Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking Digg  Social bookmarking Delicious  Social bookmarking Reddit  Social bookmarking Stumbleupon  Social bookmarking Slashdot  Social bookmarking Yahoo  Social bookmarking Google  Social bookmarking Blinklist  Social bookmarking Blogmarks  Social bookmarking Technorati  

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14412 usuários registrados
O último usuário registrado atende pelo nome de LucasDrBr

Os nossos membros postaram um total de 35075 mensagens em 3551 assuntos
Quem está conectado
Não há nenhum usuário online :: Nenhum usuário registrado, Nenhum Invisível e nenhuma Visita :: 1 Motor de busca

Nenhum

O recorde de usuários online foi de 108 em Qui 15 Maio 2014, 21:18
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Julho 2017
SegTerQuaQuiSexSabDom
     12
3456789
10111213141516
17181920212223
24252627282930
31      

Calendário Calendário

Palavras chave


Erro RunDLL

Ver o tópico anterior Ver o tópico seguinte Ir em baixo

Erro RunDLL

Mensagem por Sol Moreira em Qua 10 Set 2014, 21:40

Olá, boa noite.
Sempre que o computador é ligado, uma janela é aberta com a seguinte frase: "RunDLL Houve um problema na inicialização do (...)" Vcs poderiam me ajudar? Desde já agradeço.
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 00:00

Boa Noite! Sol Moreira

< [Você precisa estar registrado e conectado para ver esta imagem.] >

|- Poste o log do HijackThis,segundo a Regra <2.0>.

A+

_________________
Fórum PC Brasil >> O que há de melhor,para desinfectar seu computador!
Fórum SecSecurity >> Não deixem de conhecer!
Fórum iMasters >> Tradição em informática!
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 21:15

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:13:37, on 11/09/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\YTDownloader\YTDownloader.exe
C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\zumodrive.exe
C:\Users\Sol Moreira\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Sol Moreira\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Você precisa estar registrado e conectado para ver este link.]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Você precisa estar registrado e conectado para ver este link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [Você precisa estar registrado e conectado para ver este link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO - {47B614AF-B4CC-485B-B331-BE26F02ED4CC} - C:\Program Files (x86)\Internet Explorer\IEAddon.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\IPS\IPSBHO.DLL
O2 - BHO: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~2\Funmoods\1.5.23.22\bh\escort.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: EgisPBIE - {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisPBIE.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (file missing)
O2 - BHO: Auxiliar de Conexão do Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~2\Funmoods\1.5.23.22\escorTlbr.dll (file missing)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (file missing)
O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [VitaKeyTSR] C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe /run
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\f696e478-1b18-4f3d-ae88-583da6998b87.exe /check
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ZumoDrive] "C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Sol Moreira\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [ZumoDrive] C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk
O4 - HKCU\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
O4 - Startup: Dropbox.lnk = C:\Users\Sol Moreira\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - [Você precisa estar registrado e conectado para ver este link.]
O8 - Extra context menu item: E&xportar para o Microsoft Excel - [Você precisa estar registrado e conectado para ver este link.]
O8 - Extra context menu item: Enviar imagem para Dispositivo &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Enviar página para Dispositivo &Bluetooth ... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Enviar para Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Enviar para Dispositivo &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: [Você precisa estar registrado e conectado para ver este link.]
O15 - Trusted Zone: www14.bancobrasil.com.br
O15 - Trusted Zone: www2.bancobrasil.com.br
O15 - Trusted Zone: [Você precisa estar registrado e conectado para ver este link.]
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Service - Egis Technology Inc. - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Gbp Service (GbpSv) - GAS Tecnologia - C:\PROGRA~2\GbPlugin\GbpSv.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\NIS.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PSafeLockBoxSvc - Unknown owner - C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: ShopperPro Update (SPBIUpd) - ShopperPro - C:\Program Files\Common Files\ShopperPro\spbiu.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10102 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 17791 bytes
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 21:42

Boa Noite! Sol Moreira

|- Baixe: < [Você precisa estar registrado e conectado para ver esta imagem.] > ( ... par Xplode )

|- Ao acessar,clique em "Download Now".
|- Ps: Se utilizar o navegador IE9,desabilite o filtro "SmartScreen".
|- Salve-o no desktop!

< [Você precisa estar registrado e conectado para ver esta imagem.] >

|- Clique direito em adwcleaner.exe,e escolha sua execução como administrador.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Ps: Dê início ao scan,clicando em "Examinar".

< [Você precisa estar registrado e conectado para ver esta imagem.] >

|- Ao concluir,clique "Limpar" >> Ok >> Ok >> Ok.
|- Copie o log ou clique "Relatório".
|- Poste: < C:\AdwCleaner\AdwCleaner[S0].txt >

|- Baixe: < ZHPDiag2.exe >  < [Você precisa estar registrado e conectado para ver esta imagem.] > ( ... de Nicolas Coolman )
|- Ou aqui! << Link!
|- Salve-o no disco local! ( C ou D )
|- Desabilite seu antivírus e execute "ZHPDiag2.exe",para instalar a ferramenta.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Execute o ícone do pergaminho. ( ZHPDiag )

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique "COMPLETA" e aguarde a conclusão!
|- Clique OK e,ao concluir,poste o relatório! ( ZHPDiag.txt )
|- Ps: Como o log será extenso,envie-o à Pjjoint.malekal.

|- Ou acesse: < [Você precisa estar registrado e conectado para ver esta imagem.] >

|- Maiores informações: < |Link| > << Hospedagem!

|- Ou anexe-o |Aqui!| << Link!

|- Ou |aqui!| << Em myfile.tk

A+
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 22:10

# AdwCleaner v3.309 - Relatório criado 11/09/2014 às 22:04:56
# Atualizado 02/09/2014 por Xplode
# Sistema Operacional : Windows 7 Home Premium Service Pack 1 (64 bits)
# Usuário : Sol Moreira - SOLMOREIRA-HP
# Executando de : C:\Users\Sol Moreira\Downloads\adwcleaner_3.309.exe
# Opção : Limpar

***** [ Serviços ] *****

Serviço Deletada : sbmntr
Serviço Deletada : SPBIUpd
Serviço Deletada : SPBIUpdd

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\ProgramData\apn
Pasta Deletada : C:\ProgramData\Ask
Pasta Deletada : C:\ProgramData\Babylon
Pasta Deletada : C:\ProgramData\BonanzaDealsLive
Pasta Deletada : C:\ProgramData\SaveSenseLive
Pasta Deletada : C:\ProgramData\ShopperPro
Pasta Deletada : C:\ProgramData\SweetIM
Pasta Deletada : C:\ProgramData\Tarma Installer
Pasta Deletada : C:\Program Files (x86)\baidu
Pasta Deletada : C:\Program Files (x86)\BonanzaDeals
Pasta Deletada : C:\Program Files (x86)\BonanzaDealsLive
Pasta Deletada : C:\Program Files (x86)\Browser Helper Object
Pasta Deletada : C:\Program Files (x86)\CS Browser Assistant 2.0
Pasta Deletada : C:\Program Files (x86)\CSBrowserHelper
Pasta Deletada : C:\Program Files (x86)\predm
Pasta Deletada : C:\Program Files (x86)\SaveSenseLive
Pasta Deletada : C:\Program Files (x86)\ShopperPro
Pasta Deletada : C:\Program Files (x86)\SweetIM
Pasta Deletada : C:\Program Files (x86)\YTDownloader
Pasta Deletada : C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Pasta Deletada : C:\Program Files\003
Pasta Deletada : C:\Program Files\SupraSavings
Pasta Deletada : C:\Users\SOLMOR~1\AppData\Local\Temp\apn
Pasta Deletada : C:\Users\SOLMOR~1\AppData\Local\Temp\mt_ffx
Pasta Deletada : C:\Users\Public\Documents\ShopperPro
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\BonanzaDealsLive
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\lollipop
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\PackageAware
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\SaveSenseLive
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\VNT
Pasta Deletada : C:\Users\Sol Moreira\AppData\LocalLow\BabylonToolbar
Pasta Deletada : C:\Users\Sol Moreira\AppData\LocalLow\Conduit
Pasta Deletada : C:\Users\Sol Moreira\AppData\LocalLow\Funmoods
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\Babylon
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\baidu
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\DSite
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\MetaCrawler
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\SaveSense
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\Systweak
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\UpdaterEX
Pasta Deletada : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Pasta Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Arquivo Deletada : C:\END
Arquivo Deletada : C:\Windows\SysWOW64\SecureAssist.dll
Arquivo Deletada : C:\Windows\System32\roboot64.exe
Arquivo Deletada : C:\Windows\System32\SecureAssist64.dll
Arquivo Deletada : C:\Users\SOLMOR~1\AppData\Local\Temp\Uninstall.exe
Arquivo Deletada : C:\Users\Sol Moreira\AppData\Local\funmoods.crx
Arquivo Deletada : C:\Users\Sol Moreira\AppData\Local\funmoods-speeddial.crx
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\user.js
Arquivo Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx
Arquivo Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Arquivo Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Arquivo Deletada : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Tarefas ] *****

Tarefa Deletedo : DSite
Tarefa Deletedo : SaveSense
Tarefa Deletedo : SMupdate1
Tarefa Deletedo : UpdaterEX
Tarefa Deletedo : YTDownloader

***** [ Atalhos ] *****

Atalho Desinfectada : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Atalho Desinfectada : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
Atalho Desinfectada : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Atalho Desinfectada : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Atalho Desinfectada : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registro ] *****

Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [HelperFramework@ZoneMedia.com]
Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_start@gmail.com]
Chave Deletedo : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\kkkeikdkpjenmoiicggnnodbkebafgpc
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Chave Deletedo : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\[Você precisa estar registrado e conectado para ver este link.]
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\[Você precisa estar registrado e conectado para ver este link.]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Chave Deletedo : HKLM\SOFTWARE\Classes\f
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.dskBnd
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.dskBnd.1
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr.1
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoodsApp.appCore
Chave Deletedo : HKLM\SOFTWARE\Classes\funmoodsApp.appCore.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Chave Deletedo : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Chave Deletedo : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Chave Deletedo : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Prod.cap
Chave Deletedo : HKLM\SOFTWARE\Classes\sim-packages
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsLatest_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsLatest_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\updateglindorus_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\updateglindorus_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\utilglindorus_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\utilglindorus_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Chave Deletedo : HKCU\Software\5d55d9ddb73ce914
Chave Deletedo : HKLM\SOFTWARE\5d55d9ddb73ce914
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0044286.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0044286.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0044286.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0044286.Sandbox.1
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{47B614AF-B4CC-485B-B331-BE26F02ED4CC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422422286}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455425586}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466426686}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{9863E762-BACC-46E4-8CAA-2A6ADA06B65B}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444424486}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{47B614AF-B4CC-485B-B331-BE26F02ED4CC}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{47B614AF-B4CC-485B-B331-BE26F02ED4CC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{47B614AF-B4CC-485B-B331-BE26F02ED4CC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422422286}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455425586}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466426686}
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Dados Restaurada : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\BonanzaDealsLive
Chave Deletedo : HKCU\Software\BrowserMngr
Chave Deletedo : HKCU\Software\DataMngr
[#] Chave Deletedo : HKCU\Software\DataMngr_Toolbar
Chave Deletedo : HKCU\Software\dsiteproducts
Chave Deletedo : HKCU\Software\FreeSoftToday
Chave Deletedo : HKCU\Software\Iminent
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKCU\Software\InstalledBrowserExtensions
Chave Deletedo : HKCU\Software\lollipop
Chave Deletedo : HKCU\Software\PIP
Chave Deletedo : HKCU\Software\SaveSenseLive
Chave Deletedo : HKCU\Software\SweetIM
Chave Deletedo : HKCU\Software\TutoTag
Chave Deletedo : HKCU\Software\UpdaterEX
Chave Deletedo : HKCU\Software\AppDataLow\Software\Crossrider
Chave Deletedo : HKCU\Software\AppDataLow\Software\Rr Savings
Chave Deletedo : HKCU\Software\AppDataLow\Software\Supra Savings
Chave Deletedo : HKCU\Software\AppDataLow\Software\CS Browser Assistant 2.0
Chave Deletedo : HKLM\SOFTWARE\Babylon
Chave Deletedo : HKLM\SOFTWARE\BonanzaDealsLive
Chave Deletedo : HKLM\SOFTWARE\BrowserMngr
Chave Deletedo : HKLM\SOFTWARE\DeviceVM
Chave Deletedo : HKLM\SOFTWARE\Free_soft_today
Chave Deletedo : HKLM\SOFTWARE\Iminent
Chave Deletedo : HKLM\SOFTWARE\InstallCore
Chave Deletedo : HKLM\SOFTWARE\PIP
Chave Deletedo : HKLM\SOFTWARE\SaveSenseLive
Chave Deletedo : HKLM\SOFTWARE\suprasavings
Chave Deletedo : HKLM\SOFTWARE\SweetIM
Chave Deletedo : HKLM\SOFTWARE\systweak
Chave Deletedo : HKLM\SOFTWARE\Tutorials
Chave Deletedo : HKLM\SOFTWARE\webssearchesSoftware
Chave Deletedo : HKLM\SOFTWARE\CS Browser Assistant 2.0
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\UpdaterEX
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Browser Helper Object1.4
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CS Browser Assistant 2.0
Chave Deletedo : [x64] HKLM\SOFTWARE\DeviceVM
Chave Deletedo : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Chave Deletedo : [x64] HKLM\SOFTWARE\Supra Savings
Chave Deletedo : [x64] HKLM\SOFTWARE\suprasavings
Chave Deletedo : [x64] HKLM\SOFTWARE\Tarma Installer
Chave Deletedo : HKLM\SOFTWARE\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Chave Deletedo : HKLM\SOFTWARE\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Chave Deletedo : HKLM\SOFTWARE\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Chave Deletedo : HKLM\SOFTWARE\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe

***** [ Navegadores ] *****

-\\ Internet Explorer v11.0.9600.17239

Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.Old.Start Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v

[ Arquivo : C:\Users\Sol Moreira\AppData\Roaming\Mozilla\Firefox\Profiles\tur4758c.default-1406858324900\prefs.js ]


-\\ Google Chrome v37.0.2062.103

[ Arquivo : C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deletedo [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]
Deletedo [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]
Deletedo [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]
Deletedo [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]
Deletedo [Extension] : bbjciahceamgodcoidkjpchnokgfpphh
Deletedo [Extension] : cjpglkicenollcignonpgiafdgfeehoj
Deletedo [Extension] : mkfokfffehpeedafpekjeddnmnjhmcmk
Deletedo [Extension] : ogccgbmabaphcakpiclgcnmcnimhokcj
Deletedo [Extension] : pelmeidfhdlhlbjimpabfcbnnojbboma

*************************

AdwCleaner[R0].txt - [49469 octets] - [11/09/2014 22:02:55]
AdwCleaner[S0].txt - [44035 octets] - [11/09/2014 22:04:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [44096 octets] ##########
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 22:16

> Boa Noite! Sol Moreira <


"Seja Bem Vindo ao Fórum PC Brasil!"  :rindo_ate_agor

> Recomendo que anexe o log de ZHPDiag.

A+


Última edição por joram em Qui 11 Set 2014, 22:35, editado 1 vez(es)

_________________
Fórum PC Brasil >> O que há de melhor,para desinfectar seu computador!
Fórum SecSecurity >> Não deixem de conhecer!
Fórum iMasters >> Tradição em informática!
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 22:35

Spoiler:
~ Relatório do ZHPDiag v2014.9.10.132 - Nicolas Coolman  (10/09/2014)
~ Iniciado por Sol Moreira (11/09/2014 22:23:54)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Endereço do Webforum : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão : Versão atualizada.
~  Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Deactivate by program


---\\ Navegadores Internet
MSIE: Internet Explorer v11.0.9600.17239
GCIE: Google Chrome v37.0.2062.103 (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK

---\\ Softwares de proteçao do sistema
Norton Internet Security v21.5.0.19
Windows Defender W7 (Deactivate)

---\\ Softwares d'optimização do sistema

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Reader XI

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3893 MB (49% free)
System Restore: Activé (Enable)
System drive C: has 382 GB (82%) free of 465 GB

---\\ Modo de conexão ao sistema
~ Computer Name: SOLMOREIRA-HP
~ User Name: Sol Moreira
~ All Users Names: Sol Moreira, Convidado, Administrador, 
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Sol Moreira\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Sol Moreira\AppData\Roaming\
~ %Desktop% : C:\Users\Sol Moreira\Desktop\
~ %Favorites% : C:\Users\Sol Moreira\Favorites\
~ %LocalAppData% : C:\Users\Sol Moreira\AppData\Local\
~ %StartMenu% : C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 382 Go of 465 Go)
D: CD-ROM drive (Not Inserted)
E: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 46 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) (.25/02/2011 - 03:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.13/07/2009 - 22:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.8E71A5CB5312B8392D4DA4CA37BB5868] - (.Microsoft Corporation - Internet Extensions para Win32.) (.25/07/2014 - 07:52:06.) -- C:\Windows\System32\wininet.dll [2266624]
[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.04/03/2014 - 06:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.20/11/2010 - 10:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 03:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 22:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 20:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 06:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 06:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 07:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) (.13/07/2009 - 20:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 21:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.26/04/2011 - 23:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 06:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.23/01/2014 - 23:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) (.13/07/2009 - 21:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 07:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 21:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 06:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.20/11/2010 - 10:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 2/4318
~ Mes musiques (My Musics) : 1/776
~ Mes Videos (My Videos) : 5/135
~ Mes Favoris (My Favorites) : 1/20
~ Mes Documents (My Documents) : 1/2008
~ Mon Bureau (My Desktop) : 2/207
~ Menu demarrer (Programs) : 1/31
~ Hidden Files:  Scanned in 00mn 06s



---\\ Processos lançados
[MD5.1841BE26ACDFEFF72BC5E7FB938D3612] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe   [546104] [PID.928]
[MD5.DA97E7798C1B1B265436BF6B2026E74D] - (.Symantec Corporation - Norton Internet Security.) -- C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\NIS.exe   [276376] [PID.2044]
[MD5.F44431CFD96428206039D3556311BF1B] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   [19876968] [PID.4748]
[MD5.7A5EB602B07F3412EBB5D2E94E21754A] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Sol Moreira\AppData\Roaming\Dropbox\bin\Dropbox.exe   [36414496] [PID.4848]
[MD5.BB390EAFEF93758463D7CA1E1B488A41] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe   [284696] [PID.2432]
[MD5.27964C4676D0F4B34DB7332AFA2B1474] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe   [401192] [PID.2240]
[MD5.BE0D00E571BB30CAC3785507CD0C6465] - (.Zecter Inc. - HP CloudDrive.) -- C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\zumodrive.exe   [154816] [PID.2856]
[MD5.B3F1E9E1C9425369C4F0A1DEFFFAADCA] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe   [587320] [PID.4412]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\RunDll32.exe   [0] [PID.1104]
[MD5.6C695B04E2E29459CDC2E5C0970B883B] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe   [201512] [PID.5464]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe   [136488] [PID.4704]
[MD5.DF3EC5F7ABD8AC1BE5C0C9486029826E] - (.Broadcom Corporation. - Bluetooth Headset Skype Proxy.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe   [13600] [PID.2536]
[MD5.0706DDBD4EA0D122CA069FF2552E20FD] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe   [852808] [PID.2596]
[MD5.80B582A109C0E361408409183D18FDEB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [8102400] [PID.3476]
~ Processes Running:  Scanned in 00mn 00s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Sol Moreira\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [iikflkcanblccfahdhdonehdalibjnif] Norton Identity Safe v.1.0.5 (Désactivé)
G2 - GCE: Preference [User Data\Default] [jojaakapkmahmjjhblpccpbgfjdlpoce] CS Browser Assistant 2.0 v.1.26.76, (Activé)
G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 21 Legitimates Filtered in 00mn 11s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/bb] - (.GAS Tecnologia - Internet Banking Helper.) -- C:\Users\Sol Moreira\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll
~ Firefox Browser: 4 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
~ IE Browser: 25 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File:  Scanned in 00mn 00s



---\\ Browser Helper Objects do navegador (02)
O2 - BHO: G-Buster Browser Defense [64Bits] - {C41A1C0E-EA6C-11D4-B1B8-444553540000} . (.Banco do Brasil - Gbieh Module.) -- C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll
~ BHO: 17 Legitimates Filtered in 00mn 00s



---\\ Barras do Internet Explorer (03))
O3 - Toolbar: avast! WebRep - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (...) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
O3 - Toolbar: Norton Toolbar - [HKLM]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (.Symantec Corporation - coIEPlugIn.) -- C:\Program Files (x86)\Norton Internet Security\Engine64\21.5.0.19\coIEPlg.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Chave orfã
~ Toolbar:  Scanned in 00mn 00s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [IntelWireless] . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe 
O4 - HKLM\..\Run: [HPWirelessAssistant] . (...) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 
O4 - HKLM\..\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe 
O4 - HKLM\..\RunOnce: [NCPluginUpdater] . (.Hewlett-Packard - NCPluginUpdater.) -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe 
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Sol Moreira\AppData\Local\Facebook\Update\FacebookUpdate.exe 
O4 - HKCU\..\Run: [ZumoDrive] . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk 
O4 - HKCU\..\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.)   =>PUP.YTDownloader
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 
O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe 
O4 - HKLM\..\Wow6432Node\Run: [EgisUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe 
O4 - HKLM\..\Wow6432Node\Run: [VitaKeyTSR] . (.Egis Technology Inc. - HP SimplePass Identity Protection.) -- C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe   =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\f696e478-1b18-4f3d-ae88-583da6998b87.exe (.not file.) 
O4 - HKLM\..\Wow6432Node\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (.not file.) 
O4 - HKLM\..\Wow6432Node\Run: [ZumoDrive] . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk 
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe 
O4 - HKLM\..\Wow6432Node\Run: [fst_br_109] Chave orfã
O4 - HKLM\..\Wow6432Node\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.)   =>PUP.YTDownloader
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe   =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe   =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4272588971-2352618053-980787506-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-4272588971-2352618053-980787506-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Sol Moreira\AppData\Local\Facebook\Update\FacebookUpdate.exe 
O4 - HKUS\S-1-5-21-4272588971-2352618053-980787506-1000\..\Run: [ZumoDrive] . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk 
O4 - HKUS\S-1-5-21-4272588971-2352618053-980787506-1000\..\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.)   =>PUP.YTDownloader
~ Application:  Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\Resources\Icons\HP.ico
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\Domains\www] *.bancobrasil.com.br
O15 - Trusted Zone: [HKCU\...\Domains\www] *.bb.com.br
~ IE Zone Confiance:  Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A1E14958-6B47-4CB9-BD8F-09B32691AFD9}: DhcpNameServer = 189.124.132.33 189.124.132.32
O17 - HKLM\System\CS1\Services\Tcpip\..\{A1E14958-6B47-4CB9-BD8F-09B32691AFD9}: DhcpNameServer = 189.124.132.33 189.124.132.32
O17 - HKLM\System\CS2\Services\Tcpip\..\{A1E14958-6B47-4CB9-BD8F-09B32691AFD9}: DhcpNameServer = 189.124.132.33 189.124.132.32
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 189.124.132.33 189.124.132.32
~ Domain:  Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- 
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
O23 - Service: PSafeLockBoxSvc (PSafeLockBoxSvc) . (...) - C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe (.not file.)
~ Services: 22 Legitimates Filtered in 00mn 04s



---\\ Tarefas planificadas automaticamente (039)
[MD5.F498F9A6044DE57744BD465662E6AD77] [APT] [BHO updater] (...) -- C:\Program Files (x86)\Internet Explorer\Updater.exe   [117760]
[MD5.00000000000000000000000000000000] [APT] [CS Browser Assistant 2.0-codedownloader] (...) -- C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-codedownloader.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [CS Browser Assistant 2.0-updater] (...) -- C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-updater.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [YTDownloaderUpd] (...) -- C:\Program Files (x86)\YTDownloader\updater.exe (.not file.)   [0]  =>PUP.YTDownloader
[MD5.00000000000000000000000000000000] [APT] [{611F743E-37F3-4F4F-9F2F-A1FC2F8FFD3D}] (...) -- c:\users\Sol Moreira\appdata\local\lollipop\lollipop.bat" (.not file.)   [0]  =>Adware.Lollipop
[MD5.00000000000000000000000000000000] [APT] [{C8FFA92D-02DE-4F89-A2AC-68A9F9344E36}] (...) -- C:\Program Files (x86)\Baidu Security\PC Faster\3.7.0.0\UninstCaller.exe (.not file.)   [0]
O39 - APT: CS Browser Assistant 2.0-codedownloader - (...) -- C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job   [1292]  =>PUP.CrossRider
O39 - APT: CS Browser Assistant 2.0-codedownloader - (...) -- C:\Windows\System32\Tasks\CS Browser Assistant 2.0-codedownloader   [1292]  =>PUP.CrossRider
O39 - APT: CS Browser Assistant 2.0-updater - (...) -- C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job   [1390]  =>PUP.CrossRider
O39 - APT: CS Browser Assistant 2.0-updater - (...) -- C:\Windows\System32\Tasks\CS Browser Assistant 2.0-updater   [1390]  =>PUP.CrossRider
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000Core   [930]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000UA   [952]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore   [1074]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA   [1078]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\HPCeeScheduleForSol Moreira   [356]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\HPCeeScheduleForSOLMOREIRA-HP$   [354]
~ Scheduled Task: 37 Legitimates Filtered in 00mn 06s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver:  (ssnfd) . (. - .) - C:\Windows\System32\drivers\ssnfd.sys (.not file.)
~ Drivers: 91 Legitimates Filtered in 00mn 36s



---\\ Software instalados (042)
O42 - Logiciel: Módulo de Segurança - Banco do Brasil - (...) [HKLM][64Bits] -- {36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1
~ Logic: 49 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AutoHelpDesk]
[HKCU\Software\Baidu Security]
[HKCU\Software\Baidu]
[HKCU\Software\GbAs]
[HKCU\Software\YTDownloader]  =>PUP.YTDownloader
[HKLM\Software\5B99CC8D-7BAF-430A-9C63-67C9980E3ED8]
[HKLM\Software\Baidu Security]
[HKLM\Software\ShopperPro]  =>PUP.ShopperPro
[HKLM\Software\SupraSavings ]  =>PUP.SupraSavings
[HKLM\Software\Wow6432Node\360Safe]
[HKLM\Software\Wow6432Node\AutoHelpDesk]
[HKLM\Software\Wow6432Node\Baidu Security]
[HKLM\Software\Wow6432Node\Baidu]
[HKLM\Software\Wow6432Node\Baidu_Drp_pos]
[HKLM\Software\Wow6432Node\SearchSnacks]
[HKLM\Software\YTDownloader]  =>PUP.YTDownloader
~ Key Software: 330 Legitimates Filtered in 00mn 00s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 04/09/2014 - 22:22:42 - [] ----D C:\Program Files (x86)\5B99CC8D-7BAF-430A-9C63-67C9980E3ED8
O43 - CFD: 24/09/2013 - 20:41:15 - [] ----D C:\Program Files (x86)\Baidu Security
O43 - CFD: 28/11/2013 - 01:44:47 - [] ----D C:\Program Files (x86)\VIVO INTERNET
O43 - CFD: 06/04/2014 - 21:34:32 - [] ----D C:\ProgramData\Baidu Security
O43 - CFD: 06/08/2013 - 21:00:05 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 16/02/2014 - 12:24:06 - [] ----D C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
O43 - CFD: 24/09/2013 - 20:41:15 - [] ----D C:\Users\Sol Moreira\AppData\Roaming\Baidu Security
O43 - CFD: 28/01/2014 - 00:26:48 - [] ----D C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
O43 - CFD: 29/09/2013 - 00:51:26 - [0] ----D C:\Users\Sol Moreira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hao123
~ 230 Dossier CLSID vide (CLSID Empty Folder)
~ Program Folder: 432 Legitimates Filtered in 00mn 04s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.D392CC69AB330B344A89005BB50D36E7] - 11/09/2014 - 22:13:15 ---A- . (...) -- C:\Windows\System32\prfc0416.dat   [148058]
O44 - LFC:[MD5.C527888ED267CDCA753DF38133007D14] - 11/09/2014 - 22:13:15 ---A- . (...) -- C:\Windows\System32\prfh0416.dat   [706476]
~ Files: 14 Legitimates Filtered in 00mn 02s



---\\ Chave do registo Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{2bd4bb5e-e72b-11e2-b983-8ca9829625d6}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{9513555e-d5ef-11e2-ad1b-8c0f1f5e00c8}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{95135568-d5ef-11e2-ad1b-8c0f1f5e00c8}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{9513557e-d5ef-11e2-ad1b-8c0f1f5e00c8}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{9513558a-d5ef-11e2-ad1b-8c0f1f5e00c8}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{baf21406-ea48-11e2-afd6-8ca9829625d6}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
O51 - MPSK:{d87433b2-dac3-11e2-b3b5-9ac99907216b}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
O51 - MPSK:{d87433bf-dac3-11e2-b3b5-9ac99907216b}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
O51 - MPSK:{e88612ca-d684-11e2-8e16-8ca9829625d6}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{e8f783fc-e838-11e2-ba1b-8ca9829625d6}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
~ Keys:  Scanned in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:31/05/2012 - 21:21:04 R--A- . (.360.cn - 360HipsOEM.) -- C:\Windows\System32\Drivers\360FltOEM.sys   [289952]
O58 - SDL:28/06/2013 - 22:02:38 ---A- . (...) -- C:\Windows\System32\Drivers\aswSnx.sys.sum   [175]
O58 - SDL:28/06/2013 - 22:02:38 ---A- . (...) -- C:\Windows\System32\Drivers\aswSP.sys.sum   [175]
O58 - SDL:28/06/2013 - 22:02:38 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys.sum   [175]  =>.ALWIL Software
O58 - SDL:13/07/2009 - 22:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys   [530496]
O58 - SDL:10/06/2009 - 17:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys   [31232]
O58 - SDL:13/07/2009 - 22:45:55 ---A- . (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys   [24656]
O58 - SDL:27/09/2010 - 16:26:02 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys   [515584]
O58 - SDL:08/05/2013 - 09:52:48 ---A- . (.GAS Tecnologia - GbPlugin Device Driver.) -- C:\Windows\SysWOW64\drivers\gbpkm.sys   [49536]
O58 - SDL:06/03/2014 - 17:37:16 ---A- . (.GbPlugin NDIS Device Driver - GbPlugin NDIS Device Driver.) -- C:\Windows\SysWOW64\drivers\gbpndisrd.sys   [31088]
~ Drivers: 82 Legitimates Filtered in 00mn 04s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Lista dos serviços Legacy du registo (064)
O64 - Services: CurCS - 21/08/2014 - C:\Program Files (x86)\Norton Internet Security\NortonData\21.2.0.38\Definitions\BASHDefs\20140821.007\BHDrvx64.sys (BHDrvx64)  .(.Symantec Corporation - BASH Driver.) - LEGACY_BHDRVX64
O64 - Services: CurCS - 09/09/2014 - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (eeCtrl)  .(.Symantec Corporation - Symantec Eraser Control Driver.) - LEGACY_EECTRL
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 30/10/2013 - C:\Windows\system32\drivers\NISx64\1505000.013\SRTSPX64.sys (SRTSPX)  .(.Symantec Corporation - Symantec AutoProtect.) - LEGACY_SRTSPX
~ Legacy: 106 Legitimates Filtered in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - [Você precisa estar registrado e conectado para ver este link.]  =>PUP.HelperBar
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - [Você precisa estar registrado e conectado para ver este link.]  =>PUP.HelperBar
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.54A4030F00F4D30F35AA460394535E5A] [SPRF][08/06/2014] (...) -- C:\Users\Sol Moreira\AppData\Roaming\unins000.dat   [16394]
[MD5.6E0BB5B9C845CDC764B2998FE612F73E] [SPRF][08/06/2014] (.No owner - Setup/Uninstall.) -- C:\Users\Sol Moreira\AppData\Roaming\unins000.exe   [815314]
[MD5.13EC9896CB74B8BD8F6C92135DFACD20] [SPRF][11/09/2014] (...) -- C:\Users\Sol Moreira\Desktop\adwcleaner_3.309.exe   [1370467]
~ Files: 3 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][23/06/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\11f454.msi   [3760128]  =>PUP.SweetIM
[MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][23/06/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\11f462.msi   [2997248]  =>PUP.SweetIM
~ WIS: 2 Legitimates Filtered in 00mn 06s



---\\ Search Tracing Registry Key (O100)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32  =>Toolbar.Bing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\funmoodssrv_RASAPI32  =>PUP.Funmoods
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\funmoodssrv_RASMANCS  =>PUP.Funmoods
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Muvic_RASAPI32  =>Hijacker.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Muvic_RASMANCS  =>Hijacker.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\uTorrent_RASAPI32  =>P2P.µTorrent
~ BTK: 271 Legitimates Filtered in 00mn 00s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Auto 10/07/1658 0 |  (avast! Antivirus) . (...) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 18/06/2010 246520 |  (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 31/07/2014 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 31/07/2014 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 12/12/2013 136120 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 05/03/2010 340240 |  (MyWiFiDHCPDNS) . (...) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
SS - | Auto 10/07/1658 0 |  (PSafeLockBoxSvc) . (...) - C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe
SS - | Auto 21/06/2013 162408 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 13/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Demand 10/07/1658 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
SR - | Auto 21/12/2013 65432 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 27/09/2010 89600 |  (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe
SR - | Auto 09/09/2010 203264 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 29/07/2010 951584 |  (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 14/06/2010 697712 |  (EgisTec Service) . (.Egis Technology Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe
SR - | Auto 14/06/2010 646000 |  (EgisTec Ticket Service) . (.Egis Technology Inc..) - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
SR - | Auto 05/03/2010 1425168 |  (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SR - | Auto 21/07/2014 546104 |  (GbpSv) . (.GAS Tecnologia.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
SR - | Auto 04/11/2013 92160 |  (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe  =>.Hewlett-Packard Co
SR - | Auto 21/07/2010 103992 |  (HP Wireless Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
SR - | Auto 05/08/2010 291896 |  (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
SR - | Demand 13/05/2013 1129760 |  (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 15/06/2010 30520 |  (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 14/06/2011 26680 |  (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 27/04/2010 13336 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Auto 03/05/2010 325656 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 31/07/2014 276376 |  (NIS) . (.Symantec Corporation.) - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\NIS.exe
SR - | Auto 05/03/2010 831760 |  (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - | Auto 27/09/2010 271360 |  (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SR - | Auto 03/05/2010 2533400 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 23/02/2010 2192176 |  (vcsFPService) . (.Validity Sensors, Inc..) - C:\Windows\system32\vcsFPService.exe
SR - | Auto 13/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services:  Scanned in 00mn 07s



---\\ Scâner Aditional (088)
Database Version : 13026 - (10/09/2014)
Clés trouvées (Keys found) : 8
Valeurs trouvées (Values found) : 2
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 12

[HKLM\Software\Classes\AppID\ieaddon.dll]   =>Trojan.FakeAlert
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32]   =>Toolbar.Bing
[HKLM\Software\Wow6432Node\360Safe]   =>Trojan.Lozavita
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411421186}]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411421186}]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411421186}]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094]   =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536]   =>PUP.SweetIM^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:YTDownloader   =>PUP.YTDownloader^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:YTDownloader   =>PUP.YTDownloader^
C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job   =>PUP.CrossRider^
C:\Windows\System32\Tasks\CS Browser Assistant 2.0-codedownloader   =>PUP.CrossRider^
C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job   =>PUP.CrossRider^
C:\Windows\System32\Tasks\CS Browser Assistant 2.0-updater   =>PUP.CrossRider^
[HKCU\Software\YTDownloader]   =>PUP.YTDownloader^
[HKLM\Software\ShopperPro]   =>PUP.ShopperPro^
[HKLM\Software\SupraSavings ]   =>PUP.SupraSavings^
[HKLM\Software\YTDownloader]   =>PUP.YTDownloader^
C:\Windows\Installer\11f454.msi   =>PUP.SweetIM^
C:\Windows\Installer\11f462.msi   =>PUP.SweetIM^
C:\Program Files (x86)\Internet Explorer\cr_addon.crx   =>PUP.Babylon
C:\Users\Sol Moreira\AppData\Local\Temp\GoogleToolbarInstaller1.log  =>PUP.Babylon
~ Additionnel Scan: 414140 Items scanned in 00mn 51s



---\\ Informações complémentaires do módulos
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Internet Explorer, Gestão do Proxy (R5)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Browser Helper Objects do navegador (02)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Barras do Internet Explorer (03))
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Aplicações iniciadas por registo & pastas (04)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Chave do registo Shell MountPoints2 (MPKS) (O51)
~ AMI: 6 Legitimates Filtered in 00mn 00s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.YTDownloader
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.Lollipop
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.CrossRider
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.ShopperPro
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SupraSavings
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.HelperBar
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SweetIM
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Funmoods
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.SmartBar
[Você precisa estar registrado e conectado para ver este link.]  =>Trojan.Lozavita
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Babylon
~ MSI: 11 link(s) detected in 00mn 00s



~ 1134 Legitimates filtered by white list
End of the scan (550 lines in 02mn 39s)(0)
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 22:54

Boa Noite! Sol Moreira

|- Execute este script na ferramenta ZHPFix.
|- Selecione e copie estas informações que estão em vermelho,para o Bloco de Notas.
|- Com o Bloco de Notas aberto,faça: ctrl+a >> ctrl+c ( Selecionar e Copiar )
|- À seguir,minimize o Bloco de Notas.

Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Chave orfã
O4 - HKCU\..\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.)
O4 - HKUS\S-1-5-21-4272588971-2352618053-980787506-1000\..\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.)
[MD5.F498F9A6044DE57744BD465662E6AD77] [APT] [BHO updater] (...) -- C:\Program Files (x86)\Internet Explorer\Updater.exe   [117760]
[MD5.00000000000000000000000000000000] [APT] [YTDownloaderUpd] (...) -- C:\Program Files (x86)\YTDownloader\updater.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{611F743E-37F3-4F4F-9F2F-A1FC2F8FFD3D}] (...) -- c:\users\Sol Moreira\appdata\local\lollipop\lollipop.bat" (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [CS Browser Assistant 2.0-codedownloader] (...) -- C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-codedownloader.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [CS Browser Assistant 2.0-updater] (...) -- C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-updater.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{C8FFA92D-02DE-4F89-A2AC-68A9F9344E36}] (...) -- C:\Program Files (x86)\Baidu Security\PC Faster\3.7.0.0\UninstCaller.exe (.not file.)   [0]
O23 - Service: PSafeLockBoxSvc (PSafeLockBoxSvc) . (...) - C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe (.not file.)
O39 - APT: CS Browser Assistant 2.0-codedownloader - (...) -- C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job   [1292]
O39 - APT: CS Browser Assistant 2.0-codedownloader - (...) -- C:\Windows\System32\Tasks\CS Browser Assistant 2.0-codedownloader   [1292]
O39 - APT: CS Browser Assistant 2.0-updater - (...) -- C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job   [1390]
O39 - APT: CS Browser Assistant 2.0-updater - (...) -- C:\Windows\System32\Tasks\CS Browser Assistant 2.0-updater   [1390]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000Core   [930]
O39 - APT:  - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000UA   [952]
O41 - Driver:  (ssnfd) . (. - .) - C:\Windows\System32\drivers\ssnfd.sys (.not file.)
O43 - CFD: 06/08/2013 - 21:00:05 - [] ----D C:\ProgramData\boost_interprocess
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - [Você precisa estar registrado e conectado para ver este link.]
[MD5.6E0BB5B9C845CDC764B2998FE612F73E] [SPRF][08/06/2014] (.No owner - Setup/Uninstall.) -- C:\Users\Sol Moreira\AppData\Roaming\unins000.exe   [815314]
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][23/06/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\11f454.msi   [3760128]
[MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][23/06/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\11f462.msi   [2997248]
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\funmoodssrv_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\funmoodssrv_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Muvic_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Muvic_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32]
[HKLM\Software\Classes\AppID\ieaddon.dll]
[HKLM\Software\Wow6432Node\360Safe]
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411421186}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411421186}]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411421186}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536]
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:YTDownloader
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:YTDownloader
[HKCU\Software\YTDownloader]
[HKLM\Software\ShopperPro]
[HKLM\Software\SupraSavings ]
[HKLM\Software\YTDownloader]
C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job
C:\Windows\System32\Tasks\CS Browser Assistant 2.0-codedownloader
C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job
C:\Windows\System32\Tasks\CS Browser Assistant 2.0-updater
C:\Windows\Installer\11f454.msi
C:\Windows\Installer\11f462.msi
C:\Program Files (x86)\Internet Explorer\cr_addon.crx
C:\Users\Sol Moreira\AppData\Local\Temp\GoogleToolbarInstaller1.log
ServiceStop:ssnfd
ServiceStop:PSafeLockBoxSvc
ProxyFix


|- Abra a ferramenta ZHPFix. < [Você precisa estar registrado e conectado para ver esta imagem.] >
|- Clique IMPORTAÇÃO >> OK.
|- Ao clicar OK,verifique se não vai ao campo da ferramenta,elementos estranhos ao script proposto.
|- Clique "GO".
|- Poste o relatório!

A+
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 23:00

Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre : 
Run by Sol Moreira at 11/09/2014 22:57:47
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Reciclagem vazia (00mn 14s)
Prefetcher vazio

========== Estado dos serviços ==========
ssnfd Parado
PSafeLockBoxSvc Parado

========== Chaves do Registo ==========
ELIMINÉ: Service: PSafeLockBoxSvc
ELIMINÉ Driver Key: ssnfd
ELIMINÉ:* SearchScopes :{006ee092-9658-4fd6-bd8e-a21a348e59f5}
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\funmoodssrv_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\funmoodssrv_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Muvic_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Muvic_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32
ELIMINÉ: HKLM\Software\Classes\AppID\ieaddon.dll
ELIMINÉ: HKLM\Software\Wow6432Node\360Safe
ELIMINÉ:* HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411421186}
ELIMINÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411421186}
ELIMINÉ: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411421186}
ELIMINÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
ELIMINÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
ELIMINÉ: HKCU\Software\YTDownloader
ELIMINÉ:* HKLM\Software\ShopperPro
ELIMINÉ:* HKLM\Software\SupraSavings 
ELIMINÉ:* HKLM\Software\YTDownloader

========== Valores do Registo ==========
Ausente Valor Perfil Padrão: FirewallRaz : 
Ausente Valor Perfil Domínio FirewallRaz : 
ELIMINÉ: FirewallRaz (None) : {208501B7-6031-4764-9AD6-627AF535D0CF}
ELIMINÉ: FirewallRaz (Domain) : NetPres-In-TCP-NoScope
ELIMINÉ: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope
ELIMINÉ: FirewallRaz (None) : NetPres-WSD-In-UDP
ELIMINÉ: FirewallRaz (None) : NetPres-WSD-Out-UDP
ELIMINÉ: FirewallRaz (Public) : NetPres-In-TCP
ELIMINÉ: FirewallRaz (Public) : NetPres-Out-TCP
ELIMINÉ: FirewallRaz (None) : {E062B458-D066-4167-B6A4-D53599CC7045}
ELIMINÉ: FirewallRaz (None) : {CA0E0D53-65F2-430B-B301-F9D5F2DB23E1}
ELIMINÉ: FirewallRaz (None) : {AC60FC9B-1869-4AD3-B335-17BD05A180CC}
ELIMINÉ: FirewallRaz (None) : {B24E0706-C4CC-4C2F-B12D-249470764AC7}
ELIMINÉ: FirewallRaz (None) : {35675AE5-6FE6-4391-B91A-02919F34CB5F}
ELIMINÉ: FirewallRaz (Public) : {EE835E8B-AE9F-4349-A838-67482648E24F}
ELIMINÉ: FirewallRaz (Public) : {7F66E9E8-ECD3-4E3A-89D5-022C2D8758D3}
ELIMINÉ: FirewallRaz (Private) : {5E0A6A47-2A9E-4165-BDB4-1C9D14AA25C8}
ELIMINÉ: FirewallRaz (Private) : {0D9B9B68-E9F9-4BA7-A160-CB99CA7509C1}
ELIMINÉ: FirewallRaz (Private) : {E4A89552-B8F5-49FC-94B3-CA20DA27D000}
ELIMINÉ: FirewallRaz (Private) : {032FCBF2-6FCA-42C7-8E44-0D6231BB6A11}
ELIMINÉ: FirewallRaz (Private) : {0700CE29-628E-4343-A971-58A39AFF263C}
ELIMINÉ: FirewallRaz (Private) : {7A1E4A1F-8D16-4FE3-BDD3-4888D8128DAF}
ELIMINÉ: FirewallRaz (Private) : {5B1FC5A0-6C85-456A-8755-1DF0067502E5}
ELIMINÉ: FirewallRaz (Private) : {9759EC6F-E97A-4EE7-941E-8CC60482105D}
ELIMINÉ: FirewallRaz (Private) : {7686C14B-07CF-4555-8CE6-F177E6FE2A32}
ELIMINÉ: FirewallRaz (Private) : {A2EB6E4A-7591-420B-8771-758FB6BDC9DE}
ELIMINÉ: Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F}
ELIMINÉ RunValue: YTDownloader
ProxyFix : Configuração proxy removida com sucesso
ELIMINÉ ProxyServer Value
ELIMINÉ ProxyEnable Value
ELIMINÉ EnableHttp1_1 Value
ELIMINÉ ProxyHttp1.1 Value
ELIMINÉ ProxyOverride Value

========== Pastas ==========
ELIMINÉ Temporários windows (885)
ELIMINÉ Flash Cookies (0)
ELIMINÉ: C:\ProgramData\boost_interprocess

========== Ficheiros ==========
ELIMINÉ Temporários windows (4078) (840.410.367 octets)
ELIMINÉ Flash Cookies (0) (0 octets)
ELIMINA REINICIAR: c:\windows\system32\tasks\facebookupdatetaskusers-1-5-21-4272588971-2352618053-980787506-1000core
ELIMINA REINICIAR: c:\windows\system32\tasks\facebookupdatetaskusers-1-5-21-4272588971-2352618053-980787506-1000ua
ELIMINÉ: C:\Windows\Installer\11f454.msi
ELIMINÉ: C:\Windows\Installer\11f462.msi
ELIMINÉ: C:\Program Files (x86)\Internet Explorer\cr_addon.crx

========== Tarefa planificada ==========
ELIMINÉ: BHO updater
ELIMINÉ: YTDownloaderUpd
ELIMINÉ: YTDownloaderUpd
ELIMINÉ: {611F743E-37F3-4F4F-9F2F-A1FC2F8FFD3D}
ELIMINÉ: CS Browser Assistant 2.0-codedownloader
ELIMINÉ: CS Browser Assistant 2.0-codedownloader
ELIMINÉ: CS Browser Assistant 2.0-codedownloader
ELIMINÉ: CS Browser Assistant 2.0-codedownloader
ELIMINÉ: CS Browser Assistant 2.0-updater
ELIMINÉ: CS Browser Assistant 2.0-updater
ELIMINÉ: CS Browser Assistant 2.0-updater
ELIMINÉ: CS Browser Assistant 2.0-updater
ELIMINÉ: {C8FFA92D-02DE-4F89-A2AC-68A9F9344E36}


========== Recapitulativo ==========
19 : Chaves do Registo
34 : Valores do Registo
3 : Pastas
7 : Ficheiros
2 : Estado dos serviços
13 : Tarefa planificada


End of clean in 00mn 47s

========== Caminho do ficheiro do relatório ==========
C:\Users\Sol Moreira\AppData\Roaming\ZHP\ZHPFix[R1].txt - 11/09/2014 22:58:02 [5254]
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 23:04

Boa Noite! Sol Moreira

|- Baixe: < Adware Removal Tool > ( ... by techsupportall.com )
|- Salve-a no desktop!

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Execute o arquivo Adware-Removal-Tool-v3.5.exe <<

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Dê início a verificação,clicando em Scan.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Ao concluir seu prescan,clique OK.
|- Ps: Cada guia irá mostrar o que será removido!

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique "Next" >> Aguarde!

< Computador >> Windows (C:) >> Program Files >> Adware-Removal-Tool >> Reports >> Repair_Logs_2014_09_dia_h_min_seg.txt <<

|- Poste o relatório!
|- Poste,também,outro relatório de ZHPDiag,na opção COMPLETA
|- Ps: Se o spoiler travar,pode anexar o log.

Abs!
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 23:22

Adware Removal Tool v3.9
Time: 2014_09_11_23_11_12
OS: Windows 7 - 64 Bit
Account Name: Sol Moreira
U0L0S53

\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\

Deleted - File - C:\Users\Sol Moreira\Appdata\Local\CrashDumps\YTDownloader.exe.4640.dmp
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_apps.conduit.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_apps.conduit.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_facebook.conduitapps.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_facebook.conduitapps.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_groupon.conduitapps.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_groupon.conduitapps.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_images.search.conduit.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_images.search.conduit.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_search.conduit.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_search.conduit.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_storage.conduit.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_storage.conduit.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_servedby-br.dealply.com_0.localstorage
Deleted - File - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_servedby-br.dealply.com_0.localstorage-journal
Deleted - File - C:\Users\Sol Moreira\Appdata\LocalLow\Microsoft\Internet Explorer\Services\Search_ask.com.xml
Deleted - Folder - C:\program files (x86)\Baidu Security\PC Faster
Deleted - Folder - C:\ProgramData\Baidu Security\PC Faster
Deleted - Folder - C:\ProgramData\WildTangent\My HP Game Console\UI\htdocs2\Common\product\babylonia
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\9M8A8Y55\macromedia.com\support\flashplayer\sys\#static.dealply.com
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\9M8A8Y55\static.dealply.com
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Local\Google\Chrome\User Data\Profile 1\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\9M8A8Y55\static.dealply.com\flash\dealply_swf_engine.swf
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_YTDownloader.exe_d5442884e7f1d4f6f65c5a13ad994face7f8c4_0f59dcc7
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Roaming\Baidu Security\PC Faster
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Roaming\Baidu Security\PC Faster\3.7.0.0\Uninstall\Baidu PC Faster Uninstall
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Roaming\Baidu Security\PC Faster\3.7.0.0\Uninstall\Baidu PC Faster Uninstall HK
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Roaming\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Roaming\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
Deleted - Folder - C:\Users\Sol Moreira\Appdata\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#static.dealply.com
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:masterclsid
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{52ab7886-6907-445d-8e7d-6c83f62c2514}:appname
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E591704-7C3-495F-A51F-7DDA310587}:apppath
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3096FE1C-42D2-4B10-8925-C87ADC3CA9D6}:apppath
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{826C88E5-9E06-4506-B5B-DDEB4157993}:appname
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{826C88E5-9E06-4506-B5B-DDEB4157993}:apppath
Deleted - RegistryValueData - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7DB2419-6CDE-4742-B0E0-A29445E69319}:apppath
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\microsoft\windows\Currentversion\Uninstall\YTDownloader:displayname
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eventlog\Application:WebCakeUpdaterService
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2EECD738-5844-4A99-B4B6-146BF802613B}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{472734EA-242A-422B-ADF8-83D1E48CC825}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{98889811-442D-49DD-99D7-DC866BE87DBC}
Deleted - RegistryKey - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage:ask.com
Deleted - RegistryKey - HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage:[Você precisa estar registrado e conectado para ver este link.]
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\microsoft\windows\Currentversion\Uninstall:YTDownloader

\\ Finished
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 23:25

em anexo o log do ZHPdiag
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 23:37

Boa Noite! Sol Moreira

|- Execute este script na ferramenta ZHPFix.
|- Selecione e copie estas informações que estão em vermelho,para o Bloco de Notas.
|- Com o Bloco de Notas aberto,faça: ctrl+a >> ctrl+c ( Selecionar e Copiar )
|- À seguir,minimize o Bloco de Notas.

Script ZHPFix
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Chave orfã
O2 - BHO: PSafe ClikSeguro [64Bits] - {802D2971-E7C7-4219-8D5C-AFDCD0DA939E} Chave orfã
O39 - APT: FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000Core - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000Core.job   [930]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000Core - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000Core   [930]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000UA - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000UA.job   [952]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000UA - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4272588971-2352618053-980787506-1000UA   [952]
O43 - CFD: 04/04/2014 - 21:25:56 - [] ----D C:\ProgramData\Log
[MD5.6E0BB5B9C845CDC764B2998FE612F73E] [SPRF][08/06/2014] (.No owner - Setup/Uninstall.) -- C:\Users\Sol Moreira\AppData\Roaming\unins000.exe   [815314]
[HKCU\Software\metacrawler]   =>Adware.SearchYa^
[HKCU\Software\metacrawler]  =>Adware.SearchYa
EmptyCLSID
EmptyPrefetch


|- Abra a ferramenta ZHPFix. < [Você precisa estar registrado e conectado para ver esta imagem.] >
|- Clique IMPORTAÇÃO >> OK.
|- Clique "GO".
|- Poste o relatório!

A+
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Qui 11 Set 2014, 23:43

Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre : 
Run by Sol Moreira at 11/09/2014 23:42:53
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Reciclagem vazia (00mn 06s)
Prefetcher vazio

========== Chaves do Registo ==========
ELIMINÉ: HKCU\Software\metacrawler

========== Pastas ==========
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{00D58E2A-CA44-4510-838C-C22D310E764D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{01C9D54E-D5C7-48B2-BA77-3973A9CC49B0}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0249FF29-4C94-49A3-83E9-4B6EEACF329E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{03EA2196-FFE9-4515-A0EF-DDE6805C2A7F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{06574728-5F02-4EB9-9353-4F89508C1A82}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{092782C3-4451-4363-A8FC-655645479D60}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{09338758-906A-402E-9D72-25F1D80CC1D0}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{098F325B-0129-4273-B4E2-C84E04864F89}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{09F2E4BD-E8FE-4E0B-972B-E431131D58D9}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0A3E863F-4A0C-4CCA-89C6-A29F7B24899D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0A533DEF-7849-405E-A9B8-F2B1E269D6AA}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0B79368B-7E2B-4D7F-9D3E-80CC4C4E3CC5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0BDAAD49-A1D8-4755-A337-D587D529BBAF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0C030DA4-AE9E-49C3-BB3F-4B8028DECA99}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0EC466F3-3F66-4B53-98C7-37BDE8CD0B61}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0F688E3A-E553-4E56-B79E-3F700BFD48C4}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{0FB00697-F7F9-4BE6-9EAE-03713A24B6B6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{106BB6B1-E8EB-410D-8C7D-7F1D38E3272C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1095E667-F8DC-433F-AAA9-4ECB87F8D999}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{11CE21D8-86F8-4EFB-90DC-8E869AB15D8A}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{11DBA93A-5A0B-4805-B9AD-606C1DC5B0B1}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{11FEF5EB-2E26-48E6-8C4C-020166885760}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{12566452-6A72-4E08-B2E7-96411F8026EE}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{12A331D3-71A3-44D5-B4EC-8ED3DB1E42EF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{131DECB2-6350-4D8D-86C2-CACE0B66BF2B}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1605AF79-CCF4-45CC-9929-14DD258F8E75}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{16077967-A528-460B-A4F6-8C7FBDEE32E8}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{161FA3B0-3E61-495A-9DCA-3A6C4682F453}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1756DE9E-3B0D-4B00-954D-1DD642E3F974}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{17F20AD2-3DCD-41B1-9982-21D269E9F0BC}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1889F52F-4312-4BC6-A655-69ADDD3FF46A}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1974778E-5264-4DC0-8A46-C7C2EAB1CE0E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{19E150C0-B983-4F14-946F-7B88293CD4C5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1A003F6B-4ED2-4A1D-B648-7FA47C9CB566}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1A3FA865-59B2-4D4E-A401-830D9D503137}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1A77FC59-85D9-4BE6-9561-921329DBEB73}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1BF50D10-66D9-4EA9-A9DC-9610EDF5CC15}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1C24D4C3-77D3-4149-8C5E-94592B28DE95}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1C940745-7645-4410-9653-7FBD43FAF2F2}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1D0A4FE2-B265-4CAA-B1D3-2F81F85EE73E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1D1F2CF7-9810-496A-9DFC-5616F1221852}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1DD095EB-03B9-4070-97F5-80C10D17E7BD}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1DE920B8-646F-4885-AE61-46D449B1FD3F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{1E094FD8-5E36-48B4-BCFD-493E04DDEEE3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{20AAB6BA-812F-4C0E-A68F-1CC516DCFAC5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{23A5252E-4AAD-48FF-8AA5-305DAFAC218C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{24583E8F-3A7C-4C14-A39F-0AB9417BBB11}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{25BB1737-2717-44F0-9C8B-B2C8C1902153}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{27028EFC-063A-4646-B642-0C86C7CA86A8}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{278256DA-14F0-4F8F-B636-AFA0D318069C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{27A7B28A-3389-4338-97D0-4D7B89F5272C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2B04770A-54BD-446C-B090-334574518157}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2B36B026-8B16-4205-804A-89BD45A5C6FF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2B697BCD-880B-4F15-847A-A0D1BADF0A34}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2BA1F77F-F0B2-4037-AD85-BDF6E26EAF73}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2BAEC673-A88C-44BD-A599-19F18D3FD20C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2C1A54E6-0F4F-4747-A9AF-5B0CE7638C7C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2D2EB7E3-8BA4-4199-A9CC-2EA4C81A2A9C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{2F75A7C7-8DB0-48FA-91AA-660C70C9353F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{322AF9B9-18B9-484F-A8C9-3CE72004ECBB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{322B0BC2-D299-4354-BA24-59382559C385}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{34D3A85E-01E6-4971-8426-A21F2AFB8223}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{34E8EC6A-A620-43FB-BE28-D7A6E1475E60}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{380BAF9A-61C6-4961-B851-2D4196282183}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{38F302B9-A360-4124-BA49-3EAB13083126}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{3935EF88-FC30-432F-AE1B-52BA4C2E88BC}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{3A2D8165-968C-40CE-A50E-7AAB78C05E0A}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{3B074E0B-746C-4241-9ADE-536545F1788F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{3B19FDCB-169F-45CC-8844-75D91E197670}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{3CF6BD7D-571E-4F08-A217-50F49BC79913}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{3FF80B64-20C9-4B59-B2D5-7BFD7F59FB29}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{42D48A82-1354-42B2-A330-592F790281E3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{44B75BF6-C3D6-4803-B29B-779926768121}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{46854457-3250-4CD3-8794-87538AFE3751}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{473C0161-23D5-4491-9730-C543AD250ED7}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{485930C1-ABEE-47D9-A7C6-8C835BA8A6A3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{4B72765D-B97A-407B-BB08-FCAD9BCD63E3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{4CD1342E-F1F4-458C-B0A9-84DC58A49CC7}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{4FDC231B-D804-4B31-ABBE-E851AD272FA2}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{500A7297-BEC6-4BEE-8CBD-D0754108AAB8}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{52649A7C-53B3-49F4-A21C-7A374FEB5EC6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{53DE6D4A-B8A4-41A8-B8F8-8A6B94F15927}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{55CA4CDE-6607-4605-B248-6BFEDD6F4FDF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{564DB842-524E-43C4-9319-91B7579A0171}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{56691B2B-0116-481F-89DD-F2CC46F86F48}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{56A5A14F-F281-4A87-B678-C95AA32CD907}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{56F5D568-CB2B-4494-B2A8-F275DF5A7F46}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{59FD948D-27FE-48ED-9555-12199B427022}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5A6E111B-EA2A-4759-AF2C-B77A44C08D38}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5AB292E0-B091-4AE4-BE5A-B7183B2B8FEF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5B4C33A5-7464-4547-A3DF-0C35070B510D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5B7C8070-51EE-4BE4-A166-4A2D84CDBBCB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5B7E8BDF-C7C2-45B4-B5A6-0E02DC6BE239}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5BA8DC8D-EA0B-48E4-B6DF-EE65E3703EE3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5CD866A1-3ADE-4B9D-A7E2-FA9C15F563BA}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5F4DB8FA-8F01-463C-BD93-D433B27F8218}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5F9DD751-14FB-4CCE-8E88-06635063F7DF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{5FEF03B2-FA00-45E6-AC65-4528C352596F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6018C003-6525-48FA-9002-BFCA1294FFF6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{60EC1CB3-B1E9-4C3A-93AF-D2E8BFE16B02}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{61D2ED43-3382-4BAE-8DF1-744760AD6AE9}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{61D87683-4666-420F-BE2F-E3D0D4A0D1B8}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6208A441-E8E4-4E7B-B305-44D65A502EBC}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{672E3779-C49A-4935-8C91-8FFE7B65A5AF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6A78C21C-921A-4128-A3A9-D1745F5301E5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6AD14680-1243-483C-8605-21B788299CB5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6B724D64-6D7E-447B-9206-9234214848F6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6BD67624-88DA-462C-ACF1-95A3E3AB89F6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6BD8CBD8-9C96-48FD-A894-1C0EF13A5EE1}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{6F65EE7F-C4FE-4733-894C-8E05C49F438A}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{70421831-81BF-4552-8E59-D609C1A92537}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7067D7A5-1102-4FB5-9904-0A0C5C756769}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{72E7A681-C15E-4F22-9755-EE0533C211F4}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{73F3723F-4BA6-4D98-A978-CA97A7E5893F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{74B83831-B905-474D-AB0D-A7B0FA64E7EA}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7535C4E4-F326-4525-AB65-1D8365184D32}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7769FC52-CE8F-4E97-88DC-CE502038108C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{77EE4B7E-745D-4A78-B20A-86CB8427C04E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{78A85104-7CB3-457A-ADA9-17D2BCEEC72C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{78DEB504-120F-488E-877F-07C46FB0712D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{79D9153A-B115-4CB7-9E7F-5DE6CC048ACB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7B161EE3-2120-4EAD-957E-1EDB317970A6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7D3A7F58-AD5B-46E5-B6EF-8BE9F97DCFD3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7DE2475B-4315-4872-88F9-DA8F0022010B}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7E6B31D2-A956-42D0-8525-431E04FFF57E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7F04F924-4725-4483-B0B5-38BB890E01F7}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7F7A94FD-D641-4FD4-BFFF-772479FD8B9F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7F9ED1C5-1A9D-48C1-A006-1B4A32780FB5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{7FE02BDD-E41A-426F-8249-4217F1F08627}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{80C1AA58-EFFF-4EB4-9C75-0B5720BC569B}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{81D7A933-D570-42AE-80C0-42DF69E68A31}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8449FA65-87E1-49B7-86BC-642ACDB0E5DF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{846E4B43-C160-4AFB-AB88-68707AAFB9D0}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{85746FBF-98B7-4281-AB83-1432FDBAAC49}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{85B67E73-EB1B-41FC-A3BF-70AE9DD66F6D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{865A5356-DD56-4482-9D02-2F69E2DB39F6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{868311C2-A717-417E-A6E1-71E781EC89E8}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8706E721-2874-4216-BEE0-3683A1659B34}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8809A147-CB57-4A6D-90FF-2FF9C09CC71B}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8887C46E-2A3A-4216-BE91-7FFC655BFC46}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{894DAF40-0753-4496-9606-41936D8D5695}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8ADF700F-4FD5-4E6F-87A1-740A1A700955}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8B2D111B-940F-47DF-8EC2-4BFEDF94B332}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8C61D277-A493-42C1-AFA2-EF718C55687F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{8D0185AE-49C0-4490-B2BD-A5382675AB56}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{913F9F8A-E60A-4B59-9738-D231A7AEDFAB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{94F89D92-EFFB-4CF5-AEF6-F3EF6141DCDA}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{9508402B-5E4C-4707-8F0D-64AB8DCB4E86}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{961BC0BC-1A0B-4EE4-97F5-3675A4140AE4}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{98EA5BDE-D690-4068-A30E-D8EF0CAB5078}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{993E6C2B-ECE9-45EC-850C-E806C9832779}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{99E9D3F9-7FF6-4F1F-B476-9D9A897924AA}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{99FF0ECB-58EE-4869-939A-6FC65DA3FC69}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{9A049B14-3217-4C18-BEFC-98E6AD6B53D0}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{9B0D240A-B1CD-4E86-87DB-096BB244B129}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{9BEF4269-EFCE-4463-BA90-688991CBAAAC}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{9C191636-25AF-4E53-B9DE-3F3AAC6C0F26}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{9F32DC3C-347D-4C3B-B78F-6A52924DE7F4}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A164A6FF-245E-40FE-A10B-B3105CFFE5E1}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A21BCDC5-AA09-4755-9480-0C843E3EC694}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A22642E1-E9C5-44E6-B888-9FB05E50E1CE}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A33CF03A-B244-4D1A-BFF8-3297A252EAA5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A34DC37F-4307-4E6F-B5E2-0FB53FB94B30}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A3C23D09-3C20-4E51-B2F3-A1D452E0E632}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A65C6B5A-2247-4FF2-9D88-D5B9D72B2C32}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A6AC0AE3-D3A3-40D0-96B0-40C4DF71FD39}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A77A5798-4910-4CBA-8CFA-071ED6F37168}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{A7ACAFC4-FB72-4365-8C44-212D29E7C6F2}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AA4DA63C-9B2D-4B16-8177-BE7BB965665B}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AA67A3BC-577F-4D71-8A68-A4A195BF267E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{ABB48C93-B7F0-4646-9C4B-DC323C35E343}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AC4B7A7C-0997-4650-A23D-B357DBBFAC35}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AE823AEC-2237-4278-B146-261D2B5B602D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AECE7793-6508-4A23-B91D-8FB0D7CC27A8}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AF227A6A-FEC6-458E-8FF7-AC467944BFBD}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{AF25A75D-5A36-43EB-8DB6-247A0378B823}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B0FB9563-881E-41F6-B6F8-69EDDE96EFCC}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B1743ABA-F4B6-4849-BC7C-CB78F86CDA61}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B1962DFA-D831-44F4-AD81-1251D8A14618}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B3074952-0FBC-44C6-AC4E-5CC7639B0ABB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B3777452-AA73-429B-9ED9-12F7A255682E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B58D71D1-4A24-4A88-930F-2362397CEDFB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B59582F7-A86A-438B-9D09-7534CD4EAE15}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B5A6FDFE-DBB9-4EA5-9336-CDD81D9687FF}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B7C40085-F681-4C61-9499-1E73FD45B054}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B86080CF-103D-4F7B-A324-131CD1C2E18C}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B8D571B8-4CED-4C19-932F-472856256BF4}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{B95AF76D-65E3-457F-9DF9-5AD5F2EE83DB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{BA4027E9-4A74-4276-AC9B-A496DB3F7216}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{BCB2ECA2-6D57-4F17-B6E3-0A8D1017E758}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C1F09683-961F-4A40-8E71-F72F3C27C371}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C2030E61-4669-4C3F-A9F9-3C0FF431FC54}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C21BE192-F152-488E-991F-A9F2DDF824F4}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C21DD2F8-42C6-4820-A794-236E6C3FAD49}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C27E321E-D687-485C-8A2E-6DE46DBE52C9}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C289B358-3E89-4136-8DA2-8933BDD24B66}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C2C4E7E9-F6F0-423A-9836-28B943430215}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C5CFDD43-6504-4BE6-A868-30FAA062211A}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C666B3A2-2229-4334-81D1-5176A7448B3A}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C682BA6B-850E-4BCC-8627-2868045DDCA5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{C6AD1F29-51C7-466C-AED7-4352CCF66267}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{CD29C564-5DC2-44A8-8E94-6B76C4114670}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{CD596EEE-BC58-472D-91A1-BE791E8D2B7E}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D0DC3E92-988A-4CA2-BE40-2019C37BA659}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D27FFC3C-DD2E-4B7E-ACBC-2647B752D0B5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D39FD242-EDF5-48C3-BEA0-08EF88B581F2}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D5CEB1FB-7671-48F5-8764-D22E17F90E88}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D62BC564-EDBB-4CD3-8342-FFFF54A52445}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D77F1499-57A0-40F4-A378-624DA3EE123F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{D790A29E-C2A7-49BB-8933-3ACBEBF3F133}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{DB727B9D-D1C5-4B44-A312-BDF478493833}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{DC7E61D7-4700-40B7-BFD1-8FAC8B60AC79}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{DCB990A9-A18D-4934-86E5-6A49EDE55C43}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{DD0820DC-7228-4F3C-8173-5EABE6DB0F18}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{E1F90515-C2DD-4F2C-9ED3-EDA124C941F6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{E3E849C2-356B-455E-8660-F150BB558A13}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{E8CC42B8-6C4B-4525-A049-E828BDEE0942}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{E8DF8980-55A7-493A-8BCE-482F59447DD6}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EAEA4267-96D3-4E97-8D9A-E8E41F8528DE}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EAFAD4B7-68FB-42A3-A481-8BF367F35807}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EB055A58-8D42-45E6-ACDE-1D35A6CEB162}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EBE062D1-91A4-4EF3-BA91-144BBD057D79}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EC72415D-63E1-4E5E-AB89-7F3E62D0B550}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EC73D156-DD4C-47C8-AE12-1B22FA851574}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{ECA91E5A-A136-4418-98B2-7F84874C02FC}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{ED008BE2-1012-48D3-BB31-CF5F6C730FDA}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EE39A21E-BDE5-4F73-9BBD-7D93AC8A4BFB}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EECD695F-2444-41EA-B903-7F767464B691}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EF6191F1-D3E7-42A6-9A9C-AB9BB5752473}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{EF7C824B-1AD2-403E-A2EC-FC6DFCEAE4BD}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F0F6C1AE-FF8A-49F1-90E9-DC56E88C7D29}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F1F8B756-8E04-4AC6-88CE-42CA27B1696B}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F2D29172-9DAB-4906-8757-AFB53409F9E3}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F4D6FF9B-0E83-4252-8491-5836FF54098D}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F734207B-2293-47AA-A3AF-B229F9794349}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F775C93D-BEAD-4FD3-9A42-8F4707FB5ECD}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{F947347C-E0C0-4F02-98B7-A2966AAA61E5}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{FA77BED7-5985-49C7-879E-545E1F01286F}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{FB814ED6-9B8F-4233-A5C5-CE3ECCA50886}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{FD7A9D32-35F2-4893-9294-08FA12125A15}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{FE49719F-57FC-40C1-9EB2-4135BE187808}
ELIMINÉ: C:\Users\Sol Moreira\AppData\Local\{FEACDBF6-9968-493B-81D4-E11EC00F93CC}

========== Ficheiros ==========
ELIMINÉ: c:\windows\tasks\facebookupdatetaskusers-1-5-21-4272588971-2352618053-980787506-1000core.job
ELIMINA REINICIAR: c:\windows\system32\tasks\facebookupdatetaskusers-1-5-21-4272588971-2352618053-980787506-1000core
ELIMINÉ: c:\windows\tasks\facebookupdatetaskusers-1-5-21-4272588971-2352618053-980787506-1000ua.job
ELIMINA REINICIAR: c:\windows\system32\tasks\facebookupdatetaskusers-1-5-21-4272588971-2352618053-980787506-1000ua


========== Recapitulativo ==========
1 : Chaves do Registo
242 : Pastas
4 : Ficheiros


End of clean in 02mn 35s

========== Caminho do ficheiro do relatório ==========
C:\Users\Sol Moreira\AppData\Roaming\ZHP\ZHPFix[R1].txt - 11/09/2014 22:58:02 [5340]
C:\Users\Sol Moreira\AppData\Roaming\ZHP\ZHPFix[R2].txt - 11/09/2014 23:43:03 [21473]
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Qui 11 Set 2014, 23:55

Boa Noite! Sol Moreira

> Após a execução de DelFix,podemos encerrar o caso!
> Mas...recomendo,que devido ao volume de adwares e PUPs,vc deveria executar escaneamento online em Eset.
> Caso queira,isso pode ficar para amanhã.   isso aí!

-/-

|- Baixe: |DelFix| ( ... de Xplode )

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Estando na página,clique em Download Now.
|- Salve-a em um local conveniente! ( desktop! )
|- Feche aplicativos que estejam abertos.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Com as caixinhas marcadas,clique Executar!
|- Tudo Ok?

Abs!
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Sol Moreira em Sex 12 Set 2014, 00:02

Tudo bem!! Obrigada   abs
avatar
Sol Moreira
Iniciante
Iniciante

Mensagens : 9
Reputação : 6
Data de inscrição : 10/09/2014

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por joram em Sex 12 Set 2014, 00:04

Caso Resolvido

Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da Equipe da Moderação solicitando o desbloqueio.

_________________
Fórum PC Brasil >> O que há de melhor,para desinfectar seu computador!
Fórum SecSecurity >> Não deixem de conhecer!
Fórum iMasters >> Tradição em informática!
avatar
joram
Administrador
Administrador

Mensagens : 3707
Reputação : 415
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

Re: Erro RunDLL

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Ver o tópico anterior Ver o tópico seguinte Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum