Flux 
Social bookmarking
Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking
Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking
Estatísticas
Temos 14810 usuários registradosO último membro registrado é Josevinil
Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Quem está conectado?
Há 5 usuários online :: 0 registrados, 0 invisíveis e 5 visitantes Nenhum
O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
Top dos mais postadores
| Power Max |
| |||
| joram |
| |||
| Wings [In Memoriam] |
| |||
| caedurodrigues |
| |||
| Amigo Brasileiro |
| |||
| luizvilarinho |
| |||
| Danii |
| |||
| Admin |
| |||
| Danilo Marsaro |
| |||
| Andreata |
|
O Google Crome e Mozila não estão abrindo, o virus continua
2 participantes
Página 1 de 1
O Google Crome e Mozila não estão abrindo, o virus continua
por Eliciana Ter 04 Mar 2014, 13:51
Só passei um dia com o mozila abrindo, no outro dia ficou com era antes se abrir, o que faço ?
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Ter 04 Mar 2014, 14:19
Oi Eliciana.
Siga, por gentileza, as dicas do tutorial abaixo:[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
* Na sua próxima resposta poste, por gentileza, o log do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt
Ficamos na espera.
Última edição por Power Max em Dom 23 Mar 2014, 22:57, editado 1 vez(es)
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Log
por Eliciana Qua 05 Mar 2014, 16:31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Ultimate x86
Ran by Eliciana on 05/03/2014 at 15:54:20,79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{20614095-4D41-48BA-850A-E173623F3B85}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{27BD55DF-FDAE-4F22-B32C-CC91FF0DE787}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{3801F733-78AD-484A-8956-EE17C26675F1}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{57DAD6CD-47B2-4378-AD61-BB952B625FFE}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{5C518DBE-B148-4441-966A-D378DA1B6119}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{6EE16046-88CC-40F4-8D3F-141643E0F2EC}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{F57178EF-3250-4BCE-BB93-AB461AB8A9A6}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{F69D6BB0-83C8-4319-A9D9-C530EC433E23}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05/03/2014 at 16:00:51,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Ultimate x86
Ran by Eliciana on 05/03/2014 at 15:54:20,79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{20614095-4D41-48BA-850A-E173623F3B85}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{27BD55DF-FDAE-4F22-B32C-CC91FF0DE787}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{3801F733-78AD-484A-8956-EE17C26675F1}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{57DAD6CD-47B2-4378-AD61-BB952B625FFE}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{5C518DBE-B148-4441-966A-D378DA1B6119}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{6EE16046-88CC-40F4-8D3F-141643E0F2EC}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{F57178EF-3250-4BCE-BB93-AB461AB8A9A6}
Successfully deleted: [Empty Folder] C:\Users\Eliciana\appdata\local\{F69D6BB0-83C8-4319-A9D9-C530EC433E23}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05/03/2014 at 16:00:51,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Qua 05 Mar 2014, 16:55
Siga, por gentileza, as dicas do tutorial abaixo:[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
* Na sua próxima resposta poste, por gentileza, o log do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt
Ficamos na espera.
Última edição por Power Max em Dom 23 Mar 2014, 22:58, editado 1 vez(es)
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Log
por Eliciana Qui 06 Mar 2014, 11:04
Atualizado 27/02/2014 por Xplode
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : Eliciana - ELICIANA-PC
# Executando de : C:\Users\Eliciana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FJH7E8WZ\AdwCleaner.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Atalhos ] *****
***** [ Registro ] *****
***** [ Navegadores ] *****
-\\ Internet Explorer v9.0.8112.16476
-\\ Mozilla Firefox v27.0.1 (pt-BR)
[ Arquivo : C:\Users\Eliciana\AppData\Roaming\Mozilla\Firefox\Profiles\ektqd4k8.default\prefs.js ]
-\\ Google Chrome v34.0.1847.45
[ Arquivo : C:\Users\Eliciana\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [984 octets] - [06/03/2014 10:45:00]
AdwCleaner[S0].txt - [903 octets] - [06/03/2014 10:52:11]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [962 octets] ##########
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : Eliciana - ELICIANA-PC
# Executando de : C:\Users\Eliciana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FJH7E8WZ\AdwCleaner.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Atalhos ] *****
***** [ Registro ] *****
***** [ Navegadores ] *****
-\\ Internet Explorer v9.0.8112.16476
-\\ Mozilla Firefox v27.0.1 (pt-BR)
[ Arquivo : C:\Users\Eliciana\AppData\Roaming\Mozilla\Firefox\Profiles\ektqd4k8.default\prefs.js ]
-\\ Google Chrome v34.0.1847.45
[ Arquivo : C:\Users\Eliciana\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [984 octets] - [06/03/2014 10:45:00]
AdwCleaner[S0].txt - [903 octets] - [06/03/2014 10:52:11]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [962 octets] ##########
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Qui 06 Mar 2014, 11:05
O log está limpo, o problema ainda continua?
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Sim
por Eliciana Sex 07 Mar 2014, 11:15
Não entendo desinstalei o mozila e google crome e baixei novamente e nehum dos dois funcionam, quando tento abrir eles fecham em segundos.
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Sex 07 Mar 2014, 11:28
Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] > < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )|- Desabilite temporariamente seu antivírus para evitar conflitos e execute "ZHPDiag2.exe", para instalar a ferramenta.
|- Execute o ícone do pergaminho. ( ZHPDiag )
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
|- Clique "SEARCH" ou "PESQUISAR" e aguarde a conclusão!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
|- Clique OK e, ao concluir, poste o relatório ZHPDiag.txt
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
Última edição por Power Max em Dom 23 Mar 2014, 22:58, editado 1 vez(es)
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Log
por Eliciana Sex 07 Mar 2014, 16:09
Relatório do ZHPDiag v2014.3.2.6 - Nicolas Coolman (03/03/2014)
~ Iniciado por Eliciana (07/03/2014 16:03:31)
~ Endereço do Website : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Fóruns de suporte gratuito para desinfecção : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Tradução pelo utilizador
~ Estatuto da versão :
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Deactivate by program
---\\ Navegadores Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 27.0.1 (Defaut)
GCIE: Google Chrome v33.0.1750.146
---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 7 Ultimate, 32-bit (Build 7600)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Softwares de proteçao do sistema
avast! Free Antivirus v8.0.1483.0
Windows Defender W7
---\\ Softwares d'optimização do sistema
CCleaner v3.26 =>Piriform Ltd
---\\ Softwares de partilha do PeerToPeer (P2P)
---\\ Monitoramento dos softwares
Adobe Flash Player 12 Plugin
Java 7 Update 15
---\\ Informações sobre o sistema
~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 503 MB (14% free)
System Restore: Activé (Enable)
System drive C: has 16 GB (43%) free of 37 GB
---\\ Modo de conexão ao sistema
~ Computer Name: ELICIANA-PC
~ User Name: Eliciana
~ All Users Names: HomeGroupUser$, Eliciana, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator
---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Eliciana\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Eliciana\AppData\Roaming\
~ %Desktop% : C:\Users\Eliciana\Desktop\
~ %Favorites% : C:\Users\Eliciana\Favorites\
~ %LocalAppData% : C:\Users\Eliciana\AppData\Local\
~ %StartMenu% : C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumeração das unidades dos discos
A: Floppy drive, Flash card reader, USB Key (Not Inserted)
C: Hard drive, Flash drive, Thumb drive (Free 16 Go of 37 Go)
D: CD-ROM drive (Not Inserted)
---\\ Estado do Centro de Segurança do Windows
~ Security Center: 45 Legitimates Filtered in 00mn 00s
---\\ Pesquisa particular de ficheiros genéricos
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Windows Explorer.) (.26/02/2011 - 02:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.13/07/2009 - 22:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.C5B6468422DB1C8AA36C32CBB0197E5E] - (.Microsoft Corporation - Internet Extensions para Win32.) (.22/02/2013 - 00:38:00.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.28/10/2009 - 03:17:59.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.13/07/2009 - 22:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.24/04/2011 - 23:35:40.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 22:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 20:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/07/2009 - 20:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/04/2011 - 23:33:46.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/07/2009 - 20:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Driver de porta i8042.) (.13/07/2009 - 20:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 20:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.03/05/2011 - 23:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.13/07/2009 - 20:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.A8F59428E9F361C7AC42A94AC1560BC9] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.12/04/2013 - 10:58:11.) -- C:\Windows\system32\Drivers\ntfs.sys [1210728]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Driver de porta paralela.) (.13/07/2009 - 20:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/07/2009 - 20:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/07/2009 - 21:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 20:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.13/07/2009 - 20:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.59F06B4968E58BC83DFC56CA4517960E] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.06/09/2012 - 13:48:29.) -- C:\Windows\system32\Drivers\volsnap.sys [245616]
~ Generic Processes: Scanned in 00mn 00s
---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 3/105
~ Mes musiques (My Musics) : 2/7
Mes Videos (My Videos) : 3/3 (Modified)
~ Mes Favoris (My Favorites) : 1/18
~ Mes Documents (My Documents) : 6/13
~ Mon Bureau (My Desktop) : 1/16
~ Menu demarrer (Programs) : 1/25
~ Hidden Files: Scanned in 00mn 00s
---\\ Processos lançados
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.3000]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3008]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.3284]
[MD5.A1F86A5A0DA1BEC12B7DD19C6234BB15] - (...) -- C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe [966656] [PID.3444]
[MD5.86FD69B36E9168D87E5372313F159D5D] - (.Greatis Software - Advanced Windows Analyser.) -- C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abo.exe [1440256] [PID.3512]
[MD5.32732CEDE2A1106B736EF3D84054EE04] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [757376] [PID.3128]
[MD5.3D6890507128BF3BC7EEED5C0BE1B6AC] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_70_ActiveX.exe [841096] [PID.1860]
[MD5.66EA3B698F9A7EA2DBF0E4B246B6C958] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8349696] [PID.400]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Eliciana\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
~ Google Browser: 11 Legitimates Filtered in 00mn 02s
---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Barras do Internet Explorer (03))
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Toolbar: Scanned in 00mn 00s
---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [Eliciana]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Eliciana]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Eliciana]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Eliciana]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Eliciana]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Program [Eliciana]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Eliciana]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Eliciana]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Global Startup: 55 Legitimates Filtered in 00mn 02s
---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [F.lux] . (...) -- C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe
O4 - HKCU\..\Run: [mugen] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run: [F.lux] . (...) -- C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe
O4 - HKUS\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run: [mugen] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
~ Application: Scanned in 00mn 00s
---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\Domains\www] *.caixa.gov.br
~ IE Zone Confiance: Scanned in 00mn 00s
---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{13CB4C4B-4D26-42FB-9675-87AEFFCF042C}: DhcpNameServer = 10.10.10.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{DA597E56-3594-43EE-87ED-369173A63BC2}: DhcpNameServer = 177.22.193.6 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{13CB4C4B-4D26-42FB-9675-87AEFFCF042C}: DhcpNameServer = 10.10.10.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{DA597E56-3594-43EE-87ED-369173A63BC2}: DhcpNameServer = 177.22.193.6 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{13CB4C4B-4D26-42FB-9675-87AEFFCF042C}: DhcpNameServer = 10.10.10.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{DA597E56-3594-43EE-87ED-369173A63BC2}: DhcpNameServer = 177.22.193.6 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 177.22.193.6 8.8.8.8
~ Domain: Scanned in 00mn 00s
---\\ Protocolo adicional (018)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AutoHelpDesk]
~ Key Software: 124 Legitimates Filtered in 00mn 00s
---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
~ 4 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 109 Legitimates Filtered in 00mn 24s
---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.4D9D2CBD8CB22ECA2275AD0A912F3032] - 01/03/2014 - 21:23:36 ---A- . (...) -- C:\DelFix.txt [998]
O44 - LFC:[MD5.6BE803747C1A7B8FC714532F988E62F6] - 24/02/2014 - 13:14:47 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [401008]
O44 - LFC:[MD5.9147BB9EA479A35BA8D67125C48F99EF] - 24/02/2014 - 13:14:47 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [949774]
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 27/02/2014 - 15:28:44 ---A- . (...) -- C:\Windows\zoek-delete.exe [24064]
~ Files: 13 Legitimates Filtered in 00mn 03s
---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 18 Legitimates Filtered in 00mn 00s
---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:[MD5.657A61979F40D67CA29716149766FFA7] - 06/03/2013 - 20:33:24 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [49248]
O58 - SDL:[MD5.EDB0C9BA44B748E420CCA989FD8B826E] - 06/03/2013 - 20:33:24 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [164736]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 13/07/2009 - 22:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [453712]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 19:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [26624]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 13/07/2009 - 22:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [21072]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 18:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 18:40:44 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 18:40:40 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 18:40:43 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 18:40:43 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 18:40:23 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 18:40:31 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 18:40:35 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 18:40:39 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 18:40:27 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 18:40:11 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 18:40:15 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 18:40:17 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 18:40:19 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 18:40:13 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
~ Drivers: 18 Legitimates Filtered in 00mn 09s
---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\Eliciana\AppData\Local\Google\Chrome\Application\old_chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {AECDC46A-AC1B-449F-852F-7F81C44BB141} [DefaultScope] - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Keys: Scanned in 00mn 00s
---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.9DBDEE49DADD657065836572BE8CE383] [SPRF][22/02/2014] (...) -- C:\Users\Eliciana\Desktop\flux-setup.exe [559424]
~ Files: 1 Legitimates Filtered in 00mn 00s
---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 22/02/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 06/03/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 06/03/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 02/03/2013 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 10/07/1658 0 | (HOSTS Anti-PUPs) . (...) - C:\Program Files\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe
SS - | Demand 12/02/2014 118896 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 06/03/2013 45248 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 13/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 13/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 18s
---\\ Scâner Aditional (088)
Database Version : 13031 - (03/03/2014)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0
~ Additionnel Scan: 179734 Items scanned in 00mn 58s
~ 832 Legitimates filtered by white list
End of the scan (341 lines in 02mn 48s)(0)
~ Iniciado por Eliciana (07/03/2014 16:03:31)
~ Endereço do Website : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Fóruns de suporte gratuito para desinfecção : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Tradução pelo utilizador
~ Estatuto da versão :
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Deactivate by program
---\\ Navegadores Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 27.0.1 (Defaut)
GCIE: Google Chrome v33.0.1750.146
---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 7 Ultimate, 32-bit (Build 7600)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Softwares de proteçao do sistema
avast! Free Antivirus v8.0.1483.0
Windows Defender W7
---\\ Softwares d'optimização do sistema
CCleaner v3.26 =>Piriform Ltd
---\\ Softwares de partilha do PeerToPeer (P2P)
---\\ Monitoramento dos softwares
Adobe Flash Player 12 Plugin
Java 7 Update 15
---\\ Informações sobre o sistema
~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 503 MB (14% free)
System Restore: Activé (Enable)
System drive C: has 16 GB (43%) free of 37 GB
---\\ Modo de conexão ao sistema
~ Computer Name: ELICIANA-PC
~ User Name: Eliciana
~ All Users Names: HomeGroupUser$, Eliciana, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator
---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Eliciana\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Eliciana\AppData\Roaming\
~ %Desktop% : C:\Users\Eliciana\Desktop\
~ %Favorites% : C:\Users\Eliciana\Favorites\
~ %LocalAppData% : C:\Users\Eliciana\AppData\Local\
~ %StartMenu% : C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumeração das unidades dos discos
A: Floppy drive, Flash card reader, USB Key (Not Inserted)
C: Hard drive, Flash drive, Thumb drive (Free 16 Go of 37 Go)
D: CD-ROM drive (Not Inserted)
---\\ Estado do Centro de Segurança do Windows
~ Security Center: 45 Legitimates Filtered in 00mn 00s
---\\ Pesquisa particular de ficheiros genéricos
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Windows Explorer.) (.26/02/2011 - 02:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.13/07/2009 - 22:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.C5B6468422DB1C8AA36C32CBB0197E5E] - (.Microsoft Corporation - Internet Extensions para Win32.) (.22/02/2013 - 00:38:00.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.28/10/2009 - 03:17:59.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.13/07/2009 - 22:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.24/04/2011 - 23:35:40.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 22:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 20:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/07/2009 - 20:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/04/2011 - 23:33:46.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/07/2009 - 20:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Driver de porta i8042.) (.13/07/2009 - 20:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 20:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.03/05/2011 - 23:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.13/07/2009 - 20:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.A8F59428E9F361C7AC42A94AC1560BC9] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.12/04/2013 - 10:58:11.) -- C:\Windows\system32\Drivers\ntfs.sys [1210728]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Driver de porta paralela.) (.13/07/2009 - 20:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/07/2009 - 20:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/07/2009 - 21:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 20:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.13/07/2009 - 20:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.59F06B4968E58BC83DFC56CA4517960E] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.06/09/2012 - 13:48:29.) -- C:\Windows\system32\Drivers\volsnap.sys [245616]
~ Generic Processes: Scanned in 00mn 00s
---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 3/105
~ Mes musiques (My Musics) : 2/7
Mes Videos (My Videos) : 3/3 (Modified)
~ Mes Favoris (My Favorites) : 1/18
~ Mes Documents (My Documents) : 6/13
~ Mon Bureau (My Desktop) : 1/16
~ Menu demarrer (Programs) : 1/25
~ Hidden Files: Scanned in 00mn 00s
---\\ Processos lançados
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.3000]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3008]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.3284]
[MD5.A1F86A5A0DA1BEC12B7DD19C6234BB15] - (...) -- C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe [966656] [PID.3444]
[MD5.86FD69B36E9168D87E5372313F159D5D] - (.Greatis Software - Advanced Windows Analyser.) -- C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abo.exe [1440256] [PID.3512]
[MD5.32732CEDE2A1106B736EF3D84054EE04] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [757376] [PID.3128]
[MD5.3D6890507128BF3BC7EEED5C0BE1B6AC] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_70_ActiveX.exe [841096] [PID.1860]
[MD5.66EA3B698F9A7EA2DBF0E4B246B6C958] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8349696] [PID.400]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Eliciana\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
~ Google Browser: 11 Legitimates Filtered in 00mn 02s
---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Barras do Internet Explorer (03))
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Toolbar: Scanned in 00mn 00s
---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [Eliciana]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Eliciana]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Eliciana]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Eliciana]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Eliciana]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Program [Eliciana]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Eliciana]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Eliciana]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Global Startup: 55 Legitimates Filtered in 00mn 02s
---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [F.lux] . (...) -- C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe
O4 - HKCU\..\Run: [mugen] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run: [F.lux] . (...) -- C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe
O4 - HKUS\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run: [mugen] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
~ Application: Scanned in 00mn 00s
---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\Domains\www] *.caixa.gov.br
~ IE Zone Confiance: Scanned in 00mn 00s
---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{13CB4C4B-4D26-42FB-9675-87AEFFCF042C}: DhcpNameServer = 10.10.10.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{DA597E56-3594-43EE-87ED-369173A63BC2}: DhcpNameServer = 177.22.193.6 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{13CB4C4B-4D26-42FB-9675-87AEFFCF042C}: DhcpNameServer = 10.10.10.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{DA597E56-3594-43EE-87ED-369173A63BC2}: DhcpNameServer = 177.22.193.6 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{13CB4C4B-4D26-42FB-9675-87AEFFCF042C}: DhcpNameServer = 10.10.10.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{DA597E56-3594-43EE-87ED-369173A63BC2}: DhcpNameServer = 177.22.193.6 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 177.22.193.6 8.8.8.8
~ Domain: Scanned in 00mn 00s
---\\ Protocolo adicional (018)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AutoHelpDesk]
~ Key Software: 124 Legitimates Filtered in 00mn 00s
---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
~ 4 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 109 Legitimates Filtered in 00mn 24s
---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.4D9D2CBD8CB22ECA2275AD0A912F3032] - 01/03/2014 - 21:23:36 ---A- . (...) -- C:\DelFix.txt [998]
O44 - LFC:[MD5.6BE803747C1A7B8FC714532F988E62F6] - 24/02/2014 - 13:14:47 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [401008]
O44 - LFC:[MD5.9147BB9EA479A35BA8D67125C48F99EF] - 24/02/2014 - 13:14:47 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [949774]
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 27/02/2014 - 15:28:44 ---A- . (...) -- C:\Windows\zoek-delete.exe [24064]
~ Files: 13 Legitimates Filtered in 00mn 03s
---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 18 Legitimates Filtered in 00mn 00s
---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:[MD5.657A61979F40D67CA29716149766FFA7] - 06/03/2013 - 20:33:24 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [49248]
O58 - SDL:[MD5.EDB0C9BA44B748E420CCA989FD8B826E] - 06/03/2013 - 20:33:24 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [164736]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 13/07/2009 - 22:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [453712]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 19:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [26624]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 13/07/2009 - 22:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [21072]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 18:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 18:40:44 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 18:40:40 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 18:40:43 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 18:40:43 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 18:40:23 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 18:40:31 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 18:40:35 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 18:40:39 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 18:40:27 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 18:40:11 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 18:40:15 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 18:40:17 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 18:40:19 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 18:40:13 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
~ Drivers: 18 Legitimates Filtered in 00mn 09s
---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {AECDC46A-AC1B-449F-852F-7F81C44BB141} [DefaultScope] - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Keys: Scanned in 00mn 00s
---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.9DBDEE49DADD657065836572BE8CE383] [SPRF][22/02/2014] (...) -- C:\Users\Eliciana\Desktop\flux-setup.exe [559424]
~ Files: 1 Legitimates Filtered in 00mn 00s
---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 22/02/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 06/03/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 06/03/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 02/03/2013 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 10/07/1658 0 | (HOSTS Anti-PUPs) . (...) - C:\Program Files\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe
SS - | Demand 12/02/2014 118896 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 06/03/2013 45248 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 13/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 13/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 18s
---\\ Scâner Aditional (088)
Database Version : 13031 - (03/03/2014)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0
~ Additionnel Scan: 179734 Items scanned in 00mn 58s
~ 832 Legitimates filtered by white list
End of the scan (341 lines in 02mn 48s)(0)
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Sex 07 Mar 2014, 16:27
Copie todo o texto destacado em vermelho que te passei (começando em script zhpfix e indo até SysRestore)_____________________________________________________________________________________________________________
Vá no menu: Iniciar > Todos os programas > ZHP > Abra o Zhpfix > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas. Copie este relatório e poste em sua próxima resposta.
Última edição por Power Max em Sex 07 Mar 2014, 17:12, editado 1 vez(es)
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Log
por Eliciana Sex 07 Mar 2014, 17:12
apport de ZHPFix 2014.2.16.5 par Nicolas Coolman, Update du 16/02/2014
Fichier d'export Registre :
Run by Eliciana at 07/03/2014 16:49:34
High Elevated Privileges : OK
Windows 7 Ultimate Edition, 32-bit (Build 7600)
Reciclagem vazia (00mn 03s)
Reparação de atalhos do navegador
========== Processo memória ==========
ELIMINA REINICIAR: Memory Process: C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abo.exe
========== Valores do Registo ==========
ProxyFix : Configuração proxy removida com sucesso
ELIMINÉ ProxyServer Value
ELIMINÉ ProxyEnable Value
ELIMINÉ EnableHttp1_1 Value
ELIMINÉ ProxyHttp1.1 Value
ELIMINÉ ProxyOverride Value
========== Pastas ==========
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{245833D0-F9D9-4865-8675-A4619C9F0BF1}
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{4A6FC914-26C6-4871-A634-ED887D220E5C}
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{62FE3EE2-50E8-4C54-AFDC-A56FEB6DE2BA}
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{BB309FDF-3854-490A-A40F-6C74B17ED6A8}
========== Ficheiros ==========
ELIMINÉ Temporários windows (10059) (159.938.288 octets)
ELIMINÉ Flash Cookies (0) (0 octets)
========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso
========== Outros ==========
NÃO-TRATADO SysRestorescript zhpfix
========== Recapitulativo ==========
1 : Processo memória
6 : Valores do Registo
4 : Pastas
2 : Ficheiros
1 : Restauração Sistema
1 : Outros
End of clean in 02mn 53s
========== Caminho do ficheiro do relatório ==========
C:\Users\Eliciana\AppData\Roaming\ZHP\ZHPFix[R1].txt - 07/03/2014 16:49:37 [1582]
Fichier d'export Registre :
Run by Eliciana at 07/03/2014 16:49:34
High Elevated Privileges : OK
Windows 7 Ultimate Edition, 32-bit (Build 7600)
Reciclagem vazia (00mn 03s)
Reparação de atalhos do navegador
========== Processo memória ==========
ELIMINA REINICIAR: Memory Process: C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abo.exe
========== Valores do Registo ==========
ProxyFix : Configuração proxy removida com sucesso
ELIMINÉ ProxyServer Value
ELIMINÉ ProxyEnable Value
ELIMINÉ EnableHttp1_1 Value
ELIMINÉ ProxyHttp1.1 Value
ELIMINÉ ProxyOverride Value
========== Pastas ==========
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{245833D0-F9D9-4865-8675-A4619C9F0BF1}
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{4A6FC914-26C6-4871-A634-ED887D220E5C}
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{62FE3EE2-50E8-4C54-AFDC-A56FEB6DE2BA}
ELIMINÉ: C:\Users\Eliciana\AppData\Local\{BB309FDF-3854-490A-A40F-6C74B17ED6A8}
========== Ficheiros ==========
ELIMINÉ Temporários windows (10059) (159.938.288 octets)
ELIMINÉ Flash Cookies (0) (0 octets)
========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso
========== Outros ==========
NÃO-TRATADO SysRestorescript zhpfix
========== Recapitulativo ==========
1 : Processo memória
6 : Valores do Registo
4 : Pastas
2 : Ficheiros
1 : Restauração Sistema
1 : Outros
End of clean in 02mn 53s
========== Caminho do ficheiro do relatório ==========
C:\Users\Eliciana\AppData\Roaming\ZHP\ZHPFix[R1].txt - 07/03/2014 16:49:37 [1582]
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Sex 07 Mar 2014, 17:13
O problema ainda continua?
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Sim
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Sex 07 Mar 2014, 18:06
Siga, por gentileza, as dicas deste tutorial:[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Poste o log do Usbfix que estará em C:\UsbFix.txt em sua próxima resposta.
Ficamos no aguardo.
Última edição por Power Max em Dom 23 Mar 2014, 22:59, editado 1 vez(es)
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Log
por Eliciana Sex 07 Mar 2014, 20:30
uário: Eliciana (Administrador) # ELICIANA-PC
Atualizado em 26/02/2014 por El Desaparecido - Team SosVirus
Começou em 19:58:37 | 07/03/2014
Site : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Changelog : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Support : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Upload Malware : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Contato : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
PC: Dell Computer Corp. (0D8981)
CPU: Intel(R) Pentium(R) 4 CPU 2.80GHz
RAM -> [Total : 503 Mo| Free : 77 Mo]
Bios: Dell Computer Corporation
Boot: Normal boot
OS: Microsoft Windows 7 Ultimate (6.1.7600 32-Bit)
WB: Windows Internet Explorer : 9.0.8112.16421
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [(!) Disabled | (!) Outdated]
AS: avast! Antivirus [(!) Disabled | (!) Outdated]
AS: Windows Defender [Enabled | (!) Outdated]
FW: Windows FireWall [Enabled]
C:\ (%systemdrive%) -> Disco fixo # 37 Gb (16 Mb livre - 44%) [] # NTFS
D:\ -> CD-ROM
################## | Processos Ativos |
C:\Windows\system32\csrss.exe (ID: 388 |ParentID: 380)
C:\Windows\system32\wininit.exe (ID: 424 |ParentID: 380)
C:\Windows\system32\csrss.exe (ID: 436 |ParentID: 416)
C:\Windows\system32\winlogon.exe (ID: 460 |ParentID: 416)
C:\Windows\system32\services.exe (ID: 512 |ParentID: 424)
C:\Windows\system32\lsass.exe (ID: 536 |ParentID: 424)
C:\Windows\system32\lsm.exe (ID: 544 |ParentID: 424)
C:\Windows\system32\svchost.exe (ID: 648 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 724 |ParentID: 512)
C:\Windows\System32\svchost.exe (ID: 772 |ParentID: 512)
C:\Windows\System32\svchost.exe (ID: 908 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 952 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1108 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1236 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1340 |ParentID: 512)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1380 |ParentID: 512)
C:\Windows\System32\spoolsv.exe (ID: 1524 |ParentID: 512)
C:\Windows\system32\taskhost.exe (ID: 1788 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 360 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1072 |ParentID: 512)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 1200 |ParentID: 512)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 1148 |ParentID: 1200)
C:\Windows\system32\sppsvc.exe (ID: 2204 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 2364 |ParentID: 512)
C:\Windows\system32\Dwm.exe (ID: 2608 |ParentID: 908)
C:\Windows\Explorer.EXE (ID: 2620 |ParentID: 2600)
C:\Windows\system32\runonce.exe (ID: 2648 |ParentID: 2620)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 2760 |ParentID: 648)
################## | Regedit Run |
04 - HKCU\..\Run : [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
04 - HKCU\..\Run : [F.lux] "C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe" /noshow
04 - HKCU\..\Run : [mugen] wscript.exe //B "C:\Users\Eliciana\AppData\Local\Temp\mugen.vbs"
04 - HKLM\..\Run : [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
04 - HKLM\..\Run : [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run : [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
04 - HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run : [F.lux] "C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe" /noshow
04 - HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run : [mugen] wscript.exe //B "C:\Users\Eliciana\AppData\Local\Temp\mugen.vbs"
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Procura genérica |
Supprimido ! C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abo.exe
(!) Ficheiros temporários suprimido.
################## | Registro |
Reparado ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|EnableLUA -> 1
Reparado ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin -> 5
Supprimido ! HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\Software\Microsoft\Windows\CurrentVersion\Run|mugen
Supprimido ! HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\Software\.\.\.\.\Mountpoints2\E
################## | Listing |
[06/03/2014 - 09:34:41 | SHD] - C:\$RECYCLE.BIN
[10/05/2012 - 20:28:49 | D] - C:\0d30550314138427ad5798eff71b
[11/11/2012 - 10:19:29 | N | 0 Ko] - C:\1024.js
[21/02/2014 - 09:38:58 | D] - C:\15d3ae1d0a2bf01663eaf7241961
[17/11/2012 - 19:22:06 | D] - C:\3b1f7882e7e5f6c6d386cd1c
[11/01/2013 - 18:13:36 | D] - C:\4b9732286e521bcd0955f070
[10/04/2013 - 19:20:04 | D] - C:\5384fa16f4a99881071a42e1
[22/04/2012 - 18:21:26 | D] - C:\5898c53045daec8204
[10/02/2014 - 21:57:55 | D] - C:\64e3cb064cbd2d35d698575896
[10/01/2013 - 14:11:02 | D] - C:\a9a52fee473a6a95d3f1
[06/03/2014 - 10:52:20 | D] - C:\AdwCleaner
[11/01/2013 - 01:27:56 | D] - C:\aec26bc1b134277343dd1cbd7858ab
[17/04/2012 - 19:48:27 | D] - C:\Arquivos de Programas
[10/06/2009 - 18:42:20 | A | 0 Ko] - C:\autoexec.bat
[21/02/2014 - 10:18:47 | D] - C:\c3132ad0f1b25d9a9e897532
[07/03/2014 - 17:58:21 | D] - C:\Config.Msi
[10/06/2009 - 18:42:20 | N | 0 Ko] - C:\config.sys
[05/05/2012 - 07:49:02 | D] - C:\d2387c81c719dd625af8ff
[16/08/2012 - 16:13:46 | D] - C:\d5b954b513e2515558d496112dcc
[24/04/2012 - 00:26:39 | D] - C:\d721a501fe855633e02ce195dbeee8c9
[01/03/2014 - 21:23:36 | N | 1 Ko | 4D9D2CBD8CB22ECA2275AD0A912F3032] - C:\DelFix.txt
[17/04/2012 - 19:56:00 | D] - C:\Dell
[14/07/2009 - 01:53:55 | SHD] - C:\Documents and Settings
[14/06/2012 - 11:08:14 | D] - C:\fa56f6ee835d464d706c38
[17/03/2013 - 20:39:55 | D] - C:\Firefox
[07/03/2014 - 19:57:34 | ASH | 386344 Ko] - C:\hiberfil.sys
[17/04/2012 - 20:06:15 | RHD] - C:\MSOCache
[07/03/2014 - 19:57:34 | ASH | 1048576 Ko] - C:\pagefile.sys
[24/01/2013 - 20:53:19 | D] - C:\PerfLogs
[04/05/2012 - 19:38:13 | D] - C:\PFiles
[07/03/2014 - 17:59:40 | D] - C:\Program Files
[28/02/2014 - 17:15:18 | HD] - C:\ProgramData
[17/04/2012 - 19:48:27 | SHD] - C:\Recovery
[07/03/2014 - 16:49:24 | SHD] - C:\System Volume Information
[07/03/2014 - 19:55:30 | D] - C:\UsbFix
[07/03/2014 - 20:06:38 | A | 7 Ko | F4996E5EE6F8667C410C32207F28AFBA] - C:\UsbFix [Clean 2] ELICIANA-PC.txt
[15/09/2012 - 14:48:11 | D] - C:\Users
[07/03/2014 - 16:53:40 | D] - C:\Windows
[27/02/2014 - 16:11:05 | D] - C:\zoek
[27/02/2014 - 15:56:54 | D] - C:\zoek_backup
################## | Vaccin |
################## | E.O.F | [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] |
Atualizado em 26/02/2014 por El Desaparecido - Team SosVirus
Começou em 19:58:37 | 07/03/2014
Site : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Changelog : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Support : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Upload Malware : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Contato : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
PC: Dell Computer Corp. (0D8981)
CPU: Intel(R) Pentium(R) 4 CPU 2.80GHz
RAM -> [Total : 503 Mo| Free : 77 Mo]
Bios: Dell Computer Corporation
Boot: Normal boot
OS: Microsoft Windows 7 Ultimate (6.1.7600 32-Bit)
WB: Windows Internet Explorer : 9.0.8112.16421
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [(!) Disabled | (!) Outdated]
AS: avast! Antivirus [(!) Disabled | (!) Outdated]
AS: Windows Defender [Enabled | (!) Outdated]
FW: Windows FireWall [Enabled]
C:\ (%systemdrive%) -> Disco fixo # 37 Gb (16 Mb livre - 44%) [] # NTFS
D:\ -> CD-ROM
################## | Processos Ativos |
C:\Windows\system32\csrss.exe (ID: 388 |ParentID: 380)
C:\Windows\system32\wininit.exe (ID: 424 |ParentID: 380)
C:\Windows\system32\csrss.exe (ID: 436 |ParentID: 416)
C:\Windows\system32\winlogon.exe (ID: 460 |ParentID: 416)
C:\Windows\system32\services.exe (ID: 512 |ParentID: 424)
C:\Windows\system32\lsass.exe (ID: 536 |ParentID: 424)
C:\Windows\system32\lsm.exe (ID: 544 |ParentID: 424)
C:\Windows\system32\svchost.exe (ID: 648 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 724 |ParentID: 512)
C:\Windows\System32\svchost.exe (ID: 772 |ParentID: 512)
C:\Windows\System32\svchost.exe (ID: 908 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 952 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1108 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1236 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1340 |ParentID: 512)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1380 |ParentID: 512)
C:\Windows\System32\spoolsv.exe (ID: 1524 |ParentID: 512)
C:\Windows\system32\taskhost.exe (ID: 1788 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 360 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 1072 |ParentID: 512)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 1200 |ParentID: 512)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 1148 |ParentID: 1200)
C:\Windows\system32\sppsvc.exe (ID: 2204 |ParentID: 512)
C:\Windows\system32\svchost.exe (ID: 2364 |ParentID: 512)
C:\Windows\system32\Dwm.exe (ID: 2608 |ParentID: 908)
C:\Windows\Explorer.EXE (ID: 2620 |ParentID: 2600)
C:\Windows\system32\runonce.exe (ID: 2648 |ParentID: 2620)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 2760 |ParentID: 648)
################## | Regedit Run |
04 - HKCU\..\Run : [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
04 - HKCU\..\Run : [F.lux] "C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe" /noshow
04 - HKCU\..\Run : [mugen] wscript.exe //B "C:\Users\Eliciana\AppData\Local\Temp\mugen.vbs"
04 - HKLM\..\Run : [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
04 - HKLM\..\Run : [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run : [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
04 - HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run : [F.lux] "C:\Users\Eliciana\Local Settings\Apps\F.lux\flux.exe" /noshow
04 - HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\..\Run : [mugen] wscript.exe //B "C:\Users\Eliciana\AppData\Local\Temp\mugen.vbs"
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Procura genérica |
Supprimido ! C:\Users\Eliciana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\abo.exe
(!) Ficheiros temporários suprimido.
################## | Registro |
Reparado ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|EnableLUA -> 1
Reparado ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin -> 5
Supprimido ! HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\Software\Microsoft\Windows\CurrentVersion\Run|mugen
Supprimido ! HKU\S-1-5-21-2340315626-2471596129-2043743183-1000\Software\.\.\.\.\Mountpoints2\E
################## | Listing |
[06/03/2014 - 09:34:41 | SHD] - C:\$RECYCLE.BIN
[10/05/2012 - 20:28:49 | D] - C:\0d30550314138427ad5798eff71b
[11/11/2012 - 10:19:29 | N | 0 Ko] - C:\1024.js
[21/02/2014 - 09:38:58 | D] - C:\15d3ae1d0a2bf01663eaf7241961
[17/11/2012 - 19:22:06 | D] - C:\3b1f7882e7e5f6c6d386cd1c
[11/01/2013 - 18:13:36 | D] - C:\4b9732286e521bcd0955f070
[10/04/2013 - 19:20:04 | D] - C:\5384fa16f4a99881071a42e1
[22/04/2012 - 18:21:26 | D] - C:\5898c53045daec8204
[10/02/2014 - 21:57:55 | D] - C:\64e3cb064cbd2d35d698575896
[10/01/2013 - 14:11:02 | D] - C:\a9a52fee473a6a95d3f1
[06/03/2014 - 10:52:20 | D] - C:\AdwCleaner
[11/01/2013 - 01:27:56 | D] - C:\aec26bc1b134277343dd1cbd7858ab
[17/04/2012 - 19:48:27 | D] - C:\Arquivos de Programas
[10/06/2009 - 18:42:20 | A | 0 Ko] - C:\autoexec.bat
[21/02/2014 - 10:18:47 | D] - C:\c3132ad0f1b25d9a9e897532
[07/03/2014 - 17:58:21 | D] - C:\Config.Msi
[10/06/2009 - 18:42:20 | N | 0 Ko] - C:\config.sys
[05/05/2012 - 07:49:02 | D] - C:\d2387c81c719dd625af8ff
[16/08/2012 - 16:13:46 | D] - C:\d5b954b513e2515558d496112dcc
[24/04/2012 - 00:26:39 | D] - C:\d721a501fe855633e02ce195dbeee8c9
[01/03/2014 - 21:23:36 | N | 1 Ko | 4D9D2CBD8CB22ECA2275AD0A912F3032] - C:\DelFix.txt
[17/04/2012 - 19:56:00 | D] - C:\Dell
[14/07/2009 - 01:53:55 | SHD] - C:\Documents and Settings
[14/06/2012 - 11:08:14 | D] - C:\fa56f6ee835d464d706c38
[17/03/2013 - 20:39:55 | D] - C:\Firefox
[07/03/2014 - 19:57:34 | ASH | 386344 Ko] - C:\hiberfil.sys
[17/04/2012 - 20:06:15 | RHD] - C:\MSOCache
[07/03/2014 - 19:57:34 | ASH | 1048576 Ko] - C:\pagefile.sys
[24/01/2013 - 20:53:19 | D] - C:\PerfLogs
[04/05/2012 - 19:38:13 | D] - C:\PFiles
[07/03/2014 - 17:59:40 | D] - C:\Program Files
[28/02/2014 - 17:15:18 | HD] - C:\ProgramData
[17/04/2012 - 19:48:27 | SHD] - C:\Recovery
[07/03/2014 - 16:49:24 | SHD] - C:\System Volume Information
[07/03/2014 - 19:55:30 | D] - C:\UsbFix
[07/03/2014 - 20:06:38 | A | 7 Ko | F4996E5EE6F8667C410C32207F28AFBA] - C:\UsbFix [Clean 2] ELICIANA-PC.txt
[15/09/2012 - 14:48:11 | D] - C:\Users
[07/03/2014 - 16:53:40 | D] - C:\Windows
[27/02/2014 - 16:11:05 | D] - C:\zoek
[27/02/2014 - 15:56:54 | D] - C:\zoek_backup
################## | Vaccin |
################## | E.O.F | [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] |
Eliciana- Iniciante
- Mensagens : 21
Reputação : 0
Data de inscrição : 25/02/2014
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Sex 07 Mar 2014, 20:35
Faça o download do [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]Dê um duplo-clique no MCShield-Setup.exe para instalar a ferramenta.
Caso surja uma mensagem de confirmação do Windows perguntando se Deseja permitir que o programa a seguir faça alterações neste computador? Clique em Sim
Clique no botão Next >
Em seguida em I Agree e novamente em Next >
Depois no botão Install
Em Language altere para Português Brasil
Clique no botão Run! e aguarde a varredura
Abra a ferramenta e na aba Escaneamentos marque também os itens "Sempre exibir itens ocultos em unidades flash" e "Modo interativo"
Clique em OK, em seguida conecte todos as unidades removíveis.
Aguarde o scan
Na aba Logs clique em Save
Será gerado um log na sua área de trabalho. Selecione, copie e cole todo o conteúdo deste log na sua próxima resposta.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: O Google Crome e Mozila não estão abrindo, o virus continua
por Power Max Dom 23 Mar 2014, 23:00
TÓPICO ARQUIVADO
Como a autora não respondeu por mais de 15 dias, o tópico foi arquivado. Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.
Como a autora não respondeu por mais de 15 dias, o tópico foi arquivado. Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Conteúdo patrocinado
Tópicos semelhantes» Janelas abrindo sozinha (google chrome)
» Virus detectado pelo avast, mas pc continua lento
» Vírus no facebook e Extensões do google.
» Vírus no Facebook e extensões do Google Chrome...
» Crome abre sozinho
» Virus detectado pelo avast, mas pc continua lento
» Vírus no facebook e Extensões do google.
» Vírus no Facebook e extensões do Google Chrome...
» Crome abre sozinho
Página 1 de 1
Permissões neste sub-fórum
Não podes responder a tópicos|
|
|