Shetef Solutions e Consulting (1998)

por Julia91 Qui 24 Out 2013, 15:25

Boa tarde, instalei um programa para baixar músicas e acompanhado dele veio esse inconveniente Shetef Solutions e Consulting... desinstalei o programa de músicas e mesmo assim continua aparecendo a notificação se eu desejo que o programa faça alterações no meu computador.
Já tentei por outros fóruns e não obtive resultado.

Gostaria de uma assistência, pois já está irritando de 30 em 30 segundos aparecer isso.

por **Power Max** Qui 24 Out 2013, 15:33

Shetef Solutions e Consulting (1998) 648673379

Oi Júlia! Seja bem vinda ao Fórum PC Brasil.

Shetef Solutions e Consulting (1998) 772309

Siga, por gentileza, as dicas do tutorial abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste, por gentileza, o log do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

por Julia91 Qui 24 Out 2013, 15:42

Obrigada! :rindo_ate_agor Já tinha executado o AdwCleaner, segue o log:

# AdwCleaner v3.010 - Relatório criado 24/10/2013 às 14:53:52
# Atualizado 20/10/2013 por Xplode
# Sistema Operacional : Windows 7 Home Premium Service Pack 1 (64 bits)
# Usuário : Jéssica - JÉSSICA-PC
# Executando de : C:\Users\Jéssica\Desktop\adwcleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

Serviço Deletada : vToolbarUpdater17.0.12

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\ProgramData\Ask
Pasta Deletada : C:\ProgramData\AVG Secure Search
Pasta Deletada : C:\ProgramData\Babylon
Pasta Deletada : C:\ProgramData\baidu
Pasta Deletada : C:\Program Files (x86)\AVG Secure Search
Pasta Deletada : C:\Program Files (x86)\BrowserCompanion
Pasta Deletada : C:\Program Files (x86)\DAEMON Tools Toolbar
Pasta Deletada : C:\Program Files (x86)\LyriXeeker
Pasta Deletada : C:\Program Files (x86)\OApps
Pasta Deletada : C:\Program Files (x86)\Common Files\AVG Secure Search
Pasta Deletada : C:\Program Files (x86)\Common Files\spigot
Pasta Deletada : C:\Users\Jéssica\AppData\Local\apn
Pasta Deletada : C:\Users\Jéssica\AppData\Local\AVG Secure Search
Pasta Deletada : C:\Users\Jéssica\AppData\Local\lollipop
Pasta Deletada : C:\Users\Jéssica\AppData\LocalLow\AVG Secure Search
Pasta Deletada : C:\Users\Jéssica\AppData\LocalLow\BabylonToolbar
Pasta Deletada : C:\Users\Jéssica\AppData\LocalLow\Funmoods
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\baidu
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\BrowserCompanion
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\eIntaller
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\iWin
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\OpenCandy
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\SearchYa
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\UpdaterEX
Pasta Deletada : C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\Extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Arquivo Deletada : C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
Arquivo Deletada : C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\invalidprefs.js
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Arquivo Deletada : C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\searchplugins\search.xml
Arquivo Deletada : C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\user.js
Arquivo Deletada : C:\Users\Jéssica\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cjpglkicenollcignonpgiafdgfeehoj_0.localstorage
Arquivo Deletada : C:\Windows\System32\Tasks\Dealply
Arquivo Deletada : C:\Windows\System32\Tasks\Searchya
Arquivo Deletada : C:\Windows\Tasks\UpdaterEX.job
Arquivo Deletada : C:\Windows\System32\Tasks\UpdaterEX

***** [ Atalhos ] *****

Atalho Desinfectada : C:\Users\Jéssica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Atalho Desinfectada : C:\Users\Jéssica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk

***** [ Registro ] *****

Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
Valor Deletedo : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
Valor Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Chave Deletedo : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Chave Deletedo : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Chave Deletedo : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Chave Deletedo : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Chave Deletedo : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Chave Deletedo : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Chave Deletedo : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Chave Deletedo : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsLatest_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsLatest_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.Sandbox.1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_ares_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_ares_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_avi-recomp_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_avi-recomp_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_mjbookmaker_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_mjbookmaker_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{15F6BCB7-BB0F-4A66-8762-4765B05597EB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{1973277F-87B0-4EA3-9ED2-470A91D284CF}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411181196}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455185596}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466186696}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444184496}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411181196}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411181196}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{819DC4CA-4FFF-4C2E-800D-F346471D99BC}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411181196}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2E9A2DCB-F5DB-40D0-8E62-3B47DD476A77}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{59B23951-2232-4AFB-81D4-64A8A16D457A}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{81E522F1-9E90-47DD-A2CE-39B0C00274A0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8E096DFB-6AB7-45C7-BF64-B313C7096529}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{996A9940-2F2C-4486-A479-439C4A15F278}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9B7D44BA-376C-456F-B289-5034270322FD}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9BD8FF26-2C71-4D35-9FE2-AD8D25AECC36}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{BCE6E914-AEF0-4FEE-8FC8-06F9B42BF890}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{BD8D5FFA-4F92-48AD-BFBE-7896916656F5}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C92E6D80-EC54-45CC-AC4B-A7CF42F11B52}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D1CB564E-F38A-4F2A-8257-60E3F8BE9F34}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{F293BBC0-DA7E-4CF1-9EEA-CE90CFE0DF86}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{FEFBC559-C3C7-4287-B05B-49D489B80749}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455185596}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466186696}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411181196}
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\AVG Secure Search
Chave Deletedo : HKCU\Software\Blabbers
Chave Deletedo : HKCU\Software\Cr_Installer
Chave Deletedo : HKCU\Software\IGearSettings
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKCU\Software\installedbrowserextensions
Chave Deletedo : HKCU\Software\lollipop
Chave Deletedo : HKCU\Software\searchya
Chave Deletedo : HKCU\Software\Softonic
Chave Deletedo : HKCU\Software\UpdateStar
Chave Deletedo : HKCU\Software\AppDataLow\Software\Crossrider
Chave Deletedo : HKCU\Software\AppDataLow\Software\lyrixeeker
Chave Deletedo : HKCU\Software\AppDataLow\Software\Search Settings
Chave Deletedo : HKLM\Software\AVG Secure Search
Chave Deletedo : HKLM\Software\AVG Security Toolbar
Chave Deletedo : HKLM\Software\InstallCore
Chave Deletedo : HKLM\Software\PIP
Chave Deletedo : HKLM\Software\portaldositesSoftware
Chave Deletedo : HKLM\Software\Updater By Sweetpacks
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Chave Deletedo : [x64] HKLM\SOFTWARE\Updater By Sweetpacks

***** [ Navegadores ] *****

-\\ Internet Explorer v10.0.9200.16720

Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]

-\\ Mozilla Firefox v13.0.1 (pt-BR)

[ Arquivo : C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\prefs.js ]

Linha deletada : user_pref("browser.search.defaultenginename", "portaldosites");
Linha deletada : user_pref("browser.search.order.1", "portaldosites");
Linha deletada : user_pref("browser.search.selectedEngine", "portaldosites");
Linha deletada : user_pref("extensions.BabylonToolbar.admin", false);
Linha deletada : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Linha deletada : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
Linha deletada : user_pref("extensions.BabylonToolbar.autoRvrt", "false");
Linha deletada : user_pref("extensions.BabylonToolbar.babExt", "");
Linha deletada : user_pref("extensions.BabylonToolbar.babTrack", "affID=44444&tt=120912_nocpc_3712_7");
Linha deletada : user_pref("extensions.BabylonToolbar.babext", "babExt");
Linha deletada : user_pref("extensions.BabylonToolbar.babtrack", "babTrack");
Linha deletada : user_pref("extensions.BabylonToolbar.bbDpng", "14");
Linha deletada : user_pref("extensions.BabylonToolbar.cntry", "BR");
Linha deletada : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Linha deletada : user_pref("extensions.BabylonToolbar.dfltlng", "en");
Linha deletada : user_pref("extensions.BabylonToolbar.dfltsrch", "false");
Linha deletada : user_pref("extensions.BabylonToolbar.envrmnt", "production");
Linha deletada : user_pref("extensions.BabylonToolbar.excTlbr", false);
Linha deletada : user_pref("extensions.BabylonToolbar.firstrun", false);
Linha deletada : user_pref("extensions.BabylonToolbar.hdrMd5", "A71A0EA3C39E2CCD4AE617CC10DC1A5C");
Linha deletada : user_pref("extensions.BabylonToolbar.hmpg", false);
Linha deletada : user_pref("extensions.BabylonToolbar.hrdid", "32fc6728000000000000ac72890cb260");
Linha deletada : user_pref("extensions.BabylonToolbar.id", "32fc6728000000000000ac72890cb260");
Linha deletada : user_pref("extensions.BabylonToolbar.instlDay", "15598");
Linha deletada : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Linha deletada : user_pref("extensions.BabylonToolbar.instlday", "15598");
Linha deletada : user_pref("extensions.BabylonToolbar.instlref", "sst");
Linha deletada : user_pref("extensions.BabylonToolbar.isdcmntcmplt", "false");
Linha deletada : user_pref("extensions.BabylonToolbar.keywordurl", "");
Linha deletada : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.6.9.1217:58:45");
Linha deletada : user_pref("extensions.BabylonToolbar.lastdp", 14);
Linha deletada : user_pref("extensions.BabylonToolbar.mntrvrsn", "1.3.1");
Linha deletada : user_pref("extensions.BabylonToolbar.newTab", false);
Linha deletada : user_pref("extensions.BabylonToolbar.newtab", "false");
Linha deletada : user_pref("extensions.BabylonToolbar.newtaburl", "");
Linha deletada : user_pref("extensions.BabylonToolbar.pnu_tb9", "{\"newVrsn\":\"2\",\"lastVrsn\":\"2\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"showSilent\":\"false\",\"msgTs\":0}");
Linha deletada : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Linha deletada : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Linha deletada : user_pref("extensions.BabylonToolbar.prtnrid", "babylon");
Linha deletada : user_pref("extensions.BabylonToolbar.savedVrsnTs", "1");
Linha deletada : user_pref("extensions.BabylonToolbar.sg", "azb");
Linha deletada : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Linha deletada : user_pref("extensions.BabylonToolbar.smplgrp", "azb");
Linha deletada : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Linha deletada : user_pref("extensions.BabylonToolbar.srcext", "ss");
Linha deletada : user_pref("extensions.BabylonToolbar.srch", "");
Linha deletada : user_pref("extensions.BabylonToolbar.srchprvdr", "");
Linha deletada : user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
Linha deletada : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=32fc6728000000000000ac72890cb260&q=");
Linha deletada : user_pref("extensions.BabylonToolbar.tlbrid", "tb9");
Linha deletada : user_pref("extensions.BabylonToolbar.tlbrsrchurl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=32fc6728000000000000ac72890cb260&q=");
Linha deletada : user_pref("extensions.BabylonToolbar.vrsn", "1.6.9.12");
Linha deletada : user_pref("extensions.BabylonToolbar.vrsnTs", "1.6.9.1217:58:45");
Linha deletada : user_pref("extensions.BabylonToolbar.vrsni", "1.6.9.12");
Linha deletada : user_pref("extensions.BabylonToolbar.vrsnts", "1.6.9.1217:58:45");
Linha deletada : user_pref("extensions.BabylonToolbar_i.babExt", "");
Linha deletada : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=44444&tt=120912_nocpc_3712_7");
Linha deletada : user_pref("extensions.BabylonToolbar_i.newTab", false);
Linha deletada : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Linha deletada : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Linha deletada : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.9.1217:58:45");
Linha deletada : user_pref("extensions.funmoods.aflt", "ironpub");
Linha deletada : user_pref("extensions.funmoods.autoRvrt", false);
Linha deletada : user_pref("extensions.funmoods.dfltLng", "");
Linha deletada : user_pref("extensions.funmoods.dfltSrch", true);
Linha deletada : user_pref("extensions.funmoods.dnsErr", true);
Linha deletada : user_pref("extensions.funmoods.envrmnt", "production");
Linha deletada : user_pref("extensions.funmoods.excTlbr", false);
Linha deletada : user_pref("extensions.funmoods.hmpg", true);
Linha deletada : user_pref("extensions.funmoods.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytD0C0BtByCtAyCyBtBzztN0D0Tzu0StBtAyBtN1L2XzutBtFtCtFtCtFtAtCtB&cr=2050219[...]
Linha deletada : user_pref("extensions.funmoods.id", "AC72890CB2636728");
Linha deletada : user_pref("extensions.funmoods.instlDay", "15577");
Linha deletada : user_pref("extensions.funmoods.instlRef", "ironpub");
Linha deletada : user_pref("extensions.funmoods.isdcmntcmplt", true);
Linha deletada : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Linha deletada : user_pref("extensions.funmoods.newTabUrl", "hxxp://start.funmoods.com/?f=2&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytD0C0BtByCtAyCyBtBzztN0D0Tzu0StBtAyBtN1L2XzutBtFtCtFtCtFtAtCtB&cr=20502[...]
Linha deletada : user_pref("extensions.funmoods.prdct", "funmoods");
Linha deletada : user_pref("extensions.funmoods.prtnrId", "funmoods");
Linha deletada : user_pref("extensions.funmoods.srchPrvdr", "Search");
Linha deletada : user_pref("extensions.funmoods.tlbrId", "base");
Linha deletada : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://start.funmoods.com/?f=3&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytD0C0BtByCtAyCyBtBzztN0D0Tzu0StBtAyBtN1L2XzutBtFtCtFtCtFtAtCtB&cr=205[...]
Linha deletada : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Linha deletada : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Linha deletada : user_pref("extensions.funmoods_i.newTab", true);
Linha deletada : user_pref("extensions.funmoods_i.smplGrp", "none");
Linha deletada : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2218:6:5");

-\\ Google Chrome v

[ Arquivo : C:\Users\Jéssica\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [27639 octets] - [24/10/2013 14:50:50]
AdwCleaner[S0].txt - [25275 octets] - [24/10/2013 14:53:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [25336 octets] ##########

por **Power Max** Qui 24 Out 2013, 15:50

Vários problemas foram removidos pelo AdwCleaner. Mas para completar a remoção deste "Shetef Solutions" são necessários outros procedimentos que o administrador [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] irá lhe passar assim que ele estiver online.

por Wings [In Memoriam] Qui 24 Out 2013, 15:57

Olá Julia91

Shetef Solutions e Consulting (1998) 772309

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Farbar) e salve-o no Desktop

*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Aceite o contrato, desmarque a opção Addition.txt, clique [Scan] e ao término clique [OK]

*Cole ou anexe o relatório FRST.txt criado no Desktop

por Julia91 Qui 24 Out 2013, 16:31

Pronto, segue abaixo:
E desde já agradeço por dar andamento na assistência.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-10-2013
Ran by Jéssica (administrator) on JÉSSICA-PC on 24-10-2013 16:25:00
Running from C:\Users\Jéssica\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
() C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
() C:\Windows\SysWOW64\SupportAppXL\cdrom_mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\system32\mfevtps.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
() C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
(CashPartners Company) C:\Users\Jéssica\AppData\Local\aHaskZ3\CashPartners.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Advanced Micro Devices Inc.) c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(keepvid.com Company) C:\Users\Jéssica\AppData\Local\keepvid.com.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apntex.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidFind.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IEXPLORE.EXE
(Google Inc.) C:\Users\Jéssica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jéssica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jéssica\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] - c:\Program Files\Dell\QuickSet\QuickSet.exe [3666800 2011-01-21] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [DellStage] - C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj [207845 2011-04-29] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe [500208 2012-06-25] (Adobe Systems Incorporated)
HKLM\...\Run: [IntelWireless] - c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe [1933584 2010-12-17] (Intel(R) Corporation)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 1999-12-31] (IDT, Inc.)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Google Update] - C:\Users\Jéssica\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-10-20] (Google Inc.)
HKCU\...\Run: [EA Core] - C:\Program Files (x86)\Electronic Arts\EADM\Core.exe [3325952 2009-03-28] (Electronic Arts)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation)
HKCU\...\Run: [CashPartners] - C:\Users\Jéssica\AppData\Local\aHaskZ3\CashPartners.exe [259072 2013-10-02] (CashPartners Company)
MountPoints2: E - E:\LaunchU3.exe -a
MountPoints2: {2e74b738-ee9d-11e0-99e2-ac72890cb263} - F:\LaunchU3.exe -a
MountPoints2: {3377de45-f55f-11e2-a5fc-ac72890cb263} - F:\Autorun.exe
MountPoints2: {cba09701-e1aa-11e0-98bc-ac72890cb263} - E:\AutoRun.exe
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [1532992 2013-03-13] (McAfee, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [AccuWeatherWidget] - C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj [2825741 2011-04-29] ()
HKLM-x32\...\Run: [WinampAgent] - "C:\Program Files (x86)\Winamp\winampa.exe"
HKLM-x32\...\Run: [PlusService] - C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe [802304 2013-01-23] (Yuna Software)
HKLM-x32\...\Run: [RoxWatchTray] - c:\program files (x86)\common files\roxio shared\oem\12.0\sharedcom\roxwatchtray12oem.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [StartCCC] - c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe [336384 2011-05-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2013-07-13] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [keepvid] - C:\Users\Jéssica\AppData\Local\keepvid.com.exe [1120256 2013-06-10] (keepvid.com Company)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE30B5097094ECD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-BR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {3543F656-F817-508A-B125-68575D7BCB99} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
SearchScopes: HKLM-x32 - {5746572A-1D5C-E355-16A3-39A7D581C4D3} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - Backup.Old.DefaultScope {CBBA220F-2CB8-4BCC-B891-5A2F3C7B6DA5}
SearchScopes: HKCU - {12847651-EC85-4E0E-9EFD-459C63649E72} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {3543F656-F817-508A-B125-68575D7BCB99} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {49606DC7-976D-4030-A74E-9FB5C842FA68} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20130309172038.dll (McAfee, Inc.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - C:\Program Files\mcafee\msk\mskapbho.dll ()
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: keepvid.com - {49ed9900-38cd-453c-bba7-3f2613317f5a} - C:\Users\Jéssica\AppData\Local\keepvid.dll (keepvid.com Company)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20130309172042.dll (McAfee, Inc.)
BHO-x32: Auxiliar de Conexão do Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {CAC42510-9B41-42c1-9DCD-7282A2D07C61} - No File
BHO-x32: SoundFrost - {d997c836-ff82-4519-b459-1482ba942a4f} - C:\PROGRA~2\BAIXAR~1\SOUNDF~1.DLL No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {4A85DBE0-BFB2-4119-8401-186A7C6EB653} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Handler: livecall - No CLSID Value -
Handler: msnim - No CLSID Value -
Handler-x32: livecall - No CLSID Value -
Handler-x32: msnim - No CLSID Value -
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Hosts: 0.0.0.0 rad.msn.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default
FF Homepage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF Keyword.URL: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=15.0.4.53 - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\8\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Jéssica\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Jéssica\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Jéssica\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-br.xml
FF Extension: No Name - C:\Users\Jéssica\AppData\Roaming\Mozilla\Firefox\Profiles\kvtp6orl.default\Extensions\ed105019-0ac5-4666-b537-51b7d0aef96b@b7c6859b-ad30-40be-a166-552cb29db885.com
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF Extension: McAfee ScriptScan for Firefox - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK
FF HKCU\...\FireFox\Extensions: [SoundFrost@helper.com] - C:\Program Files (x86)\Baixar Musicas Gratis\SoundFrost.xpi
FF HKCU\...\FireFox\Extensions: [keepvid.com@helper.com] - C:\Users\Jéssica\AppData\Local\keepvid.xpi
FF Extension: No Name - C:\Users\Jéssica\AppData\Local\keepvid.xpi
FF HKCU\...\FireFox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack] - C:\Program Files (x86)\Baixar Musicas Gratis\SoundFrost.xpi

Chrome:
=======
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\J\u00E9ssica\AppData\Local\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\J\u00E9ssica\AppData\Local\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\J\u00E9ssica\AppData\Local\Google\Chrome\Application\30.0.1599.69\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprpplugin.dll (RealPlayer)
CHR Plugin: (McAfeeScanAndRepair) - C:\Users\J\u00E9ssica\AppData\Local\Google\Chrome\Application\plugins\npMcAfeeSRPlgn.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\8\NP_wtapp.dll ()
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
CHR Extension: (YouTube) - C:\Users\JSSICA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\JSSICA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\JSSICA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\JSSICA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.0.crx
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM-x32\...\Chrome\Extension: [kngjfmklipimnkegmcilmbhchklgjgfl] - C:\Users\Jéssica\AppData\Local\Google\Chrome\User Data\Default\Extensions\kngjfmklipimnkegmcilmbhchklgjgfl.crx
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.3.crx
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx

==================== Services (Whitelisted) =================

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] ()
R2 Autorun CDROM Monitor; C:\Windows\SysWow64\SupportAppXL\cdrom_mon.exe [81920 2007-10-17] ()
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [7168 2009-07-13] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McAWFwk; c:\PROGRA~1\mcafee\msc\mcawfwk.exe [220528 2010-08-30] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-11-16] (McAfee, Inc.)
S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241456 2013-02-19] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218760 2013-02-19] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-02-19] (McAfee, Inc.)
S3 msiserver; C:\Windows\SysWow64\msiexec.exe [73216 2010-11-21] (Microsoft Corporation)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-12-17] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation)

por Julia91 Qui 24 Out 2013, 16:32

==================== Drivers (Whitelisted) ====================

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-10-01] (AVG Technologies)
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [46912 2013-07-15] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [32064 2013-07-15] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [100960 2013-08-16] (Baidu, Inc.)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-02-19] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179280 2013-02-19] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309840 2013-02-19] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515968 2013-02-19] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771536 2013-02-19] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106552 2013-02-19] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340216 2013-02-19] (McAfee, Inc.)
S3 ONDAusbmdm6k; C:\Windows\System32\DRIVERS\ONDAusbmdm6k.sys [144640 2008-01-08] (ONDA Corporation)
S3 ONDAusbmdm6k; C:\Windows\SysWow64\DRIVERS\ONDAusbmdm6k.sys [144640 2008-01-08] (ONDA Corporation)
S3 ONDAusbnmea; C:\Windows\System32\DRIVERS\ONDAusbnmea.sys [144640 2008-01-08] (ONDA Corporation)
S3 ONDAusbnmea; C:\Windows\SysWow64\DRIVERS\ONDAusbnmea.sys [144640 2008-01-08] (ONDA Corporation)
S3 ONDAusbser6k; C:\Windows\System32\DRIVERS\ONDAusbser6k.sys [144640 2008-01-08] (ONDA Corporation)
S3 ONDAusbser6k; C:\Windows\SysWow64\DRIVERS\ONDAusbser6k.sys [144640 2008-01-08] (ONDA Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-07-25] ()
S3 CtClsFlt; system32\DRIVERS\CtClsFlt.sys [x]
S3 mfehidk01; \Device\mfehidk01.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-10-24 16:24 - 2013-10-24 16:24 - 00000000 ____D C:\FRST
2013-10-24 16:23 - 2013-10-24 16:23 - 01955412 _____ (Farbar) C:\Users\Jéssica\Desktop\FRST64.exe
2013-10-24 14:50 - 2013-10-24 15:37 - 00000000 ____D C:\AdwCleaner
2013-10-24 14:48 - 2013-10-24 14:49 - 01060070 _____ C:\Users\Jéssica\Desktop\adwcleaner.exe
2013-10-24 14:11 - 2013-10-24 14:56 - 00000168 _____ C:\Windows\setupact.log
2013-10-24 14:11 - 2013-10-24 14:11 - 00004028 _____ C:\Windows\PFRO.log
2013-10-24 14:11 - 2013-10-24 14:11 - 00000000 _____ C:\Windows\setuperr.log
2013-10-24 13:43 - 2013-08-16 06:43 - 00100960 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bprotect.sys
2013-10-24 13:43 - 2013-07-15 01:47 - 00046912 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2013-10-24 13:43 - 2013-07-15 01:47 - 00032064 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2013-10-24 13:42 - 2013-10-24 13:42 - 00000029 _____ C:\Windows\SysWOW64\config.ini
2013-10-24 13:35 - 2013-10-24 13:58 - 00000211 _____ C:\Users\Jéssica\daemonprocess.txt
2013-10-24 13:35 - 2013-10-24 13:50 - 00000000 ____D C:\Users\Jéssica\AppData\Local\Mobogenie
2013-10-24 13:35 - 2013-10-24 13:35 - 00000000 ____D C:\Users\Jéssica\Documents\Mobogenie
2013-10-24 13:35 - 2013-10-24 13:35 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\eCyber
2013-10-24 13:34 - 2013-10-24 13:55 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\iSafe
2013-10-24 13:04 - 2013-10-24 14:10 - 00851608 _____ C:\Users\Jéssica\AppData\Local\helper.dat
2013-10-24 13:04 - 2013-10-24 14:10 - 00089088 _____ (keepvid.com Company) C:\Users\Jéssica\AppData\Local\keepvid.dll
2013-10-24 13:04 - 2013-10-24 14:10 - 00035009 _____ C:\Users\Jéssica\AppData\Local\keepvid.xpi
2013-10-24 13:04 - 2013-10-24 13:04 - 00000000 ____D C:\Users\Jéssica\AppData\Local\aHaskZ3
2013-10-24 13:04 - 2013-08-19 12:42 - 00108032 _____ C:\Users\Jéssica\AppData\Local\ContentAgent.exe
2013-10-24 13:04 - 2013-08-07 16:32 - 02598912 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Jéssica\AppData\Local\QtCore4.dll
2013-10-24 13:04 - 2013-06-27 11:16 - 08581632 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Jéssica\AppData\Local\QtGui4.dll
2013-10-24 13:04 - 2013-06-27 11:10 - 01053696 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Jéssica\AppData\Local\QtNetwork4.dll
2013-10-24 13:04 - 2013-06-10 17:59 - 01120256 _____ (keepvid.com Company) C:\Users\Jéssica\AppData\Local\keepvid.com.exe
2013-10-24 13:04 - 2013-03-18 18:45 - 01122304 _____ (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] C:\Users\Jéssica\AppData\Local\libeay32.dll
2013-10-24 13:04 - 2013-03-18 18:45 - 00274432 _____ (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] C:\Users\Jéssica\AppData\Local\ssleay32.dll
2013-10-24 13:04 - 2011-06-11 01:58 - 00773968 _____ (Microsoft Corporation) C:\Users\Jéssica\AppData\Local\msvcr100.dll
2013-10-24 13:04 - 2011-06-11 01:58 - 00421200 _____ (Microsoft Corporation) C:\Users\Jéssica\AppData\Local\msvcp100.dll
2013-10-24 12:40 - 2013-10-24 12:41 - 00000000 ____D C:\Users\Jéssica\Downloads\Baixar Musicas Gratis
2013-10-24 12:38 - 2013-10-24 14:10 - 00000286 __RSH C:\Users\Jéssica\ntuser.pol
2013-10-24 12:34 - 2013-10-24 12:34 - 21245326 _____ (Baixar Musicas Gratis Company ) C:\Users\Jéssica\Downloads\379-baixar-musicas-gratis.exe
2013-10-24 10:20 - 2013-10-24 10:20 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-24 10:20 - 2013-10-24 10:20 - 00000000 ____D C:\ProgramData\Oracle
2013-10-24 10:20 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-24 10:19 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-24 10:19 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-24 10:19 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-24 10:18 - 2013-10-24 10:19 - 00004877 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-15 12:26 - 2013-10-15 12:26 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-10-14 12:37 - 2013-10-14 12:39 - 00000000 ____D C:\Users\Jéssica\AppData\Local\{9BC21D8C-2C12-43AF-B18B-0239E7D9A980}
2013-10-14 11:33 - 2013-04-17 05:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-14 11:33 - 2013-04-17 04:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-14 11:12 - 2013-10-22 10:48 - 00001516 _____ C:\Users\Jéssica\Desktop\dino.txt
2013-10-13 21:38 - 2013-10-13 21:38 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-13 21:38 - 2013-10-13 21:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-13 21:38 - 2013-10-13 21:38 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-13 21:38 - 2013-10-13 21:38 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-13 21:38 - 2013-10-13 21:38 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-13 21:38 - 2013-10-13 21:38 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-13 21:38 - 2013-10-13 21:38 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-13 21:38 - 2013-10-13 21:38 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-13 21:38 - 2013-10-13 21:38 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-13 21:38 - 2013-10-13 21:38 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-13 21:38 - 2013-10-13 21:38 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-13 21:36 - 2013-10-13 21:36 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-11 12:15 - 2013-10-11 12:15 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\Apple Computer
2013-10-10 13:09 - 2013-06-25 20:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 12:34 - 2013-08-27 23:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 12:34 - 2013-08-01 10:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 12:29 - 2013-07-04 10:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 12:29 - 2013-07-04 09:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 12:19 - 2013-06-06 03:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 12:19 - 2013-06-06 03:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 12:19 - 2013-06-06 03:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 12:19 - 2013-06-06 03:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 12:19 - 2013-06-06 02:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 12:19 - 2013-06-06 02:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 12:19 - 2013-06-06 02:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 12:19 - 2013-06-06 01:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 12:19 - 2013-06-06 01:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 12:19 - 2013-06-06 01:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 12:17 - 2013-07-12 08:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 12:17 - 2013-07-12 08:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 12:16 - 2013-07-03 02:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 12:16 - 2013-07-03 02:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 12:05 - 2013-09-13 23:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 12:05 - 2013-09-08 00:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 12:05 - 2013-09-08 00:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 12:05 - 2013-09-08 00:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 12:05 - 2013-07-04 10:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 12:05 - 2013-07-04 10:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 12:05 - 2013-07-04 09:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 12:05 - 2013-07-04 09:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 12:05 - 2013-07-04 08:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 12:03 - 2013-08-27 23:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 12:02 - 2013-08-29 00:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 12:02 - 2013-08-29 00:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 12:02 - 2013-08-29 00:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 12:02 - 2013-08-29 00:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 12:02 - 2013-08-29 00:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 12:02 - 2013-08-28 23:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 12:02 - 2013-08-28 23:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 12:02 - 2013-08-28 23:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 12:02 - 2013-08-28 23:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 12:02 - 2013-08-28 23:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 12:02 - 2013-08-28 23:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 12:02 - 2013-08-28 22:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 12:02 - 2013-08-28 22:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 12:02 - 2013-08-28 22:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 12:02 - 2013-08-28 22:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 11:59 - 2013-07-20 08:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:59 - 2013-07-20 08:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-08 14:40 - 2013-10-08 14:40 - 00000000 ____D C:\Users\Jéssica\AppData\Local\{B7BE2EC3-76C2-410B-AB8B-651B81EE9D8F}
2013-10-08 14:40 - 2013-10-08 14:40 - 00000000 ____D C:\Users\Jéssica\AppData\Local\{96BF7C13-812F-497B-8500-6435DC243D65}
2013-10-07 14:15 - 2013-10-07 14:15 - 00000000 ____D C:\Users\Jéssica\Desktop\draw
2013-10-05 17:16 - 2008-08-30 22:06 - 00000000 ____D C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio
2013-10-05 16:06 - 2013-10-05 17:16 - 100000000 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part2.rar
2013-10-05 15:36 - 2013-10-05 16:06 - 69717840 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part4.rar
2013-10-05 15:15 - 2013-10-05 15:36 - 100000000 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part3.rar
2013-10-05 14:11 - 2013-10-05 15:14 - 100000000 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part1.rar

==================== One Month Modified Files and Folders =======

2013-10-24 16:24 - 2013-10-24 16:24 - 00000000 ____D C:\FRST
2013-10-24 16:23 - 2013-10-24 16:23 - 01955412 _____ (Farbar) C:\Users\Jéssica\Desktop\FRST64.exe
2013-10-24 15:39 - 2011-08-08 11:53 - 01476664 _____ C:\Windows\WindowsUpdate.log
2013-10-24 15:37 - 2013-10-24 14:50 - 00000000 ____D C:\AdwCleaner
2013-10-24 15:36 - 2012-09-15 23:12 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\vlc
2013-10-24 15:06 - 2009-07-14 02:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-24 15:06 - 2009-07-14 02:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-24 15:04 - 2012-09-21 18:44 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-24 15:04 - 2012-09-21 18:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-24 14:58 - 2011-08-08 12:16 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-10-24 14:57 - 2012-08-21 02:08 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-24 14:57 - 2011-08-08 12:24 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\SoftThinks
2013-10-24 14:57 - 2011-08-08 12:24 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-10-24 14:57 - 2011-08-08 12:24 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-10-24 14:56 - 2013-10-24 14:11 - 00000168 _____ C:\Windows\setupact.log
2013-10-24 14:56 - 2012-11-19 19:13 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-10-24 14:56 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-24 14:54 - 2011-10-20 01:05 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-24 14:49 - 2013-10-24 14:48 - 01060070 _____ C:\Users\Jéssica\Desktop\adwcleaner.exe
2013-10-24 14:42 - 2010-11-21 07:37 - 00703792 _____ C:\Windows\system32\prfh0416.dat
2013-10-24 14:42 - 2010-11-21 07:37 - 00146578 _____ C:\Windows\system32\prfc0416.dat
2013-10-24 14:42 - 2009-07-14 03:13 - 01629080 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-24 14:24 - 2011-08-12 18:24 - 00000000 ____D C:\Users\Jéssica
2013-10-24 14:11 - 2013-10-24 14:11 - 00004028 _____ C:\Windows\PFRO.log
2013-10-24 14:11 - 2013-10-24 14:11 - 00000000 _____ C:\Windows\setuperr.log
2013-10-24 14:10 - 2013-10-24 13:04 - 00851608 _____ C:\Users\Jéssica\AppData\Local\helper.dat
2013-10-24 14:10 - 2013-10-24 13:04 - 00089088 _____ (keepvid.com Company) C:\Users\Jéssica\AppData\Local\keepvid.dll
2013-10-24 14:10 - 2013-10-24 13:04 - 00035009 _____ C:\Users\Jéssica\AppData\Local\keepvid.xpi
2013-10-24 14:10 - 2013-10-24 12:38 - 00000286 __RSH C:\Users\Jéssica\ntuser.pol
2013-10-24 13:58 - 2013-10-24 13:35 - 00000211 _____ C:\Users\Jéssica\daemonprocess.txt
2013-10-24 13:55 - 2013-10-24 13:34 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\iSafe
2013-10-24 13:52 - 2011-11-01 01:40 - 00000000 ____D C:\Users\Jéssica\AppData\Local\cache
2013-10-24 13:50 - 2013-10-24 13:35 - 00000000 ____D C:\Users\Jéssica\AppData\Local\Mobogenie
2013-10-24 13:42 - 2013-10-24 13:42 - 00000029 _____ C:\Windows\SysWOW64\config.ini
2013-10-24 13:35 - 2013-10-24 13:35 - 00000000 ____D C:\Users\Jéssica\Documents\Mobogenie
2013-10-24 13:35 - 2013-10-24 13:35 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\eCyber
2013-10-24 13:34 - 2012-07-11 21:16 - 00001376 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-24 13:34 - 2011-08-12 18:27 - 00001595 _____ C:\Users\Jéssica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-24 13:04 - 2013-10-24 13:04 - 00000000 ____D C:\Users\Jéssica\AppData\Local\aHaskZ3
2013-10-24 12:41 - 2013-10-24 12:40 - 00000000 ____D C:\Users\Jéssica\Downloads\Baixar Musicas Gratis
2013-10-24 12:38 - 2009-07-14 01:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-10-24 12:38 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2013-10-24 12:34 - 2013-10-24 12:34 - 21245326 _____ (Baixar Musicas Gratis Company ) C:\Users\Jéssica\Downloads\379-baixar-musicas-gratis.exe
2013-10-24 12:28 - 2013-08-02 10:24 - 00000000 ____D C:\Users\Jéssica\Desktop\séries
2013-10-24 12:20 - 2013-08-29 17:38 - 00011596 _____ C:\Users\Jéssica\Desktop\Pasta1.xlsx
2013-10-24 10:20 - 2013-10-24 10:20 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-24 10:20 - 2013-10-24 10:20 - 00000000 ____D C:\ProgramData\Oracle
2013-10-24 10:19 - 2013-10-24 10:18 - 00004877 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-24 10:19 - 2011-08-08 12:04 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-24 10:06 - 2013-01-21 21:10 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\uTorrent
2013-10-22 17:44 - 2012-08-21 02:08 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-22 10:48 - 2013-10-14 11:12 - 00001516 _____ C:\Users\Jéssica\Desktop\dino.txt
2013-10-22 09:39 - 2012-08-21 02:08 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-22 09:39 - 2012-08-21 02:08 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-21 11:57 - 2012-01-14 23:46 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-20 19:18 - 2013-04-12 01:17 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\Wise Disk Cleaner
2013-10-20 19:18 - 2012-08-21 02:32 - 00000000 ____D C:\Users\Todos os Usuários\Spybot - Search & Destroy
2013-10-20 19:18 - 2012-08-21 02:32 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-17 21:16 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\rescache
2013-10-16 13:09 - 2011-02-12 14:12 - 00000000 ____D C:\Windows\panther
2013-10-16 02:26 - 2012-06-15 02:04 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-15 16:24 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-10-15 12:27 - 2012-06-15 02:04 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-15 12:27 - 2012-06-07 16:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-15 12:27 - 2011-08-08 11:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-15 12:26 - 2013-10-15 12:26 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-10-15 11:41 - 2011-08-08 12:40 - 00000000 ____D C:\Users\Todos os Usuários\Sonic
2013-10-15 11:41 - 2011-08-08 12:40 - 00000000 ____D C:\ProgramData\Sonic
2013-10-14 14:27 - 2013-09-13 10:43 - 00000000 ____D C:\Program Files (x86)\LyricsSeeker
2013-10-14 12:39 - 2013-10-14 12:37 - 00000000 ____D C:\Users\Jéssica\AppData\Local\{9BC21D8C-2C12-43AF-B18B-0239E7D9A980}
2013-10-14 12:39 - 2011-08-13 02:33 - 00000000 ____D C:\Users\Jéssica\AppData\Local\Windows Live
2013-10-13 23:19 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-13 23:19 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-13 23:19 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-13 23:19 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-13 23:19 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-13 21:38 - 2013-10-13 21:38 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-13 21:38 - 2013-10-13 21:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-13 21:38 - 2013-10-13 21:38 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-13 21:38 - 2013-10-13 21:38 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-13 21:38 - 2013-10-13 21:38 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-13 21:38 - 2013-10-13 21:38 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-13 21:38 - 2013-10-13 21:38 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-13 21:38 - 2013-10-13 21:38 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-13 21:38 - 2013-10-13 21:38 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-13 21:38 - 2013-10-13 21:38 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-13 21:38 - 2013-10-13 21:38 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-13 21:38 - 2013-10-13 21:38 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-13 21:38 - 2013-10-13 21:38 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-13 21:36 - 2013-10-13 21:36 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-13 21:36 - 2013-10-13 21:36 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-12 20:20 - 2011-10-20 01:03 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-896786521-3137217294-1523364232-1000UA.job
2013-10-12 12:20 - 2011-10-20 01:03 - 00001034 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-896786521-3137217294-1523364232-1000Core.job
2013-10-11 12:23 - 2011-10-20 01:05 - 00002380 _____ C:\Users\Jéssica\Desktop\Google Chrome.lnk
2013-10-11 12:15 - 2013-10-11 12:15 - 00000000 ____D C:\Users\Jéssica\AppData\Roaming\Apple Computer
2013-10-11 12:15 - 2011-10-20 01:03 - 00004060 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-896786521-3137217294-1523364232-1000UA
2013-10-11 12:15 - 2011-10-20 01:03 - 00003664 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-896786521-3137217294-1523364232-1000Core
2013-10-11 12:08 - 2012-08-26 14:05 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 12:08 - 2012-08-26 14:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 12:08 - 2009-07-14 02:45 - 05099800 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 04:20 - 2011-08-16 13:21 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2013-10-11 04:20 - 2011-08-16 13:21 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 04:15 - 2011-02-12 10:22 - 01597720 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-11 04:11 - 2013-07-22 09:30 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 04:07 - 2011-08-16 13:42 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 17:44 - 2013-03-04 13:53 - 00000000 ____D C:\Users\Jéssica\Desktop\Faculdade
2013-10-09 14:37 - 2013-06-26 10:46 - 00000000 ____D C:\Users\Jéssica\Desktop\fts
2013-10-09 00:46 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-08 14:40 - 2013-10-08 14:40 - 00000000 ____D C:\Users\Jéssica\AppData\Local\{B7BE2EC3-76C2-410B-AB8B-651B81EE9D8F}
2013-10-08 14:40 - 2013-10-08 14:40 - 00000000 ____D C:\Users\Jéssica\AppData\Local\{96BF7C13-812F-497B-8500-6435DC243D65}
2013-10-08 07:50 - 2013-10-24 10:19 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-24 10:20 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-24 10:19 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-24 10:19 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-07 14:15 - 2013-10-07 14:15 - 00000000 ____D C:\Users\Jéssica\Desktop\draw
2013-10-05 17:16 - 2013-10-05 16:06 - 100000000 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part2.rar
2013-10-05 16:06 - 2013-10-05 15:36 - 69717840 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part4.rar
2013-10-05 15:36 - 2013-10-05 15:15 - 100000000 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part3.rar
2013-10-05 15:14 - 2013-10-05 14:11 - 100000000 _____ C:\Users\Jéssica\Downloads\Ingles_Apostila_Audio.part1.rar
2013-10-03 16:57 - 2012-12-30 13:02 - 00003348 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-896786521-3137217294-1523364232-1000
2013-10-03 16:57 - 2012-12-30 13:02 - 00003218 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-896786521-3137217294-1523364232-1000
2013-10-01 16:32 - 2013-07-25 15:38 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-09-30 15:52 - 2012-02-19 17:57 - 00000000 ____D C:\Users\Jéssica\MegaJogos
2013-09-27 18:50 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\tracing

Some content of TEMP:
====================
C:\Users\Jéssica\AppData\Local\Temp\EAD1100.exe
C:\Users\Jéssica\AppData\Local\Temp\EAD52A1.exe
C:\Users\Jéssica\AppData\Local\Temp\EADEF5D.exe
C:\Users\Jéssica\AppData\Local\Temp\MusicCodecPack__3465_il1.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-06-13 16:18

==================== End Of Log ============================

por Julia91 Qui 24 Out 2013, 17:00

Ainda continua aparecendo Shetef Solutions e Consulting (1998) 849755

por Wings [In Memoriam] Qui 24 Out 2013, 17:02

Baixe o arquivo fixlist.txt e salve-o no mesmo local onde encontra-se o FRST

*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Clique [Fix]

*Reinicie o PC e cole o relatório Fixlog.txt criado no Desktop

por Julia91 Qui 24 Out 2013, 17:33

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-10-2013
Ran by Jéssica at 2013-10-24 17:06:37 Run:1
Running from C:\Users\Jéssica\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Users\Jéssica\AppData\Local\aHaskZ3
C:\Users\Jéssica\AppData\Local\keepvid.com.exe
C:\Program Files (x86)\Baixar Musicas Gratis
C:\Users\Jéssica\AppData\Local\keepvid.xpi
C:\Program Files (x86)\Common Files\Spigot
C:\Users\Jéssica\AppData\Local\Google\Chrome\User Data\Default\Extensions\kngjfmklipimnkegmcilmbhchklgjgfl.crx
C:\Windows\System32\drivers\Bfilter.sys
C:\Windows\System32\drivers\Bfmon.sys
C:\Windows\System32\drivers\Bprotect.sys
C:\Users\Jéssica\AppData\Roaming\iSafe
C:\Users\Jéssica\AppData\Local\helper.dat
C:\Users\Jéssica\AppData\Local\keepvid.dll
C:\Users\Jéssica\AppData\Local\ContentAgent.exe
C:\Users\Jéssica\AppData\Local\libeay32.dll
C:\Users\Jéssica\AppData\Local\ssleay32.dll
C:\Users\Jéssica\Downloads\Baixar Musicas Gratis
C:\Users\Jéssica\Downloads\379-baixar-musicas-gratis.exe
C:\Program Files (x86)\LyricsSeeker
C:\Users\Jéssica\AppData\Local\Temp\EAD1100.exe
C:\Users\Jéssica\AppData\Local\Temp\EAD52A1.exe
C:\Users\Jéssica\AppData\Local\Temp\EADEF5D.exe
C:\Users\Jéssica\AppData\Local\Temp\MusicCodecPack__3465_il1.exe
HKCU\...\Run: [CashPartners]
HKLM-x32\...\Run: [keepvid]
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {3543F656-F817-508A-B125-68575D7BCB99} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM-x32 - {5746572A-1D5C-E355-16A3-39A7D581C4D3} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {12847651-EC85-4E0E-9EFD-459C63649E72} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {49606DC7-976D-4030-A74E-9FB5C842FA68} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO-x32: keepvid.com - {49ed9900-38cd-453c-bba7-3f2613317f5a}
BHO-x32: No Name - {CAC42510-9B41-42c1-9DCD-7282A2D07C61}
BHO-x32: SoundFrost - {d997c836-ff82-4519-b459-1482ba942a4f}
FF HKCU\...\FireFox\Extensions: [SoundFrost@helper.com]
FF HKCU\...\FireFox\Extensions: [keepvid.com@helper.com]
FF Extension: No Name - C:\Users\Jéssica\AppData\Local\keepvid.xpi
FF HKCU\...\FireFox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj]
CHR HKLM-x32\...\Chrome\Extension: [kngjfmklipimnkegmcilmbhchklgjgfl]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp]
R1 Bfilter;
R1 Bfmon;
R1 Bprotect;

*****************

C:\Users\Jéssica\AppData\Local\aHaskZ3 => Moved successfully.
C:\Users\Jéssica\AppData\Local\keepvid.com.exe => Moved successfully.
"C:\Program Files (x86)\Baixar Musicas Gratis" => File/Directory not found.
C:\Users\Jéssica\AppData\Local\keepvid.xpi => Moved successfully.
"C:\Program Files (x86)\Common Files\Spigot" => File/Directory not found.
C:\Windows\System32\drivers\Bfilter.sys => Moved successfully.
C:\Windows\System32\drivers\Bfmon.sys => Moved successfully.
C:\Windows\System32\drivers\Bprotect.sys => Moved successfully.
C:\Users\Jéssica\AppData\Roaming\iSafe => Moved successfully.
C:\Users\Jéssica\AppData\Local\helper.dat => Moved successfully.
C:\Users\Jéssica\AppData\Local\keepvid.dll => Moved successfully.
C:\Users\Jéssica\AppData\Local\ContentAgent.exe => Moved successfully.
C:\Users\Jéssica\AppData\Local\libeay32.dll => Moved successfully.
C:\Users\Jéssica\AppData\Local\ssleay32.dll => Moved successfully.
C:\Users\Jéssica\Downloads\Baixar Musicas Gratis => Moved successfully.
C:\Users\Jéssica\Downloads\379-baixar-musicas-gratis.exe => Moved successfully.
C:\Program Files (x86)\LyricsSeeker => Moved successfully.
C:\Users\Jéssica\AppData\Local\Temp\EAD1100.exe => Moved successfully.
C:\Users\Jéssica\AppData\Local\Temp\EAD52A1.exe => Moved successfully.
C:\Users\Jéssica\AppData\Local\Temp\EADEF5D.exe => Moved successfully.
C:\Users\Jéssica\AppData\Local\Temp\MusicCodecPack__3465_il1.exe => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\HKCU\...\Run: [CashPartners] => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HKLM-x32\...\Run: [keepvid] => Value not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache => Value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3543F656-F817-508A-B125-68575D7BCB99} => Key deleted successfully.
HKCR\CLSID\{3543F656-F817-508A-B125-68575D7BCB99} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{5746572A-1D5C-E355-16A3-39A7D581C4D3} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{5746572A-1D5C-E355-16A3-39A7D581C4D3} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{12847651-EC85-4E0E-9EFD-459C63649E72} => Key deleted successfully.
HKCR\CLSID\{12847651-EC85-4E0E-9EFD-459C63649E72} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{49606DC7-976D-4030-A74E-9FB5C842FA68} => Key deleted successfully.
HKCR\CLSID\{49606DC7-976D-4030-A74E-9FB5C842FA68} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{49ed9900-38cd-453c-bba7-3f2613317f5a} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{49ed9900-38cd-453c-bba7-3f2613317f5a} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CAC42510-9B41-42c1-9DCD-7282A2D07C61} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{CAC42510-9B41-42c1-9DCD-7282A2D07C61} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d997c836-ff82-4519-b459-1482ba942a4f} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{d997c836-ff82-4519-b459-1482ba942a4f} => Key deleted successfully.
HKCU\Software\Mozilla\FireFox\Extensions\\FF HKCU\...\FireFox\Extensions: [SoundFrost@helper.com] => Value not found.
HKCU\Software\Mozilla\FireFox\Extensions\\FF HKCU\...\FireFox\Extensions: [keepvid.com@helper.com] => Value not found.
C:\Users\Jéssica\AppData\Local\keepvid.xpi not found.
HKCU\Software\Mozilla\FireFox\Extensions\\FF HKCU\...\FireFox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack] => Value not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] => Key not found.
"CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj]" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] => Key not found.
"CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj]" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\CHR HKLM-x32\...\Chrome\Extension: [kngjfmklipimnkegmcilmbhchklgjgfl] => Key not found.
"CHR HKLM-x32\...\Chrome\Extension: [kngjfmklipimnkegmcilmbhchklgjgfl]" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] => Key not found.
"CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk]" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] => Key not found.
"CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp]" => File/Directory not found.
Bfilter => Service deleted successfully.
Bfmon => Service deleted successfully.
Bprotect => Service deleted successfully.

The system needs a manual reboot.

==== End of Fixlog ====

por Julia91 Qui 24 Out 2013, 17:36

Acho que o problema foi resolvido, pois até agora não apareceu mais a notificação.

Obrigada!

por Wings [In Memoriam] Qui 24 Out 2013, 17:38

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Execute-o, deixe selecionadas as opções Remove disinfection tools e Purge system restore

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Clique [Run] e cole o relatório apresentado

Um abraço... Shetef Solutions e Consulting (1998) 960671

Shetef Solutions e Consulting (1998) 960671

por Julia91 Qui 24 Out 2013, 17:58

# DelFix v10.5 - Logfile created 24/10/2013 at 17:55:30
# Updated 17/10/2013 by Xplode
# Username : Jéssica - JÉSSICA-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Jéssica\Desktop\adwcleaner.exe
Deleted : C:\Users\Jéssica\Desktop\Fixlog.txt
Deleted : C:\Users\Jéssica\Desktop\FRST.txt
Deleted : C:\Users\Jéssica\Desktop\FRST64.exe
Deleted : HKLM\SOFTWARE\AdwCleaner

~ Cleaning system restore ...

Deleted : RP #256 [Windows Update | 10/13/2013 23:33:22]
Deleted : RP #257 [Windows Update | 10/15/2013 06:00:25]
Deleted : RP #258 [Windows Update | 10/16/2013 04:37:53]
Deleted : RP #259 [Ponto de Verificação Agendado | 10/24/2013 05:53:17]
Deleted : RP #260 [Installed Java 7 Update 45 | 10/24/2013 12:17:11]
Deleted : RP #261 [Removed Internet Explorer Toolbar 4.9 by SweetPacks | 10/24/2013 16:05:45]

New restore point created !

########## - EOF - ##########

Um abraço wings Shetef Solutions e Consulting (1998) 960671

e continue com o ótimo trabalho

por Wings [In Memoriam] Qui 24 Out 2013, 18:00

CASO RESOLVIDO

Caso o(a) autor(a) do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.

por Conteúdo patrocinado

Shetef Solutions e Consulting (1998)

Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Re: Shetef Solutions e Consulting (1998)

Seg	Ter	Qua	Qui	Sex	Sáb	Dom
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31