tem um vírus no meu notebook

Olá tenho um notebook com um vírus quando eu abro o google aparece varias propagandas falsas alguém poderia me ajudar?

Olá Max.

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

olá Power Max o AdwCleaner esta com um  erro AutoIt Error unable to open the script file se puder resolver me avise obrigado

Desative temporariamente seu antivírus para evitar conflitos.

* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executá-lo corretamente siga as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.

Olá Power Max eu consegui com sucesso tirar o vírus esta aqui o resultado

Zoek.exe v5.0.0.0 Updated 10-February-2015
Tool run by LG on 10/02/2015 at 14:11:41,92.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\LG\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

10/02/2015 14:15:08 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\MSXML 4.0 deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\PROGRA~2\TrueSuite deleted successfully
C:\Users\LG\AppData\Roaming\GetPrivate deleted successfully
C:\Users\LG\AppData\Local\Unity deleted successfully
C:\Users\LG\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-533827225-3404614602-459032720-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\serverca deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\serverca deleted successfully

==== Deleting Files \ Folders ======================

C:\Program Files\CashReminder deleted
C:\Program Files\GUTFB5F.tmp deleted
C:\Program Files\GUMFB5E.tmp deleted
C:\Users\LG\AppData\Roaming\pdfforge deleted
C:\PROGRA~2\Avg_Update_0814av deleted
C:\PROGRA~2\Baidu deleted
C:\Users\LG\AppData\Local\mbt-actwiz.log deleted
C:\Users\LG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PriceFountain deleted
C:\Windows\system32\tasks\060184C3-9766-46a0-B258-F4518A0B2633 deleted
C:\Windows\tasks\0814avUpdateInfo.job deleted
C:\Windows\system32\tasks\0814avUpdateInfo deleted
C:\Windows\system32\config\systemprofile\Searches deleted
"C:\Program Files\Common Files\ClaraUpdater\ClaraUpdater.exe" deleted
"C:\Users\LG\AppData\Local\PriceFountain\pricefountain.exe" deleted
"C:\Users\LG\AppData\Local\PriceFountain\pricefountainw.exe" deleted
"C:\Users\LG\AppData\Local\ConvertAd\ConvertAd.exe" deleted
"C:\Program Files\baidu\Spark\atl100.dll" deleted
"C:\Program Files\baidu\Spark\serviceplugin.dll" deleted
"C:\Program Files\baidu\Spark\servicetips.dll" deleted
"C:\Program Files\baidu\Spark\sparkservice.exe" deleted
"C:\Users\LG\AppData\Local\PriceFountain\logs\main.log" deleted
"C:\Users\LG\AppData\Local\PriceFountain\logs\wd.log" deleted
"C:\Program Files\baidu" not deleted
"C:\Program Files\Common Files\ClaraUpdater" not deleted
"C:\Users\LG\AppData\Roaming\Baidu" deleted
"C:\Users\LG\AppData\Local\PriceFountain" deleted
"C:\Users\LG\AppData\Local\ConvertAd" deleted
"C:\Program Files\baidu\Spark" not deleted
"C:\Users\LG\AppData\Local\PriceFountain\logs" deleted

==== Chromium Look ======================

Cat Mario - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahjocmhggebfefcommmbijfgkblognjh
Google Docs - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Our planet is in danger. Are you the superhero who can save the world? - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmdbnncbgjijaggoknnajagdhpogbndi
Google Wallet - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - LG\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.key-find.com/?type=hp&ts=1423480284&from=cor&uid=SAMSUNGXHM321HI_S2K5J56B801324"
"Default_Page_URL"="http://www.key-find.com/?type=hp&ts=1423480284&from=cor&uid=SAMSUNGXHM321HI_S2K5J56B801324"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.key-find.com/web/?type=ds&ts=1423480284&from=cor&uid=SAMSUNGXHM321HI_S2K5J56B801324&q={searchTerms}"
"Default_Page_URL"="http://www.key-find.com/?type=hp&ts=1423480284&from=cor&uid=SAMSUNGXHM321HI_S2K5J56B801324"
"Start Page"="http://www.key-find.com/?type=hp&ts=1423480284&from=cor&uid=SAMSUNGXHM321HI_S2K5J56B801324"
"Search Page"="http://www.key-find.com/web/?type=ds&ts=1423480284&from=cor&uid=SAMSUNGXHM321HI_S2K5J56B801324&q={searchTerms}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{2787B67A-FFFF-459E-8859-B774610F0C73}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found"
{2787B67A-FFFF-459E-8859-B774610F0C73} Google Url="http://www.google.com/search?hl=en&q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\LG\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\LG\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-533827225-3404614602-459032720-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully
HKEY_USERS\S-1-5-21-533827225-3404614602-459032720-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully
HKEY_USERS\S-1-5-21-533827225-3404614602-459032720-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-533827225-3404614602-459032720-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully

==== shortcuts on Users Desktops ======================

C:\Users\LG\Desktop\Microsoft Office Excel 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
C:\Users\LG\Desktop\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Users\LG\Desktop\Nero Express.lnk - C:\Windows\Installer\{70550193-1C22-445C-8FA4-564E155DB1A7}\NeroExpress.exe_81A8FD91A6494AD5B4998149EAAC7E7C.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\AVG 2014.lnk - C:\Program Files\AVG\AVG2014\avgui.exe
C:\Users\Public\Desktop\CyberLink YouCam.lnk - C:\Program Files\CyberLink\YouCam\YouCam.exe
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe

==== shortcuts in Users Start Menu ======================

C:\Users\LG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\CraftLandia.lnk -
C:\Users\LG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\[Launcher Pirata]KeiNett Launcher.lnk -

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1046-7B44-AB0000000001}\SC_Reader.ico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - C:\Program Files\AVG\AVG2014\avgui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Browser\Baidu Browser.lnk - C:\Program Files\baidu\Spark\spark.exe --bar=1016
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Browser\Uninstall.lnk - C:\Program Files\baidu\Spark\uninst.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9d78513a8998829c\pinned.lnk -
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk - C:\Windows\explorer.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\LG\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\PriceFountain deleted successfully

==== Empty IE Cache ======================

C:\Users\LG\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\LG\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\LG\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=665 folders=376 111039993 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\LG\AppData\Local\Temp will be emptied at reboot
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\LG\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\LG\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Program Files\baidu" not found
"C:\Program Files\Common Files\ClaraUpdater" not found

==== EOF on 10/02/2015 at 15:35:14,40 ======================

Olá Power Max eu consegui com sucesso tirar o vírus esta aqui o resultado

Fico feliz que o computador esteja melhor, mas ainda é bem provável que existam outros problemas.
_____________________________________________________________

Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] > < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )

Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPCleaner para baixá-lo, tal como mostra a imagem abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Para executá-lo corretamente siga as dicas desta postagem:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Após a utilização dele, copie todo o conteúdo do seu relatório ZHPCleaner.txt e poste em sua próxima resposta.

Olá de novo Power Max de vez em quando aparece uma aba com um link chamado
appbusy voê poderia me ajudar a remove-lo o resto deu tudo certo

Siga a dica que te passei acima com o ZHPCleaner e poste o relatório pedido.

Ok está bem

Olá Power Max eu fiz tudo que voce falou e eu acho que deu certo está aqui o relatório
~ ZHPCleaner v2015.2.10.60 by Nicolas Coolman (10/02/2015)
~ Run by LG (Administrator) (10/02/2015 15:54:08)
~ Forum : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Facebook : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\LG\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\LG\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Windows 7, 32-bit Service Pack 1 (Build 7601)


---\\ Services (0)
~ No malicious items found.


---\\ Browser internet (0)
~ No malicious items found.


---\\ Hosts file (2)
REPLACED:
Number of found redirections 1/22


---\\ Scheduled automatic tasks. (0)
~ No malicious items found.


---\\ Explorer ( File, Folder) (
MOVED file: C:\ProgramData\Baidu Security\bdMiniDownloaderGB_BAV-Mini_32_1002.exe [Baidu Inc. - SparkMiniDownloader] (Adware.BDPlugin)
MOVED file: C:\ProgramData\Baidu Security\Duplicaterecord.js (Adware.BDPlugin)
MOVED folder: C:\ProgramData\Baidu Security (Adware.BDPlugin)
MOVED file: C:\Users\LG\AppData\Local\wincheck\Uninstall.exe [wincheck - wincheck] (PUP.Wincheck)
MOVED file: C:\Users\LG\AppData\Local\wincheck\wincheck.exe (PUP.Wincheck)
MOVED folder: C:\Users\LG\AppData\Local\wincheck (PUP.Wincheck)
MOVED file*: C:\Users\LG\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_heroicplay.dl.tb.ask.com_0.localstorage (Toolbar.Ask)
MOVED file*: C:\Users\LG\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_heroicplay.dl.tb.ask.com_0.localstorage-journal (Toolbar.Ask)


---\\ Registry ( Key, Value, Data) (19)
DELETED key: HKLM\SYSTEM\CurrentControlSet\Services\ClaraUpdater [C:\Program Files\Common Files\ClaraUpdater\ClaraUpdater.exe] (Adware.SupTab)
DELETED key: HKCU\Software\InstallCore\1I1T1Q1S [] (Heuristic.InstallCore)
DELETED key: HKCU\Software\InstallCore\Uninstall [] (Heuristic.InstallCore)
DELETED value: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\BoBrowser [] (PUP.BoBrowser)
DELETED value: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\pricefountainw.exe [C:\Users\LG\AppData\Local\PriceFountain\pricefountainw.exe HKEY_CURRENT_USER Software\PriceFountain] (PUP.PriceFountain)
DELETED value: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\WinCheck ["C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe" -auto] (PUP.Wincheck)
DELETED key: HKCU\Software\BoBrowser [] (PUP.BoBrowser)
DELETED key: HKCU\Software\InstallCore [] (Adware.InstallCore)
DELETED key: HKCU\Software\PriceFountain [] (PUP.PriceFountain)
DELETED key: HKLM\SOFTWARE\Clara [] (Adware.SupTab)
DELETED key: HKLM\SOFTWARE\Microsoft\Tracing\ConvertAd_RASAPI32 [] (Adware.Pirrit)
DELETED key: HKLM\SOFTWARE\Microsoft\Tracing\ConvertAd_RASMANCS [] (Adware.Pirrit)
DELETED key: HKLM\SOFTWARE\Microsoft\Tracing\WinCheckWrapper_RASAPI32 [] (PUP.Wincheck)
DELETED key: HKLM\SOFTWARE\Microsoft\Tracing\WinCheckWrapper_RASMANCS [] (PUP.Wincheck)
DELETED key: HKLM\SOFTWARE\Microsoft\Tracing\wincheck_RASAPI32 [] (PUP.Wincheck)
DELETED key: HKLM\SOFTWARE\Microsoft\Tracing\wincheck_RASMANCS [] (PUP.Wincheck)
DELETED key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ConvertAd [ConvertAd] (Adware.Pirrit)
DELETED key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage [] (Adware.Downware)
DELETED key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wincheck [WinCheck] (PUP.Wincheck)



---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)
~ Repair canceled by the user (Google Chrome)


---\\ Statistics
~ Items scanned : 54411
~ Items found : 1
~ Items repaired : 27


End of clean at 17:01:23
===================
ZHPCleaner-[R]-10022015-17_01_23.txt

Baixe o programa Junkware Removal Tool no link abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ok

Tópico Arquivado

Como o autor não respondeu por mais de 45 dias, o tópico foi arquivado. Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.