Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.
Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14806 usuários registrados
O último membro registrado é King empero

Os nossos membros postaram um total de 36043 mensagens em 3684 assuntos
Últimos assuntos
» Possíveis vírus
por joram Sex 15 Mar 2024, 19:05

Quem está conectado?
12 usuários online :: 0 registrados, 0 invisíveis e 12 visitantes

Nenhum

O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
 
 

Resultados por:
 


Rechercher Pesquisa avançada

março 2024
SegTerQuaQuiSexSábDom
    123
45678910
11121314151617
18192021222324
25262728293031

Calendário Calendário


Computador com adwares e outros problemas

2 participantes

Ir para baixo

Computador com adwares e outros problemas Empty Computador com adwares e outros problemas

Mensagem por Pedrão Baiano Qui 09 Abr 2015, 11:28

Olá pessoal, meu PC parece que está meio contaminado e com algumas mensagens de erros. Aqui vão os relatórios dos programas que usei para analisar:

ZHPDiag:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Adwcleaner:

# AdwCleaner v4.201 - Relatório criado 09/04/2015 às 11:06:31
# Atualizado 08/04/2015 por Xplode
# Base de dados : 2015-04-08.1 [Servidor]
# Sistema operacional : Windows 7 Ultimate Service Pack 1 (x64)
# Usuário : Brasil - BRASIL-PC
# Executando de : C:\Users\Brasil\Downloads\adwcleaner_4.201.exe
# Opção : Limpar

***** [ Serviços ] *****

[#] Serviço Excluído : vToolbarUpdater18.3.0

***** [ Arquivos / Pastas ] *****

Pasta Excluído : C:\ProgramData\AVG Secure Search
Pasta Excluído : C:\ProgramData\AVG Security Toolbar
Pasta Excluído : C:\ProgramData\baidu
Pasta Excluído : C:\Program Files (x86)\baidu
Pasta Excluído : C:\Program Files (x86)\Common Files\AVG Secure Search
Pasta Excluído : C:\Windows\SysWOW64\Store
Pasta Excluído : C:\Users\Brasil\AppData\Roaming\baidu
Pasta Excluído : C:\Users\Brasil\AppData\Roaming\PriceFountain

***** [ Tarefas agendadas ] *****


***** [ Atalhos ] *****


***** [ Registro ] *****

Chave Apagado : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Chave Apagado : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Chave Apagado : HKLM\SOFTWARE\Classes\S
Chave Apagado : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Chave Apagado : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Chave Apagado : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Chave Apagado : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Valor Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Chave Apagado : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Chave Apagado : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Chave Apagado : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Apagado : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Apagado : HKCU\Software\InstallCore
Chave Apagado : HKCU\Software\Myfree Codec
Chave Apagado : HKCU\Software\Baidu
Chave Apagado : HKLM\SOFTWARE\Myfree Codec
Chave Apagado : HKLM\SOFTWARE\Baidu
Chave Apagado : HKU\.DEFAULT\Software\Baidu

***** [ Navegadores ] *****

-\\ Internet Explorer v11.0.9600.17207

Configuração Restaurado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Configuração Restaurado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v41.0.2272.118

[C:\Users\Larissa\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
[C:\Users\Letícia\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
[C:\Users\Vanusa\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

*************************

AdwCleaner[R0].txt - [5753 bytes] - [09/04/2015 11:04:23]
AdwCleaner[S0].txt - [5224 bytes] - [09/04/2015 11:06:31]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5283 bytes] ##########
Pedrão Baiano
Pedrão Baiano
Iniciante
Iniciante

Mensagens : 5
Reputação : 0
Data de inscrição : 09/04/2015

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Power Max Qui 09 Abr 2015, 11:32

Baixe o programa Junkware Removal Tool no link abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Pedrão Baiano Qui 09 Abr 2015, 11:33

Obrigado, Max. Já tinha executado o JRT também, aqui está o log dele:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.5.3 (04.07.2015:1)
OS: Windows 7 Ultimate x64
Ran by Brasil on 09/04/2015 at 11:13:09,05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\baidu security"
Successfully deleted: [Folder] "C:\Users\Brasil\AppData\Roaming\software informer"
Successfully deleted: [Folder] "C:\Program Files (x86)\baidu security"
Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09/04/2015 at 11:17:39,33
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Pedrão Baiano
Pedrão Baiano
Iniciante
Iniciante

Mensagens : 5
Reputação : 0
Data de inscrição : 09/04/2015

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Power Max Qui 09 Abr 2015, 11:35

Desative temporariamente seu antivírus para evitar conflitos.

Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:

createsrpoint;
autoclean;
emptyalltemp;
iedefaults;
resetieproxy;
resethosts;
shortcutfix;
ffdefaults;
firefoxlook;
reset chrome;
chrdefaults;
chromelook;
emptyfolderscheck;delete
baidu;z
baidu;a


*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Pedrão Baiano Qui 09 Abr 2015, 12:02


Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Brasil on 09/04/2015 at 11:20:36,04.

Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Brasil\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

09/04/2015 11:22:10 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\Google deleted successfully
C:\PROGRA~3\boost_interprocess deleted successfully
C:\Users\Brasil\AppData\Local\CrashDumps deleted successfully
C:\Users\Brasil\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Brasil\AppData\Local\AVG Web TuneUp deleted
C:\Users\Larissa\AppData\Local\AVG Web TuneUp deleted
C:\Users\Vanusa\AppData\Local\AVG Web TuneUp deleted
C:\Users\LETCIA~1\AppData\Local\AVG Web TuneUp deleted
C:\PROGRA~2\AVG Web TuneUp deleted
C:\Users\Brasil\AppData\Roaming\WB.CFG deleted
C:\PROGRA~3\AVG Web TuneUp deleted
C:\PROGRA~3\Avg_Update_0814av deleted
C:\PROGRA~3\Avg_Update_1214tb deleted
C:\Users\Brasil\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\Larissa\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\Vanusa\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\LETCIA~1\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\Brasil\AppData\Roaming\unins000.exe deleted
C:\Users\Brasil\AppData\Roaming\unins001.exe deleted

==== Folders Found ======================

2015-04-09 14:06:35 2015-04-09 14:06:35 -------- d-----w- C:\AdwCleaner\Quarantine\C\ProgramData\baidu
2015-04-09 14:06:35 2015-04-09 14:06:35 -------- d-----w- C:\AdwCleaner\Quarantine\C\ProgramData\baidu\Baidu Antivirus
2015-04-09 14:06:38 2015-04-09 14:06:40 -------- d-----w- C:\AdwCleaner\Quarantine\C\Users\Brasil\AppData\Roaming\baidu
2015-04-09 14:06:40 2015-04-09 14:06:40 -------- d-----w- C:\AdwCleaner\Quarantine\C\Users\Brasil\AppData\Roaming\baidu\Baidu Antivirus
2014-11-24 23:48:23 2014-11-24 23:48:23 -------- d-----w- C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805
2014-11-24 23:48:23 2014-11-26 13:07:02 -------- d-----w- C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805\Baidu Antivirus
2014-11-24 23:47:41 2014-11-24 23:47:41 -------- d-----w- C:\Users\Public\Documents\Baidu

==== Files Found ======================


==== Registry Search Results for "baidu" ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Processing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Temp]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"="baidubar.dll;BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"="baidubar.dll;BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared\HTML]
"KnownIDs"="htmlfile;ChromeHTML;BaiduSparkHTML"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe]
"Path"="C:\\Program Files (x86)\\baidu\\Spark"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe]
@="C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm]
@="BaiduSparkHTML"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html]
@="BaiduSparkHTML"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml]
@="BaiduSparkHTML"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht]
@="BaiduSparkHTML"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml]
@="BaiduSparkHTML"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\DefaultIcon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Edit]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Edit\command]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Print]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Print\command]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ShellEx]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ShellEx\IconHandler]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old Icon\BaiduSparkHTML]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ftp\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ftp\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\http\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\http\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\https\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\https\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old Icon\BaiduSparkHTML]

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet]
@="BaiduSpark.EXE"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7D753A0C-4F0B-416F-AD86-234D52093A33}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\bdtray.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{DABF5546-FC4B-437C-9976-EDA4D84D7F63}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\bdtray.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7D753A0C-4F0B-416F-AD86-234D52093A33}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\bdtray.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{DABF5546-FC4B-437C-9976-EDA4D84D7F63}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\bdtray.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7D753A0C-4F0B-416F-AD86-234D52093A33}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\bdtray.exe|Name=Spark|"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{DABF5546-FC4B-437C-9976-EDA4D84D7F63}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\Program Files (x86)\\baidu\\Spark\\bdtray.exe|Name=Spark|"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Baidu Security]

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Baidu Security\PC Faster]

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm]
"Progid"="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids]
"BaiduSparkHTML"=hex(0):

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html]
"Progid"="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids]
"BaiduSparkHTML"=hex(0):

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mht]
"Progid"="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mhtml]
"Progid"="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids]
"BaiduSparkHTML"=hex(0):

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
"Progid"="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.htm]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.html]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.shtml]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.xht]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.xhtml]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\ftp\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\ftp\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\http\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\http\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\https\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\https\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.htm]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.html]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.shtml]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.xht]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.xhtml]
@="BaiduSparkHTML"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\ftp\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\ftp\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\http\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\http\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\https\DefaultIcon]
@="C:\\Program Files (x86)\\baidu\\Spark\\resource\\application\\Image\\baidubrowserfile.ico"

[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\https\shell\open\command]
@="\"C:\\Program Files (x86)\\baidu\\Spark\\Spark.exe\" -- \"%1\""

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [01/09/2014 17:25]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [01/09/2014 17:25]

==== Fake Chromium Profiles Check ======================

Fake profile C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Docs - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Brasil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Larissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Vanusa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com.br/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com.br/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Brasil\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Brasil\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Larissa\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Larissa\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Vanusa\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Vanusa\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Brasil\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Brasil\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Larissa\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Vanusa\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Brasil\Desktop\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\Users\Brasil\Desktop\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
C:\Users\Brasil\Desktop\µTorrent.lnk -

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
C:\Users\Public\Desktop\Central de Soluções HP.lnk -
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\Loja de Suprimentos HP.lnk - C:\Program Files (x86)\HP\HPSSUPPLY\hpqSSupply.exe
C:\Users\Public\Desktop\Samsung Kies (Lite).lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe /lite
C:\Users\Public\Desktop\Samsung Kies.lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
C:\Users\Public\Desktop\TeamViewer 10.lnk - C:\Program Files (x86)\TeamViewer\TeamViewer.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Brasil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Inicializador de aplicativos do Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --show-app-list

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1046-7B44-AB0000000001}\SC_Reader.ico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk - C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Console do Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Encerrar Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Iniciar Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe

==== shortcuts in Quick Launch ======================

C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies (Lite).lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe /lite
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Inicializador de aplicativos do Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --show-app-list
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\Brasil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\Vanusa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office PowerPoint 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\LETCIA~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Brasil\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Brasil\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Larissa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Vanusa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\LETCIA~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Brasil\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Larissa\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Vanusa\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\LETCIA~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=375 folders=82 220296823 bytes)

==== Empty Temp Folders ======================

C:\Users\Brasil\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Larissa\AppData\Local\Temp emptied successfully
C:\Users\Vanusa\AppData\Local\Temp emptied successfully
C:\Users\LETCIA~1\AppData\Local\Temp emptied successfully
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Brasil\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 09/04/2015 at 11:58:05,42 ======================
Pedrão Baiano
Pedrão Baiano
Iniciante
Iniciante

Mensagens : 5
Reputação : 0
Data de inscrição : 09/04/2015

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Power Max Qui 09 Abr 2015, 12:29

Computador com adwares e outros problemas 772309  Faça o download do OTM (de Old Timer) no link abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Selecione e copie todo o texto destacado em vermelho abaixo:

:Commands
[createrestorepoint]
:Files
C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805
C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805\Baidu Antivirus
C:\Users\Public\Documents\Baidu
:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Processing]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Temp]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared\HTML]
"KnownIDs"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe]
"Path"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml]
@=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\DefaultIcon]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Edit]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Edit\command]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Print]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Print\command]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ShellEx]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ShellEx\IconHandler]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old Icon\BaiduSparkHTML]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ftp\DefaultIcon]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ftp\shell\open\command]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\http\DefaultIcon]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\http\shell\open\command]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\https\DefaultIcon]
@=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\https\shell\open\command]
@=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old Icon\BaiduSparkHTML]
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet]
@=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7D753A0C-4F0B-416F-AD86-234D52093A33}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{DABF5546-FC4B-437C-9976-EDA4D84D7F63}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7D753A0C-4F0B-416F-AD86-234D52093A33}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{DABF5546-FC4B-437C-9976-EDA4D84D7F63}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7D753A0C-4F0B-416F-AD86-234D52093A33}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}"=-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{DABF5546-FC4B-437C-9976-EDA4D84D7F63}"=-
[-HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Baidu Security]
[-HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Baidu Security\PC Faster]
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm]
"Progid"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids]
"BaiduSparkHTML"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html]
"Progid"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids]
"BaiduSparkHTML"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mht]
"Progid"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mhtml]
"Progid"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids]
"BaiduSparkHTML"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
"Progid"=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.htm]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.html]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.shtml]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.xht]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.xhtml]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\ftp\DefaultIcon]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\ftp\shell\open\command]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\http\DefaultIcon]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\http\shell\open\command]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\https\DefaultIcon]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\https\shell\open\command]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.htm]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.html]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.shtml]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.xht]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.xhtml]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\ftp\DefaultIcon]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\ftp\shell\open\command]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\http\DefaultIcon]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\http\shell\open\command]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\https\DefaultIcon]
@=-
[HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\https\shell\open\command]
@=-


Clique com o botão direito do mouse sobre o OTM.exe e escolha a opção Executar como administrador.

Cole o texto que você acabou de copiar acima no espaço em branco abaixo da frase Paste instructions for itens to be Moved

Depois disto clique no botão MoveIt!

Depois de fazer os procedimentos acima, feche o OTM. Nota: O OTM deverá pedir para reiniciar o PC para concluir o processo de eliminação dos problemas, neste caso é só confirmar clicando em Yes. Neste caso, após a reinicialização, navegue até a pasta C:\_OTMoveIt\MovedFiles e abra o mais novo arquivo com extensão .log presente, selecione e copie todo o conteúdo desse relatório e poste aqui em seu próximo post.

Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.

Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.


Última edição por Power Max em Sáb 11 Abr 2015, 10:16, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Pedrão Baiano Qui 09 Abr 2015, 12:35

========== COMMANDS ==========
Restore point Set: OTM Restore Point
========== FILES ==========
C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805\Baidu Antivirus folder moved successfully.
C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805 folder moved successfully.
File/Folder C:\Program Files (x86)\Baidu-Security-2014-4.4.4.82805\Baidu Antivirus not found.
C:\Users\Public\Documents\Baidu\Common\I18N folder moved successfully.
C:\Users\Public\Documents\Baidu\Common folder moved successfully.
C:\Users\Public\Documents\Baidu folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Processing\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Temp\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}\\DllName deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{77FEF28E-EB96-44FF-B511-3185DEA48697}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}\\DllName deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B580CF65-E151-49C3-B73F-70B13FCA8E86}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared\HTML\\KnownIDs deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe\\Path deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Spark.exe not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml\\@ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\DefaultIcon\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Edit\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Edit\command\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Print\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\shell\Print\command\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ShellEx\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BaiduSparkHTML\ShellEx\IconHandler\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old Icon\BaiduSparkHTML\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ftp\DefaultIcon\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ftp\shell\open\command\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\http\DefaultIcon\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\http\shell\open\command\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\https\DefaultIcon\\@ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\https\shell\open\command\\@ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old Icon\BaiduSparkHTML\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\\@ not found.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000\ scheduled to be deleted on reboot.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9805B4A0-4F81-4DE5-A5D4-D987546E2D99} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7D753A0C-4F0B-416F-AD86-234D52093A33} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7D753A0C-4F0B-416F-AD86-234D52093A33}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DABF5546-FC4B-437C-9976-EDA4D84D7F63} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DABF5546-FC4B-437C-9976-EDA4D84D7F63}\ not found.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000\ scheduled to be deleted on reboot.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9805B4A0-4F81-4DE5-A5D4-D987546E2D99} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7D753A0C-4F0B-416F-AD86-234D52093A33} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7D753A0C-4F0B-416F-AD86-234D52093A33}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DABF5546-FC4B-437C-9976-EDA4D84D7F63} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DABF5546-FC4B-437C-9976-EDA4D84D7F63}\ not found.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000\ scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000\\DeviceDesc scheduled to be deleted on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000\ scheduled to be deleted on reboot.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9805B4A0-4F81-4DE5-A5D4-D987546E2D99} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9805B4A0-4F81-4DE5-A5D4-D987546E2D99}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7D753A0C-4F0B-416F-AD86-234D52093A33} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7D753A0C-4F0B-416F-AD86-234D52093A33}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ADCA89A7-DD6B-4D18-A70C-F7CE136DE859}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DABF5546-FC4B-437C-9976-EDA4D84D7F63} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DABF5546-FC4B-437C-9976-EDA4D84D7F63}\ not found.
Registry key HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Baidu Security\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Baidu Security\PC Faster\ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\\Progid deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids\\BaiduSparkHTML deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\\Progid deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids\\BaiduSparkHTML deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mht\\Progid deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mhtml\\Progid deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids\\BaiduSparkHTML deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice\\Progid deleted successfully.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.htm\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.html\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.shtml\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.xht\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\.xhtml\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\ftp\DefaultIcon\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\ftp\shell\open\command\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\http\DefaultIcon\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\http\shell\open\command\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\https\DefaultIcon\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000\Software\Classes\https\shell\open\command\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.htm\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.html\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.shtml\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.xht\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\.xhtml\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\ftp\DefaultIcon\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\ftp\shell\open\command\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\http\DefaultIcon\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\http\shell\open\command\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\https\DefaultIcon\\@ not found.
Registry value HKEY_USERS\S-1-5-21-265679749-3563345915-3817159058-1000_Classes\https\shell\open\command\\@ not found.

OTM by OldTimer - Version 3.1.21.0 log created on 04092015_122412
Pedrão Baiano
Pedrão Baiano
Iniciante
Iniciante

Mensagens : 5
Reputação : 0
Data de inscrição : 09/04/2015

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Power Max Qui 09 Abr 2015, 14:28

Computador com adwares e outros problemas 772309 Faça o download do Malwarebytes em um destes links abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Obs: Depois de acessar um destes links acima, clique no botão DOWNLOAD, como mostra a imagem abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Para instalá-lo e executá-lo corretamente siga, por gentileza, as dicas desta postagem:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Na sua próxima resposta poste este log (relatório) do Malwarebytes.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Pedrão Baiano Sáb 11 Abr 2015, 10:13

Muito obrigado, Power Max! Fiz a limpeza com o Malwarebytes como você indicou e alguns problemas foram removidos. Fiz também uma limpeza com o Ccleaner, desativei o início automático de alguns programas que iniciavam junto com o Windows e assim o computador ficou perfeito novamente.

Parabéns pelo ótimo trabalho que vocês do Fórum PC Brasil realizam.
Pedrão Baiano
Pedrão Baiano
Iniciante
Iniciante

Mensagens : 5
Reputação : 0
Data de inscrição : 09/04/2015

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Power Max Sáb 11 Abr 2015, 10:14

isso aí! Fico feliz que o problema tenha sido resolvido.

Computador com adwares e outros problemas 772309 Só para finalizar siga estes tutoriais abaixo, por gentileza:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________________________

Computador com adwares e outros problemas 772309 Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Tens de ter uma conta e sessão iniciada para poderes visualizar este link].
_______________________________________________________________________________________________________________________

Computador com adwares e outros problemas 648673379 Foi um prazer ajudar. Conte sempre conosco!

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Power Max Sáb 11 Abr 2015, 10:15

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

< [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] > << Link!

> Leia as várias dicas que estão contidas na Cartilha de Segurança e fique livre de infecções.

CASO RESOLVIDO

> Necessitando nova verificação para este computador, basta abrir um Novo Tópico" e relatar o problema.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Computador com adwares e outros problemas Empty Re: Computador com adwares e outros problemas

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Ir para o topo Ir para baixo

Ir para o topo

- Tópicos semelhantes

 
Permissões neste sub-fórum
Não podes responder a tópicos