014-06-10 14:19 - 00003058 _____ () C:\Windows\System32\Tasks\{6A7BFD11-562A-4D3B-A663-BED6D7698402}
2014-06-09 13:32 - 2014-06-05 21:42 - 00000000 ____D () C:\AdwCleaner
2014-06-08 20:14 - 2014-06-08 20:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-06-06 19:07 - 2014-06-10 21:41 - 00026754 _____ () C:\zoek-results2014-06-06-220755.log
2014-06-06 19:03 - 2014-06-06 19:07 - 00022916 _____ () C:\zoek-results2014-06-06-220321.log
2014-06-06 18:59 - 2014-06-06 18:57 - 01285120 _____ () C:\Users\User\Desktop\zoek.exe
2014-06-05 21:39 - 2014-06-05 21:38 - 01333465 _____ () C:\Users\User\Desktop\adwcleaner_3.212.exe
2014-06-05 13:59 - 2014-06-04 22:38 - 00000000 _____ () C:\Windows\SysWOW64\s.o
2014-06-05 08:10 - 2014-04-17 22:17 - 00000000 ____D () C:\Program Files (x86)\Freeven Pro 1.4
2014-06-04 22:45 - 2014-06-04 22:45 - 00000000 ____D () C:\Windows\Sun
2014-06-04 20:09 - 2013-07-30 14:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-04 20:05 - 2014-06-04 20:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\ContentExplorer
2014-06-03 11:09 - 2014-04-18 10:26 - 00000000 ____D () C:\temp
2014-06-01 21:07 - 2014-06-01 21:06 - 00781111 _____ () C:\Users\User\Downloads\Fiat Palio 4 porta ,aceito troca por moto ou carro.zip
2014-06-01 18:32 - 2014-05-26 17:31 - 00000000 ____D () C:\Users\User\Desktop\Pastor Cláudio Duarte
2014-05-27 16:54 - 2014-05-27 16:54 - 00003108 _____ () C:\Windows\System32\Tasks\{ED0DAA02-AA71-4320-9B33-F218931071EE}
2014-05-27 16:44 - 2014-05-27 16:44 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-26 17:40 - 2014-05-26 17:40 - 00000000 ____D () C:\Program Files (x86)\CGN
2014-05-24 19:14 - 2014-04-27 09:56 - 00007946 _____ () C:\Users\User\Desktop\Novo Documento de Diário.jnt
2014-05-22 17:19 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-21 20:05 - 2014-05-21 20:05 - 00001024 _____ () C:\Users\User\Desktop\Biblia Eletrônica.lnk
2014-05-21 20:05 - 2014-05-21 20:05 - 00000000 ____D () C:\Users\User\Documents\biblia
2014-05-21 20:05 - 2014-05-21 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblia Eletrônica
2014-05-21 20:05 - 2014-05-21 20:05 - 00000000 ____D () C:\Program Files (x86)\RkSoft
2014-05-21 11:08 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache
2014-05-20 22:21 - 2009-07-14 01:45 - 05077528 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-20 22:20 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-05-20 22:20 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-05-20 22:20 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-05-20 22:20 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-20 22:04 - 2014-05-20 22:04 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-05-20 22:04 - 2014-05-20 22:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-20 22:04 - 2014-05-20 22:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-05-20 22:03 - 2014-05-20 22:03 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-05-20 22:03 - 2014-05-20 22:03 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-05-20 22:03 - 2014-05-20 22:03 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-05-20 22:03 - 2014-05-20 22:03 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-05-20 22:03 - 2014-05-20 22:03 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-05-20 22:03 - 2014-05-20 22:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-05-20 22:03 - 2014-05-20 22:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-05-20 22:01 - 2014-05-20 22:01 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-20 22:01 - 2014-05-20 22:01 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-20 22:00 - 2014-05-20 22:00 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-05-20 22:00 - 2014-05-20 22:00 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-05-20 21:41 - 2014-05-20 21:08 - 02077392 _____ (Microsoft Corporation) C:\Users\User\Downloads\IE11-Windows6.1.exe
2014-05-20 18:04 - 2014-05-20 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean
2014-05-20 18:04 - 2014-05-20 18:04 - 00000000 ____D () C:\Program Files (x86)\Black Bean
2014-05-20 18:04 - 2013-07-30 13:51 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-05-20 17:31 - 2014-05-09 20:32 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Turtle Games
2014-05-20 17:31 - 2014-05-09 20:32 - 00000000 ____D () C:\Program Files (x86)\Turtle Games
2014-05-20 17:30 - 2014-05-09 20:33 - 00000000 ____D () C:\Users\User\Documents\GameShadow
2014-05-20 12:17 - 2014-05-20 12:17 - 00327858 _____ () C:\Users\User\Downloads\Ferramentes para oficina automotiva.zip
2014-05-19 21:36 - 2014-05-19 21:36 - 00001025 _____ () C:\Users\User\Desktop\Show do Cristão.lnk
2014-05-19 20:04 - 2014-05-02 14:13 - 00000000 ____D () C:\Program Files (x86)\Goat Simulator
2014-05-19 19:56 - 2014-05-19 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Show do Cristão
2014-05-19 19:56 - 2014-05-19 19:56 - 00000000 ____D () C:\Program Files (x86)\Show do Cristão
2014-05-19 19:55 - 2014-05-19 19:55 - 01258864 _____ () C:\Users\User\Downloads\showdocristao.exe
2014-05-19 19:48 - 2014-05-19 19:48 - 00000000 ____D () C:\Users\User\Downloads\7001.Roms.de.Atari.2600.+.Stella.2.4.2 (By Lipe-GAMES ANTIGOS)
2014-05-18 21:16 - 2014-04-17 16:21 - 00000000 ____D () C:\Users\Todos os Usuários\Baidu Security
2014-05-18 21:16 - 2014-04-17 16:21 - 00000000 ____D () C:\ProgramData\Baidu Security
2014-05-18 18:44 - 2013-07-30 15:49 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-18 15:05 - 2014-05-18 15:05 - 00000000 ____D () C:\Users\User\Documents\Modelos Personalizados do Office
2014-05-18 11:39 - 2014-05-18 11:39 - 201642470 _____ () C:\Users\User\Desktop\Pudim de Leite Moça.avi
2014-05-18 11:27 - 2014-05-18 11:27 - 31032034 _____ () C:\Users\User\Desktop\Pudim de Maria Mole.avi

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-09 10:39

==================== End Of Log ============================
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty (RESOLVIDO) relatório Addition

Mensagem por kipper Ter 17 Jun 2014, 19:03

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-06-2014
Ran by User at 2014-06-17 18:55:17
Running from C:\Users\User\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET NOD32 Antivírus 5.0 (Disabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET NOD32 Antivírus 5.0 (Disabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31139 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.) Hidden
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.07) - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.7955 - DsNET Corp)
Biblia Eletrônica 3.7.8 (HKLM-x32\...\Biblia Eletrônica_is1) (Version:  - RkSoft Softwares Ltda)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Chernobyl Underground (HKLM-x32\...\Chernobyl Underground1.1) (Version: 1.1 - Foxy Games)
ContentExplorer (HKLM-x32\...\ContentExplorer) (Version: 1.0.0.0 - ContentExplorer.net)
Corel Graphics - Windows Shell Extension (HKLM\...\_{EBDC2D0D-1E26-4EF2-BB48-C7E18F7800C6}) (Version: 16.0.0.707 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 16.0.707 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.0.707 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - BR (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.0 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.0.0.707 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.0 - Corel Corporation) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.1312.54 - CyberLink Corp.)
CyberLink PowerDVD 12 (x32 Version: 12.0.1312.54 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
ESET NOD32 Antivirus (HKLM\...\{679CC4FF-FC7B-48DF-A346-684AD1A2B48E}) (Version: 5.0.95.0 - ESET, spol. s r. o.)
Estudo de melhoria do produto HP Deskjet 1050 J410 series (HKLM\...\{635F1CD2-00BC-4613-AAA6-3DCD1986767C}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
FormatFactory 3.3.4.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.4.0 - Format Factory)
Freeven Pro 1.4 (HKLM-x32\...\Freeven Pro 1.4) (Version: 1.34.4.10 - Freeven) <==== ATTENTION
GAME STOCK CAR versão 1.600 (HKLM-x32\...\{7786E684-E12B-4738-85B4-7F2A65AF87C7}_is1) (Version: 1.600 - Reiza Studios Ltda.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.0 - Google Inc.) Hidden
HP Deskjet 1050 J410 series Ajuda (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
HQPro-1 (HKLM-x32\...\HQPro-1) (Version: 1.34.5.29 - HQ-1.9)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel®️ Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Mega Codec Pack 9.9.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
Mickey Saves the Day (HKLM-x32\...\{F5283282-5ABA-4C81-9198-BB55BA025143}) (Version: 1.0 - Disney Interactive)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile PTB Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Access MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x64) (Version: 7.1.00.00 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) English (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Portuguese (Brazil) (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Word MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Minha Biblia (HKLM-x32\...\{738C450E-378C-42E7-B8D2-A36EC068A1D3}) (Version: 1.03.0000 - Friendship Solutions:)
Mozilla Firefox 30.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 pt-BR)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MTX MotoTrax (HKLM-x32\...\{CC391B26-9496-4306-AFE9-6D042BA671D1}) (Version: 1.00.0000 - Aspyr Media)
Nero 12 (HKLM-x32\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - Nero AG)
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero BackItUp Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.14300 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.4000 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 12.0.20000 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15200 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.5000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.18100 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Express (x32 Version: 12.0.20000 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 12.0.5000 - Nero AG) Hidden
Nero Kwik Media (x32 Version: 1.18.18200 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (x32 Version: 12.0.4000 - Nero AG) Hidden
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Recode (x32 Version: 12.0.24000 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 12.0.4000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.9000 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Video (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 12.0.4000 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (HKLM\...\Microsoft .NET Framework 4 Client Profile PTB Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Primo (x32 Version: 1.00.0000 - Your Company Name) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rosso Rabbit in Trouble (HKLM-x32\...\Rosso Rabbit in Trouble_is1) (Version:  - )
Runtime (x32 Version: 1.00.0000 - Your Company Name) Hidden
Show do Cristão (HKLM-x32\...\Show do Cristão_is1) (Version:  - Oltre Vita Informática Ltda)
Shrek 2 Team Action (x32 Version: 1.00.0000 - Activision) Hidden
Shrek 2(TM): Team Action (TM) (HKLM-x32\...\InstallShield_{0A387537-CCAA-4E41-81D6-B3BDF349BB7F}) (Version: 1.00.0000 - Activision)
Skype™️ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
Software básico do dispositivo HP Deskjet 1050 J410 series (HKLM\...\{06A5A3AF-AFA5-4278-868E-BFD494A9B08B}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
Sony Picture Utility (HKLM-x32\...\{D5068583-D569-468B-9755-5FBF5848F46F}) (Version: 4.2.01.15030 - Sony Corporation)
Super-Bikes Riding Challenge (HKLM-x32\...\{190F801F-A2D2-40CF-85A3-8FEF893D1A29}) (Version: 1.00.0000 - )
Welcome App (Start-up experience) (x32 Version: 12.0.14000 - Nero AG) Hidden
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)

==================== Restore Points  =========================

14-06-2014 14:54:54 Ponto de Verificação Agendado
16-06-2014 17:28:53 DirectX instalado

==================== Hosts content: ==========================

2009-07-13 23:34 - 2014-06-10 21:41 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {04336563-B883-46BA-8A02-967420632763} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-4 No Task File <==== ATTENTION
Task: {087BD0DF-E124-45A4-B8DF-626970AA3B7C} - \414b386e-3a42-4bfc-803f-586238088491-4 No Task File <==== ATTENTION
Task: {124A79C7-E1D1-4234-8BED-45C109EA521A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {1E2A1A86-8E76-4D56-8987-7E2745EB660C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {2C534D8D-FE2B-44D8-B730-E4843F28DAA6} - \414b386e-3a42-4bfc-803f-586238088491-1 No Task File <==== ATTENTION
Task: {2CB9D524-A1CD-4268-9E52-CAB14814CF72} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-7 No Task File <==== ATTENTION
Task: {2F26519F-9262-4555-954D-00D12590C617} - System32\Tasks\{D5B18C28-40B9-4F9D-B759-6CADF0A43225} => C:\Program Files (x86)\Rosso Rabbit in Trouble\RossoRabbitInTrouble.exe [2004-09-14] ()
Task: {32056961-01BF-408E-A4A8-D0836B0B7B68} - \414b386e-3a42-4bfc-803f-586238088491-5 No Task File <==== ATTENTION
Task: {35A1D0F8-57F4-440B-88B2-80865BF7E910} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-5 No Task File <==== ATTENTION
Task: {35EA52AF-D477-4DA5-9DF1-02356F22BC89} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-3 No Task File <==== ATTENTION
Task: {3E4FC0AE-647D-47C9-AB89-08CA429ADA92} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-5 No Task File <==== ATTENTION
Task: {48E45C94-3B5D-492D-A9A8-F35B276AC498} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-1 No Task File <==== ATTENTION
Task: {4F8479B2-4B26-4343-8989-9E1A87DD90EB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {51F97774-BDCA-49EF-B926-68CCA014029D} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-3 No Task File <==== ATTENTION
Task: {5327AF98-23BA-4EE6-99B1-73CF8A0E42B1} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {53812C6A-557A-41C6-9321-A14BEA7C723A} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {588FD63F-AB17-4351-BE9A-1EDB39491E95} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-5 No Task File <==== ATTENTION
Task: {63CD7A37-EDF5-4E40-ACE9-B3CC064706CD} - \414b386e-3a42-4bfc-803f-586238088491-2 No Task File <==== ATTENTION
Task: {6B9C2DC0-9D41-4E55-9926-664A9DA466AC} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-2 No Task File <==== ATTENTION
Task: {74B165E5-46F5-4883-A7FF-08107FF1CE1C} - \SystemSockets\SystemSockets No Task File <==== ATTENTION
Task: {8658DF18-DEB8-4E79-ACDF-8622AE27A1DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-17] (Google Inc.)
Task: {94E9AD1B-B256-4178-A773-6350C0724363} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-4 No Task File <==== ATTENTION
Task: {95740980-1030-4189-A96E-21F479924B14} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-6 No Task File <==== ATTENTION
Task: {995BEEF8-3F53-40FC-802E-85ACFCB2BAFF} - \ProtectedSearch\Protected Search No Task File <==== ATTENTION
Task: {A0934E19-C840-4AB7-A767-7C8D67A31E15} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-17] (Google Inc.)
Task: {A230AC41-2578-435E-AB3F-FC41A5BE62B7} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-1 No Task File <==== ATTENTION
Task: {AEEDA4BC-A1ED-406F-91C1-13B0C8C082B4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-15] (Adobe Systems Incorporated)
Task: {C13CF043-61B8-4655-9EB0-E99959133DD4} - \414b386e-3a42-4bfc-803f-586238088491-3 No Task File <==== ATTENTION
Task: {C1FFBA26-9FF9-4586-B1AE-EEBF82208E7B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2013-07-30] ()
Task: {CA9DB52F-6282-4479-BD53-84A6339DE959} - System32\Tasks\{1C01D39C-FF48-4DC8-BC31-0AD1DDAE6804} => Chrome.exe
Task: {D33F1C7D-7A4E-49C1-B6C4-B34E768B155D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D5BEBD9F-290F-4F20-A246-AF29369F2539} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {E34D72D9-A3A2-42B6-868D-E95FA1E34FB1} - \Browser Updater\Browser Updater No Task File <==== ATTENTION
Task: {E84EF0C9-A4C8-4733-9C63-9D4C3E73EB99} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-3 No Task File <==== ATTENTION
Task: {E8D2D5B6-E2B3-44E1-801D-9B794344E77B} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-2 No Task File <==== ATTENTION
Task: {FA7E56F6-D1C7-460C-9314-1D3E7032A6B2} - System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-07-30 16:14 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2014-04-17 10:24 - 2012-10-29 15:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2014-05-09 20:32 - 2012-03-16 12:27 - 00009728 _____ () C:\Users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe
2014-04-17 10:24 - 2014-06-17 13:57 - 00026112 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2014-04-17 10:24 - 2012-05-08 00:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2013-07-30 16:05 - 2012-01-09 00:48 - 00541683 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\sqlite3.dll
2013-07-30 16:04 - 2012-01-01 23:21 - 00374056 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\CLNetMediaDMA.dll
2013-07-30 16:04 - 2011-08-23 23:39 - 00081920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\Common\koan\_ctypes.pyd
2013-07-30 16:04 - 2012-01-12 09:54 - 00091432 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\subsys\ShellLib\_ShellLib.pyd
2013-07-30 16:04 - 2011-08-23 23:39 - 00053248 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\Common\Koan\_socket.pyd
2013-07-30 16:04 - 2011-08-23 23:39 - 00655360 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\Common\Koan\_ssl.pyd
2013-07-30 16:04 - 2012-01-12 09:55 - 00075048 _____ () C:\Program Files (x86)\CyberLink\PowerDVD12\subsys\DLNA\DMS\_PyDMSCtrl.pyd
2014-04-17 10:28 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-06-11 23:02 - 2014-06-06 01:38 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-05-15 15:31 - 2014-05-15 15:31 - 16361136 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de Túnel Teredo da Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: badriver
Description: badriver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: badriver
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/17/2014 01:58:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 11:43:12 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "assemblyIdentity1". Erro no arquivo de manifesto ou de diretiva assemblyIdentity2", na linha assemblyIdentity3.
O valor "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" do atributo version no elemento assemblyIdentity é inválido.

Error: (06/17/2014 10:59:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 07:22:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 10:58:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 07:02:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 04:34:19 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Falha na geração de contexto de ativação para "assemblyIdentity1". Erro no arquivo de manifesto ou de diretiva assemblyIdentity2", na linha assemblyIdentity3.
O valor "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" do atributo version no elemento assemblyIdentity é inválido.

Error: (06/16/2014 02:45:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa Skype.exe versão 6.3.0.105 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: ae4

Hora de Início: 01cf89871b3c7b7f

Hora de Término: 9

Caminho do Aplicativo: C:\Program Files (x86)\Skype\Phone\Skype.exe

Id do Relatório:

Error: (06/16/2014 02:20:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 11:53:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/17/2014 01:57:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: padrão-computadorLocalAtivação{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}AUTORIDADE NTSERVIÇO LOCALS-1-5-19LocalHost (Usando LRPC)

Error: (06/17/2014 01:57:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
badriver

Error: (06/17/2014 10:58:25 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: padrão-computadorLocalAtivação{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}AUTORIDADE NTSERVIÇO LOCALS-1-5-19LocalHost (Usando LRPC)

Error: (06/17/2014 10:58:19 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
badriver

Error: (06/17/2014 07:21:46 AM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: padrão-computadorLocalAtivação{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}AUTORIDADE NTSERVIÇO LOCALS-1-5-19LocalHost (Usando LRPC)

Error: (06/17/2014 07:21:27 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
badriver

Error: (06/16/2014 10:56:44 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: padrão-computadorLocalAtivação{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}AUTORIDADE NTSERVIÇO LOCALS-1-5-19LocalHost (Usando LRPC)

Error: (06/16/2014 10:56:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
badriver

Error: (06/16/2014 07:00:59 PM) (Source: DCOM) (EventID: 10016) (User: AUTORIDADE NT)
Description: padrão-computadorLocalAtivação{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}AUTORIDADE NTSERVIÇO LOCALS-1-5-19LocalHost (Usando LRPC)

Error: (06/16/2014 07:00:52 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
badriver


Microsoft Office Sessions:
=========================
Error: (06/17/2014 01:58:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 11:43:12 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (06/17/2014 10:59:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/17/2014 07:22:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 10:58:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 07:02:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 04:34:19 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (06/16/2014 02:45:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.3.0.105ae401cf89871b3c7b7f9C:\Program Files (x86)\Skype\Phone\Skype.exe

Error: (06/16/2014 02:20:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/16/2014 11:53:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
 Date: 2014-04-17 10:36:25.800
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 10:36:25.784
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 10:31:12.748
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 10:31:12.732
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 10:21:50.878
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 10:21:50.862
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 09:58:37.544
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 09:58:36.780
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 09:56:30.507
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 Date: 2014-04-17 09:56:30.476
 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RTKVHD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 34%
Total physical RAM: 3968.45 MB
Available physical RAM: 2592.23 MB
Total Pagefile: 7935.09 MB
Available Pagefile: 6057.21 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.66 GB) (Free:42.46 GB) NTFS
Drive e: (Novo volume) (Fixed) (Total:175.78 GB) (Free:147.2 GB) NTFS
Drive f: (Novo volume) (Fixed) (Total:192.22 GB) (Free:120.78 GB) NTFS
Drive g: (The Last Tinker_) (CDROM) (Total:2.05 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Cool (Size: 466 GB) (Disk ID: 56684485)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=98 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=176 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=192 GB) - (Type=OF Extended)

==================== End Of Log ============================
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Ter 17 Jun 2014, 21:00

zoek - Não consigo eliminar CE_UMBRELLACERT 772309  Acesse o site [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e envie estes arquivos destacados em negrito abaixo para serem analisados:

C:\Users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe
C:\Windows\System32\Drivers\ae7x8su2.sys
C:\Program Files (x86)\Rosso Rabbit in Trouble\RossoRabbitInTrouble.exe

Assim que a análise de cada um deles for concluída, copie o link que aparecerá na barra de endereços de seu navegador e poste estes links em sua próxima resposta juntamente com o relatório do Farbar pedido abaixo nesta postagem.

Maiores informações de como analisar arquivos no site Virus Total você encontra neste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
________________________________________________________________________________________________

zoek - Não consigo eliminar CE_UMBRELLACERT 772309  Baixe o arquivo fixlist.txt que está anexado nesta postagem e salve-o no desktop (área de trabalho).

Clique com o botão direito do mouse sobre o FRST64, depois clique em [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem].

Clique no botão Fix.

Aguarde e ao final, o log Fixlog.txt será salvo no seu desktop.

Selecione, copie e cole o conteúdo deste Fixlog.txt em sua próxima resposta juntamente com os links das análises dos arquivos no site Virus Total.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por kipper Sex 20 Jun 2014, 20:01

Não to conseguindo copiar os itens selecionados para o Virus total, aqui esta o relatório do fix

start
(ContentExplorer) C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\Run: [ContentExplorer] => C:\Users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe [1063664 2014-06-04] (ContentExplorer)
HKU\S-1-5-21-2123034537-1514316849-1306321605-1000\...\MountPoints2: {317c8485-c653-11e3-b37c-806e6f6e6963} - I:\Windows/AutoRun.exe
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:59606;https=127.0.0.1:59606
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - DefaultScope {86c83f9e-48a4-4cd2-a763-64fea5df35f7} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope Web URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - Web URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF user.js: detected! => C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\user.js
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\searchplugins\Speedial.xml
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR StartupUrls: "hxxp://br.hao123.com/?tn=incore_pay_hp_05_hao123_br"
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [52032 2014-01-21] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [34624 2014-01-21] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [128992 2014-01-21] (Baidu, Inc.)
S3 BdApiUtil; \??\C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys [X]
S3 BdCameraProtect; \??\C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys [X]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
2014-06-11 22:46 - 2014-06-12 17:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\baidu
2014-06-04 20:03 - 2014-06-13 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil
2014-06-04 20:03 - 2014-06-04 20:05 - 00000000 ____D () C:\Users\User\AppData\Roaming\ContentExplorer
2014-06-13 18:39 - 2014-06-04 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil
2014-06-12 17:59 - 2014-06-11 22:46 - 00000000 ____D () C:\Users\User\AppData\Roaming\baidu
2014-06-11 11:00 - 2014-06-04 20:06 - 00000000 ____D () C:\Program Files (x86)\HQPro-1
2014-06-05 08:10 - 2014-04-17 22:17 - 00000000 ____D () C:\Program Files (x86)\Freeven Pro 1.4
2014-06-04 20:05 - 2014-06-04 20:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\ContentExplorer
2014-05-18 21:16 - 2014-04-17 16:21 - 00000000 ____D () C:\Users\Todos os Usuários\Baidu Security
2014-05-18 21:16 - 2014-04-17 16:21 - 00000000 ____D () C:\ProgramData\Baidu Security
ContentExplorer (HKLM-x32\...\ContentExplorer) (Version: 1.0.0.0 - ContentExplorer.net)
Freeven Pro 1.4 (HKLM-x32\...\Freeven Pro 1.4) (Version: 1.34.4.10 - Freeven) <==== ATTENTION
HQPro-1 (HKLM-x32\...\HQPro-1) (Version: 1.34.5.29 - HQ-1.9)
Task: {04336563-B883-46BA-8A02-967420632763} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-4 No Task File <==== ATTENTION
Task: {087BD0DF-E124-45A4-B8DF-626970AA3B7C} - \414b386e-3a42-4bfc-803f-586238088491-4 No Task File <==== ATTENTION
Task: {2C534D8D-FE2B-44D8-B730-E4843F28DAA6} - \414b386e-3a42-4bfc-803f-586238088491-1 No Task File <==== ATTENTION
Task: {2CB9D524-A1CD-4268-9E52-CAB14814CF72} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-7 No Task File <==== ATTENTION
Task: {32056961-01BF-408E-A4A8-D0836B0B7B68} - \414b386e-3a42-4bfc-803f-586238088491-5 No Task File <==== ATTENTION
Task: {35A1D0F8-57F4-440B-88B2-80865BF7E910} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-5 No Task File <==== ATTENTION
Task: {35EA52AF-D477-4DA5-9DF1-02356F22BC89} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-3 No Task File <==== ATTENTION
Task: {3E4FC0AE-647D-47C9-AB89-08CA429ADA92} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-5 No Task File <==== ATTENTION
Task: {48E45C94-3B5D-492D-A9A8-F35B276AC498} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-1 No Task File <==== ATTENTION
Task: {51F97774-BDCA-49EF-B926-68CCA014029D} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-3 No Task File <==== ATTENTION
Task: {5327AF98-23BA-4EE6-99B1-73CF8A0E42B1} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {588FD63F-AB17-4351-BE9A-1EDB39491E95} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-5 No Task File <==== ATTENTION
Task: {63CD7A37-EDF5-4E40-ACE9-B3CC064706CD} - \414b386e-3a42-4bfc-803f-586238088491-2 No Task File <==== ATTENTION
Task: {6B9C2DC0-9D41-4E55-9926-664A9DA466AC} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-2 No Task File <==== ATTENTION
Task: {74B165E5-46F5-4883-A7FF-08107FF1CE1C} - \SystemSockets\SystemSockets No Task File <==== ATTENTION
Task: {94E9AD1B-B256-4178-A773-6350C0724363} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-4 No Task File <==== ATTENTION
Task: {95740980-1030-4189-A96E-21F479924B14} - \a4830365-2b6a-48b5-91cc-0fa59bbd7544-6 No Task File <==== ATTENTION
Task: {995BEEF8-3F53-40FC-802E-85ACFCB2BAFF} - \ProtectedSearch\Protected Search No Task File <==== ATTENTION
Task: {A230AC41-2578-435E-AB3F-FC41A5BE62B7} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-1 No Task File <==== ATTENTION
Task: {C13CF043-61B8-4655-9EB0-E99959133DD4} - \414b386e-3a42-4bfc-803f-586238088491-3 No Task File <==== ATTENTION
Task: {D5BEBD9F-290F-4F20-A246-AF29369F2539} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {E34D72D9-A3A2-42B6-868D-E95FA1E34FB1} - \Browser Updater\Browser Updater No Task File <==== ATTENTION
Task: {E84EF0C9-A4C8-4733-9C63-9D4C3E73EB99} - \0a5a8eca-db08-4f00-b404-d2bc2171952b-3 No Task File <==== ATTENTION
Task: {E8D2D5B6-E2B3-44E1-801D-9B794344E77B} - \3d6799c0-7f57-4f60-ab8f-1e65a97fb73f-2 No Task File <==== ATTENTION
end
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Sex 20 Jun 2014, 21:42

Este texto que você postou é só o que estava naquele arquivo em anexo que te passei. O que preciso é do Fixlog.txt que deve estar salvo no seu desktop (área de trabalho)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por kipper Qua 25 Jun 2014, 18:11

ainda não consegui fazer conforme vc me passou mas tenho um outro programa o combofix, tô te passando o relatório dele,ainda vou tentar o q foi me passado antes por vc.flw!

ComboFix 14-06-24.01 - User 25/06/2014 17:41:10.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3968.2360 [GMT -3:00]
Executando de: c:\users\User\Downloads\ComboFix.exe
AV: ESET NOD32 Antivírus 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivírus 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Criado um novo ponto de restauração
.
.
((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Java\jre7\bin\jp2ssv.dll
c:\windows\SysWow64\Config.ini
.
.
(((((((((((((((( Arquivos/Ficheiros criados de 2014-05-25 to 2014-06-25 ))))))))))))))))))))))))))))
.
.
2014-06-25 20:44 . 2014-06-25 20:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-06-25 00:10 . 2014-06-25 00:10 -------- d-----w- C:\UpdateChromeLinksLogs
2014-06-25 00:10 . 2014-06-25 00:10 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2014-06-25 00:10 . 2014-06-25 00:10 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-06-25 00:10 . 2014-06-25 00:10 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2014-06-23 22:27 . 2014-06-23 22:27 -------- d-----w- c:\program files (x86)\SQUARE ENIX - Eidos Interactive
2014-06-21 13:17 . 2014-06-21 13:06 24064 ----a-w- c:\windows\zoek-delete.exe
2014-06-21 13:17 . 2014-06-25 20:44 -------- d-----w- c:\users\User\AppData\Local\Temp
2014-06-17 21:54 . 2014-06-25 20:35 -------- d-----w- C:\FRST
2014-06-17 18:17 . 2014-06-17 18:17 -------- d-----w- c:\program files (x86)\Foxy Games
2014-06-17 18:17 . 2014-06-17 18:17 -------- d-----w- C:\Downloads
2014-06-16 17:31 . 2014-06-16 17:31 -------- d-----w- c:\programdata\reiza
2014-06-16 17:30 . 2008-10-15 09:22 519000 ----a-w- c:\windows\system32\d3dx10_40.dll
2014-06-16 17:30 . 2008-10-15 09:22 452440 ----a-w- c:\windows\SysWow64\d3dx10_40.dll
2014-06-16 17:30 . 2008-10-15 09:22 2605920 ----a-w- c:\windows\system32\D3DCompiler_40.dll
2014-06-16 17:30 . 2008-10-15 09:22 2036576 ----a-w- c:\windows\SysWow64\D3DCompiler_40.dll
2014-06-16 17:30 . 2008-10-15 09:22 5631312 ----a-w- c:\windows\system32\D3DX9_40.dll
2014-06-16 17:30 . 2008-10-15 09:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll
2014-06-16 17:24 . 2014-06-21 00:04 -------- d-----w- C:\GSC
2014-06-14 00:04 . 2014-06-14 00:04 -------- d-----w- c:\program files\CCleaner
2014-06-13 19:34 . 2014-06-13 19:34 -------- d-----w- c:\users\User\AppData\Local\THQ
2014-06-12 01:08 . 2014-06-17 00:40 -------- d-----w- c:\program files (x86)\ZHPDiag
2014-06-12 01:08 . 2014-06-17 00:24 -------- d-----w- c:\users\User\AppData\Roaming\ZHP
2014-06-11 21:46 . 2014-06-11 21:46 -------- d-----w- c:\windows\ERUNT
2014-06-06 21:59 . 2014-06-21 13:16 -------- d-----w- C:\zoek_backup
2014-06-06 00:44 . 2010-08-30 11:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-06-06 00:42 . 2014-06-09 16:32 -------- d-----w- C:\AdwCleaner
2014-06-05 01:45 . 2014-06-05 01:45 -------- d-----w- c:\windows\Sun
2014-06-04 23:06 . 2014-06-11 14:00 -------- d-----w- c:\program files (x86)\HQPro-1
2014-06-04 23:03 . 2014-06-24 20:57 -------- d-----w- c:\users\User\AppData\Roaming\ContentExplorer
2014-05-27 19:44 . 2014-05-27 19:44 -------- d-----w- c:\program files (x86)\Ubisoft
.
.
.
((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-21 01:04 . 2014-05-21 01:04 878080 ----a-w- c:\windows\system32\advapi32.dll
2014-05-21 01:04 . 2014-05-21 01:04 859648 ----a-w- c:\windows\system32\tdh.dll
2014-05-21 01:04 . 2014-05-21 01:04 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2014-05-21 01:04 . 2014-05-21 01:04 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2014-05-21 01:04 . 2014-05-21 01:04 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2014-05-21 01:04 . 2014-05-21 01:04 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2014-05-21 01:04 . 2014-05-21 01:04 5549504 ----a-w- c:\windows\system32\ntoskrnl.exe
2014-05-21 01:04 . 2014-05-21 01:04 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2014-05-21 01:04 . 2014-05-21 01:04 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2014-05-21 01:04 . 2014-05-21 01:04 43520 ----a-w- c:\windows\system32\csrsrv.dll
2014-05-21 01:04 . 2014-05-21 01:04 424448 ----a-w- c:\windows\system32\KernelBase.dll
2014-05-21 01:04 . 2014-05-21 01:04 3969472 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2014-05-21 01:04 . 2014-05-21 01:04 3914176 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2014-05-21 01:04 . 2014-05-21 01:04 362496 ----a-w- c:\windows\system32\wow64win.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 338432 ----a-w- c:\windows\system32\conhost.exe
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2014-05-21 01:04 . 2014-05-21 01:04 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2014-05-21 01:04 . 2014-05-21 01:04 243712 ----a-w- c:\windows\system32\wow64.dll
2014-05-21 01:04 . 2014-05-21 01:04 215040 ----a-w- c:\windows\system32\winsrv.dll
2014-05-21 01:04 . 2014-05-21 01:04 2048 ----a-w- c:\windows\SysWow64\user.exe
2014-05-21 01:04 . 2014-05-21 01:04 1732032 ----a-w- c:\windows\system32\ntdll.dll
2014-05-21 01:04 . 2014-05-21 01:04 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2014-05-21 01:04 . 2014-05-21 01:04 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2014-05-21 01:04 . 2014-05-21 01:04 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2014-05-21 01:04 . 2014-05-21 01:04 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2014-05-21 01:04 . 2014-05-21 01:04 1161216 ----a-w- c:\windows\system32\kernel32.dll
2014-05-21 01:04 . 2014-05-21 01:04 112640 ----a-w- c:\windows\system32\smss.exe
2014-05-21 01:04 . 2014-05-21 01:04 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-21 01:04 . 2014-05-21 01:04 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-21 01:03 . 2014-05-21 01:03 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2014-05-21 01:03 . 2014-05-21 01:03 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2014-05-21 01:03 . 2014-05-21 01:03 327168 ----a-w- c:\windows\system32\mswsock.dll
2014-05-21 01:03 . 2014-05-21 01:03 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2014-05-21 01:03 . 2014-05-21 01:03 231424 ----a-w- c:\windows\SysWow64\mswsock.dll
2014-05-21 01:03 . 2014-05-21 01:03 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2014-05-21 01:03 . 2014-05-21 01:03 68608 ----a-w- c:\windows\system32\taskhost.exe
2014-05-21 01:01 . 2014-05-21 01:01 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-21 01:01 . 2014-05-21 01:01 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-21 01:01 . 2014-05-21 01:01 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2014-05-21 01:01 . 2014-05-21 01:01 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2014-05-21 01:01 . 2014-05-21 01:01 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-21 01:01 . 2014-05-21 01:01 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-21 01:01 . 2014-05-21 01:01 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-21 01:01 . 2014-05-21 01:01 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-21 01:01 . 2014-05-21 01:01 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-05-21 01:01 . 2014-05-21 01:01 465920 ----a-w- c:\windows\system32\WMPhoto.dll
.
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legítimas por padrão não são apresentadas.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 23:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 23:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 23:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18642024]
"uTorrent"="c:\users\User\AppData\Roaming\uTorrent\uTorrent.exe" [2014-04-25 1266520]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
"Crazy.Frog.Racer"="c:\users\User\AppData\Roaming\Crazy.Frog.Racer\upd.exe" [2012-03-16 9728]
"ContentExplorer"="c:\users\User\AppData\Roaming\ContentExplorer\ContentExplorer.exe" [2014-06-24 2429680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-23 402432]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"PowerDVD12DMREngine"="c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe" [2012-01-02 501544]
"PowerDVD12Agent"="c:\program files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe" [2012-01-12 371256]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-26 292848]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]
.
c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Ferramenta de Verificação de Mídia do PMB.lnk - c:\program files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe /noballoononstart [2014-4-20 333088]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AutoUpdateDisableNotify"=dword:00000001
.
R1 badriver;badriver;c:\windows\system32\drivers\badriver.sys;c:\windows\SYSNATIVE\drivers\badriver.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BdApiUtil;BdApiUtil;c:\program files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys;c:\program files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys [x]
R3 BdCameraProtect;BdCameraProtect;c:\program files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys;c:\program files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys [x]
R3 BprotectEx;Baidu ProtectEx;c:\windows\System32\drivers\BprotectEx.sys;c:\windows\SYSNATIVE\drivers\BprotectEx.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PCFApiUtil;PCFApiUtil;c:\program files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys;c:\program files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 iusb3hcs;Driver de comutação do controlador host Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 Bfilter;Baidu Antivirus Minifilter Driver;c:\windows\System32\drivers\Bfilter.sys;c:\windows\SYSNATIVE\drivers\Bfilter.sys [x]
S1 Bfmon;Baidu FS Monitor Driver;c:\windows\System32\drivers\Bfmon.sys;c:\windows\SYSNATIVE\drivers\Bfmon.sys [x]
S1 Bprotect;Baidu Protect;c:\windows\System32\drivers\Bprotect.sys;c:\windows\SYSNATIVE\drivers\Bprotect.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2013/07/30 16:05];c:\program files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl;c:\program files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [x]
S2 CLHNServiceForPowerDVD12;CLHNServiceForPowerDVD12;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [x]
S2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [x]
S2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 ntk_PowerDVD12;ntk_PowerDVD12;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [x]
S2 PSI_SVC_2_x64;Protexis Licensing V2 x64;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe [x]
S3 iusb3hub;Driver para hub Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Driver de controlador host eXtensível Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 RTLE8023x64;Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64) Driver;c:\windows\system32\DRIVERS\Rtenic64.sys;c:\windows\SYSNATIVE\DRIVERS\Rtenic64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-11 22:47 1091912 ----a-w- c:\program files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Conteúdo da pasta 'Tarefas Agendadas'
.
2014-06-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-17 18:31]
.
2014-06-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-04-17 18:22]
.
2014-06-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-04-17 18:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 23:37 2322576 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 23:37 2322576 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 23:37 2322576 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-10-22 7203032]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2013-07-30 4035152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-01-29 391152]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-01-29 771568]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-01-29 770544]
.
------- Scan Suplementar -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <-loopback>
uInternet Settings,ProxyServer = http=127.0.0.1:54514;https=127.0.0.1:54514
IE: &Enviar para o OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.1.1.1
TCP: Interfaces\{2AA5F584-48F4-4717-8706-73E96D441DA6}: NameServer = 8.8.8.8,8.8.4.4
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\02dwc90y.default-1399424852910\
FF - prefs.js: browser.search.defaulturl - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF - prefs.js: browser.startup.homepage - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
.
- - - - ORFÃOS REMOVIDOS - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run- - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl"
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
.
[HKEY_USERS\S-1-5-21-2123034537-1514316849-1306321605-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{91932eaa-ced3-42eb-a64e-a981b8b52330}]
@Denied: (A 2) (Administrators)
@Denied: (A 2) (S-1-5-21-2123034537-1514316849-1306321605-1000)
@Allowed: (Read) (RestrictedCode)
"Flags"=dword:00000400
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.13"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Tempo para conclusão: 2014-06-25 17:45:47
ComboFix-quarantined-files.txt 2014-06-25 20:45
.
Pré-execução: 51.719.471.104 bytes disponíveis
Pós execução: 51.519.672.320 bytes disponíveis
.
- - End Of File - - 3967B4A12033555154FCB8BA8B3B3E4B
A36C5E4F47E84449FF07ED3517B43A31
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Power Max Qua 25 Jun 2014, 18:13

Siga com atenção o procedimento que tinha te passado na resposta anterior e poste o relatório. É muito fácil a execução do Farbar, é só você prestar bastante atenção no que te passei e seguir o passo a passo. E se tiver alguma dúvida, é só perguntar.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por kipper Qua 25 Jun 2014, 18:24

Depois q cliquei em fixbar no FRST64 pareceu esta msg: No fixlixt.txt found.The fixlist.txt should be in the same folder/directory the tool is located


Última edição por kipper em Qua 25 Jun 2014, 18:30, editado 1 vez(es)
kipper
kipper
Iniciante
Iniciante

Mensagens : 48
Reputação : 1
Data de inscrição : 06/06/2014
Idade : 46

Ir para o topo Ir para baixo

zoek - Não consigo eliminar CE_UMBRELLACERT Empty Re: Não consigo eliminar CE_UMBRELLACERT

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Ir para o topo Ir para baixo

Página 1 de 2 1, 2  Seguinte

Ir para o topo

- Tópicos semelhantes

 
Permissões neste sub-fórum
Não podes responder a tópicos