Social bookmarking
Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking
Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking
Estatísticas
Temos 14810 usuários registradosO último membro registrado é Josevinil
Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Quem está conectado?
Há 12 usuários online :: 0 registrados, 0 invisíveis e 12 visitantes :: 1 motor de buscaNenhum
O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
Top dos mais postadores
Power Max | ||||
joram | ||||
Wings [In Memoriam] | ||||
caedurodrigues | ||||
Amigo Brasileiro | ||||
luizvilarinho | ||||
Danii | ||||
Admin | ||||
Danilo Marsaro | ||||
Andreata |
pc lento o que fazer
2 participantes
Página 2 de 3
Página 2 de 3 • 1, 2, 3
Re: pc lento o que fazer
log do zoek: Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by adm on qua 21/01/2015 at 18:48:39,20.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
Failed to create System Restore Point.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\Documents and Settings\adm\Dados de aplicativos\EncryptStick deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Arquivos de programas\ComPlus Applications deleted
C:\XP211_214_216_Windows_Package_1.1ASP_GM.exe deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\Avg_Update_0614a deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\Avg_Update_0814avt deleted
C:\WINDOWS\system32\GroupPolicy\Machine deleted
C:\WINDOWS\system32\GroupPolicy\User deleted
C:\WINDOWS\system32\GroupPolicy\gpt.ini deleted
C:\Documents and Settings\adm\Dados de aplicativos\unins001.exe deleted
==== Folders Found ======================
2014-05-14 22:49:02 2014-05-14 22:49:02 -------- d-----w- C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Dados de aplicativos\baidu
2013-12-10 21:43:11 2013-12-10 21:43:11 -------- d-----w- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu
2014-05-18 00:47:57 2014-05-18 00:48:03 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR
2015-01-21 19:53:43 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR
2014-05-18 00:48:03 2014-05-18 00:48:07 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu\Baidu Antivirus
2014-03-01 02:32:16 2014-03-01 02:32:16 -------- d-----w- C:\Documents and Settings\All Users\Application Data\baidu
==== Files Found ======================
--- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu\Baidu-TB-ASBar.exe ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 1358792
Created time: 2012-04-10 09:30:26
Modified time: 2012-04-10 09:30:26
MD5: D848EF0636EA49D340F074F939DB817B
SHA1: 56A9D762D288AB173B7BFD42C9902E12B673BDB7
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841\DEBUG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301\DEBUG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"="BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"="BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000]
"DeviceDesc"="Baidu Antivirus Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000]
"DeviceDesc"="Baidu Hips Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"DisplayName"="Baidu Antivirus Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"Description"="Baidu Antivirus Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil]
"ImagePath"="\\??\\C:\\Arquivos de programas\\Baidu Security\\Baidu Antivirus\\BdApiUtil.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect]
"ImagePath"="\\??\\C:\\Arquivos de programas\\Baidu Security\\Baidu Antivirus\\BdCameraProtect.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter]
"DisplayName"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon]
"DisplayName"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"DisplayName"="Baidu Hips Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"Description"="Baidu Hips Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef]
"DisplayName"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"InstPath"="C:\\Arquivos de programas\\Baidu Security\\Baidu Antivirus"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"DisplayName"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_USERS\.DEFAULT\Software\Baidu]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[HKEY_USERS\.DEFAULT\Software\Baidu Security]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
"url"="^http\\:\\/\\/www\\.baidu\\.com\\/.*"
[HKEY_USERS\S-1-5-18\Software\Baidu]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[HKEY_USERS\S-1-5-18\Software\Baidu Security]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}"="C:\Documents and Settings\All Users\Dados de aplicativos\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [08/06/2014 20:36]
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\Documents and Settings\All Users\Dados de aplicativos\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14/08/2013 16:24]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
abmojiekfpcmkkfamgfcpgfgipocface - C:\Documents and Settings\adm\Configura‡äes locais\Dados de aplicativos\GAS Tecnologia\GBBD\abn\sf.crx[05/09/2013 10:42]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{20834156-247A-48FE-9725-C4C44FDF43F2} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7NDKB_pt-BRBR563"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=1I7NDKB_pt-BRBR563"
==== Reset Google Chrome ======================
Nothing found to reset
==== shortcuts on Users Desktops ======================
C:\Documents and Settings\adm\Desktop\Format Factory.lnk - C:\Arquivos de programas\FreeTime\FormatFactory\FormatFactory.exe
C:\Documents and Settings\adm\Desktop\Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\adm\Desktop\IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País.lnk -
C:\Documents and Settings\adm\Desktop\Microsoft Office Excel 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
C:\Documents and Settings\adm\Desktop\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\adm\Desktop\ZHPDiag.lnk - C:\Arquivos de programas\ZHPDiag\ZHPhep.exe
C:\Documents and Settings\adm\Desktop\rs2\Counter Strike 2011.lnk - C:\Arquivos de programas\Valve\hl.exe -game cstrike
C:\Documents and Settings\adm\Desktop\rs2\Dedicated Server.lnk - C:\Arquivos de programas\Valve\hlds.exe
C:\Documents and Settings\adm\Desktop\rs2\Skype.lnk - C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
C:\Documents and Settings\adm\Desktop\rs2\sXe Injected.lnk - C:\Arquivos de programas\sXe Injected\sXe Injected.exe
==== shortcuts on All Users Desktop ======================
C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk - C:\Arquivos de programas\Adobe\Reader 9.0\Reader\AcroRd32.exe
C:\Documents and Settings\All Users\Desktop\AVG 2015.lnk - C:\Arquivos de programas\AVG\AVG2015\avgui.exe
C:\Documents and Settings\All Users\Desktop\CCleaner.lnk - C:\Arquivos de programas\CCleaner\CCleaner.exe
C:\Documents and Settings\All Users\Desktop\google.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\All Users\Desktop\Nero Home.lnk - C:\Arquivos de programas\Nero\Nero8\Nero Home\NeroHome.exe -ScParameter=65
C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk - C:\Arquivos de programas\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65
C:\Documents and Settings\All Users\Desktop\Paint.NET.lnk - C:\Arquivos de programas\Paint.NET\PaintDotNet.exe
C:\Documents and Settings\All Users\Desktop\Programa da Multifuncional Lexmark 1200 Series.lnk - C:\Arquivos de programas\Lexmark 1200 Series\lxczaiox.exe
C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk - C:\Arquivos de programas\Real\RealPlayer\realplay.exe /launch:desktop
C:\Documents and Settings\All Users\Desktop\Receitanet 1.04 .lnk - C:\Arquivos de programas\Programas RFB\Receitanet\Windows\Receitanet.exe
==== shortcuts in Users Start Menu ======================
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\Counter Strike 2011.lnk - C:\Arquivos de programas\Valve\hl.exe -game cstrike
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\Dedicated Server.lnk - C:\Arquivos de programas\Valve\hlds.exe
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\Desinstalar CS 2011.lnk - C:\Arquivos de programas\Valve\Desinstalar.exe
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\HLTV Config.lnk - C:\Arquivos de programas\Valve\hltv.cfg
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\HLTV.lnk - C:\Arquivos de programas\Valve\hltv.exe
==== shortcuts in All Users Start Menu ======================
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Acessórios\Scanner and Camera Wizard.lnk -
C:\Documents and Settings\All Users\Menu Iniciar\Programas\AVG\AVG 2015.lnk - C:\Arquivos de programas\AVG\AVG2015\avgui.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Google Chrome\Google Chrome.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office\Microsoft Office Publisher 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\ZHP\ZHPDiag.lnk - C:\Arquivos de programas\ZHPDiag\ZHPhep.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\ZHP\ZHPFix.lnk - C:\Arquivos de programas\ZHPDiag\ZHPFix\ZHPhep.exe
==== shortcuts in Quick Launch ======================
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Iniciar o navegador Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk - C:\Arquivos de programas\Nero\Nero8\Nero Home\NeroHome.exe -ScParameter=65
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk - C:\Arquivos de programas\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk - C:\Arquivos de programas\Windows Media Player\wmplayer.exe /prefetch:1
==== Reset IE Proxy ======================
Value(s) before fix:
"ProxyOverride"="*.local"
"ProxyEnable"=dword:00000000
Value(s) after fix:
"ProxyEnable"=dword:00000000
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
==== Empty IE Cache ======================
C:\Documents and Settings\adm\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\adm\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\adm\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrador\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrador\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrador\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configurações locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configuraþ§es locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configura?ºes locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=7 folders=5 17637939 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\adm\CONFIG~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== EOF on qua 21/01/2015 at 18:56:39,35 ======================
Tool run by adm on qua 21/01/2015 at 18:48:39,20.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
Failed to create System Restore Point.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\Documents and Settings\adm\Dados de aplicativos\EncryptStick deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Arquivos de programas\ComPlus Applications deleted
C:\XP211_214_216_Windows_Package_1.1ASP_GM.exe deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\Avg_Update_0614a deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\Avg_Update_0814avt deleted
C:\WINDOWS\system32\GroupPolicy\Machine deleted
C:\WINDOWS\system32\GroupPolicy\User deleted
C:\WINDOWS\system32\GroupPolicy\gpt.ini deleted
C:\Documents and Settings\adm\Dados de aplicativos\unins001.exe deleted
==== Folders Found ======================
2014-05-14 22:49:02 2014-05-14 22:49:02 -------- d-----w- C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Dados de aplicativos\baidu
2013-12-10 21:43:11 2013-12-10 21:43:11 -------- d-----w- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu
2014-05-18 00:47:57 2014-05-18 00:48:03 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR
2015-01-21 19:53:43 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR
2014-05-18 00:48:03 2014-05-18 00:48:07 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu\Baidu Antivirus
2014-03-01 02:32:16 2014-03-01 02:32:16 -------- d-----w- C:\Documents and Settings\All Users\Application Data\baidu
==== Files Found ======================
--- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu\Baidu-TB-ASBar.exe ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 1358792
Created time: 2012-04-10 09:30:26
Modified time: 2012-04-10 09:30:26
MD5: D848EF0636EA49D340F074F939DB817B
SHA1: 56A9D762D288AB173B7BFD42C9902E12B673BDB7
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841\DEBUG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301\DEBUG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"="BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"="BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000]
"DeviceDesc"="Baidu Antivirus Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000]
"DeviceDesc"="Baidu Hips Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"DisplayName"="Baidu Antivirus Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"Description"="Baidu Antivirus Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil]
"ImagePath"="\\??\\C:\\Arquivos de programas\\Baidu Security\\Baidu Antivirus\\BdApiUtil.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect]
"ImagePath"="\\??\\C:\\Arquivos de programas\\Baidu Security\\Baidu Antivirus\\BdCameraProtect.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter]
"DisplayName"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon]
"DisplayName"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"DisplayName"="Baidu Hips Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"Description"="Baidu Hips Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef]
"DisplayName"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"InstPath"="C:\\Arquivos de programas\\Baidu Security\\Baidu Antivirus"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"DisplayName"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"="Baidu Antivirus Minifilter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"="Baidu FS Monitor Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"="Baidu NetDefense"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"="Baidu Protect"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"="Baidu ProtectEx"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase]
"DisplayName"="Baidu Hook Base"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx]
"DisplayName"="Baidu HipsEx Driver"
[HKEY_USERS\.DEFAULT\Software\Baidu]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[HKEY_USERS\.DEFAULT\Software\Baidu Security]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
"url"="^http\\:\\/\\/www\\.baidu\\.com\\/.*"
[HKEY_USERS\S-1-5-18\Software\Baidu]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[HKEY_USERS\S-1-5-18\Software\Baidu Security]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}"="C:\Documents and Settings\All Users\Dados de aplicativos\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [08/06/2014 20:36]
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\Documents and Settings\All Users\Dados de aplicativos\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14/08/2013 16:24]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
abmojiekfpcmkkfamgfcpgfgipocface - C:\Documents and Settings\adm\Configura‡äes locais\Dados de aplicativos\GAS Tecnologia\GBBD\abn\sf.crx[05/09/2013 10:42]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{20834156-247A-48FE-9725-C4C44FDF43F2} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7NDKB_pt-BRBR563"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=1I7NDKB_pt-BRBR563"
==== Reset Google Chrome ======================
Nothing found to reset
==== shortcuts on Users Desktops ======================
C:\Documents and Settings\adm\Desktop\Format Factory.lnk - C:\Arquivos de programas\FreeTime\FormatFactory\FormatFactory.exe
C:\Documents and Settings\adm\Desktop\Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\adm\Desktop\IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País.lnk -
C:\Documents and Settings\adm\Desktop\Microsoft Office Excel 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
C:\Documents and Settings\adm\Desktop\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\adm\Desktop\ZHPDiag.lnk - C:\Arquivos de programas\ZHPDiag\ZHPhep.exe
C:\Documents and Settings\adm\Desktop\rs2\Counter Strike 2011.lnk - C:\Arquivos de programas\Valve\hl.exe -game cstrike
C:\Documents and Settings\adm\Desktop\rs2\Dedicated Server.lnk - C:\Arquivos de programas\Valve\hlds.exe
C:\Documents and Settings\adm\Desktop\rs2\Skype.lnk - C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
C:\Documents and Settings\adm\Desktop\rs2\sXe Injected.lnk - C:\Arquivos de programas\sXe Injected\sXe Injected.exe
==== shortcuts on All Users Desktop ======================
C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk - C:\Arquivos de programas\Adobe\Reader 9.0\Reader\AcroRd32.exe
C:\Documents and Settings\All Users\Desktop\AVG 2015.lnk - C:\Arquivos de programas\AVG\AVG2015\avgui.exe
C:\Documents and Settings\All Users\Desktop\CCleaner.lnk - C:\Arquivos de programas\CCleaner\CCleaner.exe
C:\Documents and Settings\All Users\Desktop\google.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\All Users\Desktop\Nero Home.lnk - C:\Arquivos de programas\Nero\Nero8\Nero Home\NeroHome.exe -ScParameter=65
C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk - C:\Arquivos de programas\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65
C:\Documents and Settings\All Users\Desktop\Paint.NET.lnk - C:\Arquivos de programas\Paint.NET\PaintDotNet.exe
C:\Documents and Settings\All Users\Desktop\Programa da Multifuncional Lexmark 1200 Series.lnk - C:\Arquivos de programas\Lexmark 1200 Series\lxczaiox.exe
C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk - C:\Arquivos de programas\Real\RealPlayer\realplay.exe /launch:desktop
C:\Documents and Settings\All Users\Desktop\Receitanet 1.04 .lnk - C:\Arquivos de programas\Programas RFB\Receitanet\Windows\Receitanet.exe
==== shortcuts in Users Start Menu ======================
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\Counter Strike 2011.lnk - C:\Arquivos de programas\Valve\hl.exe -game cstrike
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\Dedicated Server.lnk - C:\Arquivos de programas\Valve\hlds.exe
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\Desinstalar CS 2011.lnk - C:\Arquivos de programas\Valve\Desinstalar.exe
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\HLTV Config.lnk - C:\Arquivos de programas\Valve\hltv.cfg
C:\Documents and Settings\adm\Menu Iniciar\Programas\Counter Strike 2011\HLTV.lnk - C:\Arquivos de programas\Valve\hltv.exe
==== shortcuts in All Users Start Menu ======================
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Acessórios\Scanner and Camera Wizard.lnk -
C:\Documents and Settings\All Users\Menu Iniciar\Programas\AVG\AVG 2015.lnk - C:\Arquivos de programas\AVG\AVG2015\avgui.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Google Chrome\Google Chrome.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office\Microsoft Office Publisher 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\ZHP\ZHPDiag.lnk - C:\Arquivos de programas\ZHPDiag\ZHPhep.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\ZHP\ZHPFix.lnk - C:\Arquivos de programas\ZHPDiag\ZHPFix\ZHPhep.exe
==== shortcuts in Quick Launch ======================
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Iniciar o navegador Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk - C:\Arquivos de programas\Nero\Nero8\Nero Home\NeroHome.exe -ScParameter=65
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk - C:\Arquivos de programas\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65
C:\Documents and Settings\adm\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk - C:\Arquivos de programas\Windows Media Player\wmplayer.exe /prefetch:1
==== Reset IE Proxy ======================
Value(s) before fix:
"ProxyOverride"="*.local"
"ProxyEnable"=dword:00000000
Value(s) after fix:
"ProxyEnable"=dword:00000000
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
==== Empty IE Cache ======================
C:\Documents and Settings\adm\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\adm\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\adm\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrador\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrador\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrador\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configurações locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configuraþ§es locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configura?ºes locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configuraþ§es locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configura?ºes locais\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=7 folders=5 17637939 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\adm\CONFIG~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== EOF on qua 21/01/2015 at 18:56:39,35 ======================
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Continue no modo seguro e siga estas dicas abaixo:
*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:
createsrpoint;
Bhbase;s
BAVSvc;s
BdApiUtil;s
BdCameraProtect;s
Bfilter;s
Bfmon;s
BHipsEx;s
BHipsSvc;s
Bndef;s
Bprotect;s
BprotectEx;s
C:\Documents and Settings\All Users\Application Data\baidu;fs
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841\DEBUG];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301\DEBUG];r
{77FEF28E-EB96-44FF-B511-3185DEA48697};c
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}];r
"DllName"=-;r
{B580CF65-E151-49C3-B73F-70B13FCA8E86};c
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}];r
"DllName"=-;r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
"Description"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil];r
"ImagePath"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect];r
"ImagePath"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
"Description"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
"InstPath"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx];r
[-HKEY_USERS\.DEFAULT\Software\Baidu];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
"ucloud"=-;r
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
"dcloud"=-;r
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
"rcloud"=-;r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp];r
[-HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com];r
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com];r
"url"=-;r
[-HKEY_USERS\S-1-5-18\Software\Baidu];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
"ucloud"=-;r
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
"dcloud"=-;r
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
"rcloud"=-;r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp];r
Baidu;z
Baidu;a
*Clique [Run Script]
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Caso a reinicialização do PC seja solicitada, clique [OK]
* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.
*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:
createsrpoint;
Bhbase;s
BAVSvc;s
BdApiUtil;s
BdCameraProtect;s
Bfilter;s
Bfmon;s
BHipsEx;s
BHipsSvc;s
Bndef;s
Bprotect;s
BprotectEx;s
C:\Documents and Settings\All Users\Application Data\baidu;fs
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841\DEBUG];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301\DEBUG];r
{77FEF28E-EB96-44FF-B511-3185DEA48697};c
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}];r
"DllName"=-;r
{B580CF65-E151-49C3-B73F-70B13FCA8E86};c
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}];r
"DllName"=-;r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
"Description"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil];r
"ImagePath"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect];r
"ImagePath"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
"Description"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
"InstPath"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000];r
"DeviceDesc"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase];r
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx];r
"DisplayName"=-;r
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx];r
[-HKEY_USERS\.DEFAULT\Software\Baidu];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe];r
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
"ucloud"=-;r
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
"dcloud"=-;r
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web];r
"rcloud"=-;r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver];r
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp];r
[-HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com];r
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com];r
"url"=-;r
[-HKEY_USERS\S-1-5-18\Software\Baidu];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe];r
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
"ucloud"=-;r
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
"dcloud"=-;r
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web];r
"rcloud"=-;r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver];r
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp];r
Baidu;z
Baidu;a
*Clique [Run Script]
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Caso a reinicialização do PC seja solicitada, clique [OK]
* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
log do zoek:
Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by adm on qua 21/01/2015 at 19:45:36,50.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2015-01-21-205639.log 26154 bytes
==== System Restore Info ======================
Failed to create System Restore Point.
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Control\SafeBoot\Minimal\BAVSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Control\SafeBoot\Network\BAVSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect deleted successfully
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841\DEBUG]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301\DEBUG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"Description"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil]
"ImagePath"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect]
"ImagePath"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"Description"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"InstPath"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx]
[-HKEY_USERS\.DEFAULT\Software\Baidu]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
[-HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
"url"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
==== Deleting Files \ Folders ======================
C:\Documents and Settings\All Users\Application Data\baidu deleted
==== Folders Found ======================
2014-05-14 22:49:02 2014-05-14 22:49:02 -------- d-----w- C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Dados de aplicativos\baidu
2013-12-10 21:43:11 2013-12-10 21:43:11 -------- d-----w- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu
2014-05-18 00:47:57 2014-05-18 00:48:03 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR
2015-01-21 19:53:43 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR
2014-05-18 00:48:03 2014-05-18 00:48:07 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu\Baidu Antivirus
2015-01-21 21:47:20 2015-01-21 21:47:20 -------- d---a-w- C:\zoek_backup\C_Documents and Settings_All Users_Application Data_baidu
==== Files Found ======================
--- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu\Baidu-TB-ASBar.exe ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 1358792
Created time: 2012-04-10 09:30:26
Modified time: 2012-04-10 09:30:26
MD5: D848EF0636EA49D340F074F939DB817B
SHA1: 56A9D762D288AB173B7BFD42C9902E12B673BDB7
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_USERS\.DEFAULT\Software\Baidu Security]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[HKEY_USERS\S-1-5-18\Software\Baidu Security]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
==== C:\zoek_backup content ======================
C:\zoek_backup (files=8 folders=10 17805850 bytes)
==== EOF on qua 21/01/2015 at 19:48:00,09 ======================
Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by adm on qua 21/01/2015 at 19:45:36,50.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2015-01-21-205639.log 26154 bytes
==== System Restore Info ======================
Failed to create System Restore Point.
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Control\SafeBoot\Minimal\BAVSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Control\SafeBoot\Network\BAVSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect deleted successfully
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.1.53841\DEBUG]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\Baidu_Secure_SystemUp_4.0.5.65301\DEBUG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BHipsEx]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BHipsEx]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BAVSVC\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BHIPSSVC\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
"Description"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BAVSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil]
"ImagePath"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdApiUtil]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect]
"ImagePath"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BdCameraProtect]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfilter]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bfmon]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsEx]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
"Description"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\BHipsSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bndef]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"InstPath"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Bprotect]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFILTER\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BFMON\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHBASE\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BNDEF\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECT\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000]
"DeviceDesc"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BPROTECTEX\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bhbase]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx]
"DisplayName"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BHipsEx]
[-HKEY_USERS\.DEFAULT\Software\Baidu]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
[-HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
"url"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BHipsSvc.exe]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\CleanRecord]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\Mini030514-01.dmp]
==== Deleting Files \ Folders ======================
C:\Documents and Settings\All Users\Application Data\baidu deleted
==== Folders Found ======================
2014-05-14 22:49:02 2014-05-14 22:49:02 -------- d-----w- C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Dados de aplicativos\baidu
2013-12-10 21:43:11 2013-12-10 21:43:11 -------- d-----w- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu
2014-05-18 00:47:57 2014-05-18 00:48:03 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR
2015-01-21 19:53:43 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR
2014-05-18 00:48:03 2014-05-18 00:48:07 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu\Baidu Antivirus
2015-01-21 21:47:20 2015-01-21 21:47:20 -------- d---a-w- C:\zoek_backup\C_Documents and Settings_All Users_Application Data_baidu
==== Files Found ======================
--- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu\Baidu-TB-ASBar.exe ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 1358792
Created time: 2012-04-10 09:30:26
Modified time: 2012-04-10 09:30:26
MD5: D848EF0636EA49D340F074F939DB817B
SHA1: 56A9D762D288AB173B7BFD42C9902E12B673BDB7
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[HKEY_USERS\.DEFAULT\Software\Baidu Security]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[HKEY_USERS\S-1-5-18\Software\Baidu Security]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
==== C:\zoek_backup content ======================
C:\zoek_backup (files=8 folders=10 17805850 bytes)
==== EOF on qua 21/01/2015 at 19:48:00,09 ======================
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Continue no modo seguro e siga estas dicas abaixo:
*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:
createsrpoint;
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
Baidu;a
*Clique [Run Script]
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Caso a reinicialização do PC seja solicitada, clique [OK]
* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.
*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:
createsrpoint;
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
Baidu;a
*Clique [Run Script]
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Caso a reinicialização do PC seja solicitada, clique [OK]
* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.
Última edição por Power Max em Qua 21 Jan 2015, 20:26, editado 1 vez(es)
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
aqui esta : Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by adm on qua 21/01/2015 at 20:15:14,40.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2015-01-21-205639.log 26154 bytes
C:\zoek-results2015-01-21-214800.log 16983 bytes
==== System Restore Info ======================
Failed to create System Restore Point.
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[-HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
==== Folders Found ======================
2014-05-14 22:49:02 2014-05-14 22:49:02 -------- d-----w- C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Dados de aplicativos\baidu
2013-12-10 21:43:11 2013-12-10 21:43:11 -------- d-----w- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu
2014-05-18 00:47:57 2014-05-18 00:48:03 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR
2015-01-21 19:53:43 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR
2014-05-18 00:48:03 2014-05-18 00:48:07 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu\Baidu Antivirus
2015-01-21 21:47:20 2015-01-21 21:47:20 -------- d---a-w- C:\zoek_backup\C_Documents and Settings_All Users_Application Data_baidu
==== Files Found ======================
--- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu\Baidu-TB-ASBar.exe ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 1358792
Created time: 2012-04-10 09:30:26
Modified time: 2012-04-10 09:30:26
MD5: D848EF0636EA49D340F074F939DB817B
SHA1: 56A9D762D288AB173B7BFD42C9902E12B673BDB7
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
==== C:\zoek_backup content ======================
C:\zoek_backup (files=8 folders=10 17805850 bytes)
==== EOF on qua 21/01/2015 at 20:16:27,62 ======================
Tool run by adm on qua 21/01/2015 at 20:15:14,40.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2015-01-21-205639.log 26154 bytes
C:\zoek-results2015-01-21-214800.log 16983 bytes
==== System Restore Info ======================
Failed to create System Restore Point.
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[-HKEY_USERS\S-1-5-21-1060284298-1078081533-1644491937-1003\Software\Avast Software\WRC\SearchRules\baidu.com]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
==== Folders Found ======================
2014-05-14 22:49:02 2014-05-14 22:49:02 -------- d-----w- C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Dados de aplicativos\baidu
2013-12-10 21:43:11 2013-12-10 21:43:11 -------- d-----w- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu
2014-05-18 00:47:57 2014-05-18 00:48:03 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR
2015-01-21 19:53:43 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR
2014-05-18 00:48:03 2014-05-18 00:48:07 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-05-18 00:48:11 2014-05-18 00:48:11 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu Security.DIR\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu
2015-01-21 19:53:45 2015-01-21 19:53:45 -------- d-----w- C:\Documents and Settings\adm\Dados de aplicativos\ZHP\Quarantine\Baidu.DIR\baidu\Baidu Antivirus
2015-01-21 21:47:20 2015-01-21 21:47:20 -------- d---a-w- C:\zoek_backup\C_Documents and Settings_All Users_Application Data_baidu
==== Files Found ======================
--- C:\Arquivos de programas\FreeTime\FormatFactory\FFModules\Package\BaiDu\Baidu-TB-ASBar.exe ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 1358792
Created time: 2012-04-10 09:30:26
Modified time: 2012-04-10 09:30:26
MD5: D848EF0636EA49D340F074F939DB817B
SHA1: 56A9D762D288AB173B7BFD42C9902E12B673BDB7
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
==== C:\zoek_backup content ======================
C:\zoek_backup (files=8 folders=10 17805850 bytes)
==== EOF on qua 21/01/2015 at 20:16:27,62 ======================
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Continue no modo seguro e siga estas dicas abaixo:
*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:
createsrpoint;
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
Baidu;a
*Clique [Run Script]
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Caso a reinicialização do PC seja solicitada, clique [OK]
* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.
*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
* Selecione e copie todo este texto destacado em vermelho abaixo e cole-o no espaço em branco do Zoek:
createsrpoint;
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus];r
Baidu;a
*Clique [Run Script]
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Caso a reinicialização do PC seja solicitada, clique [OK]
* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
aqui: Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by adm on qua 21/01/2015 at 20:55:35,35.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
Failed to create System Restore Point.
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
==== C:\zoek_backup content ======================
C:\zoek_backup (files=8 folders=10 17805850 bytes)
==== EOF on qua 21/01/2015 at 20:56:25,82 ======================
Tool run by adm on qua 21/01/2015 at 20:55:35,35.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Documents and Settings\adm\Meus documentos\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
Failed to create System Restore Point.
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
==== Registry Search Results for "Baidu" ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\4.0.0.0\Setup]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
==== C:\zoek_backup content ======================
C:\zoek_backup (files=8 folders=10 17805850 bytes)
==== EOF on qua 21/01/2015 at 20:56:25,82 ======================
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] > < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )
Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPCleaner para baixá-lo, tal como mostra a imagem abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
Para executá-lo corretamente siga as dicas desta postagem:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Após a utilização dele, copie todo o conteúdo do seu relatório ZHPCleaner.txt e poste em sua próxima resposta.
Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPCleaner para baixá-lo, tal como mostra a imagem abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
Para executá-lo corretamente siga as dicas desta postagem:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Após a utilização dele, copie todo o conteúdo do seu relatório ZHPCleaner.txt e poste em sua próxima resposta.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
nao consigo baixar esse zhp cleaner fala pagina da web nao disponivel
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
baixe ele no link abaixo (ele está com o nome modificado):
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Extraia ele e o execute.
Depois poste o relatório dele.
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Extraia ele e o execute.
Depois poste o relatório dele.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
relatorio do zhp cleaner: ~ ZHPCleaner v2015.1.21.30 by Nicolas Coolman (21/01/2015)
~ Run by adm (Administrator) (21/01/2015 21:13:21)
~ Forum : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Facebook : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ State version : No network file
~ Type : Repair
~ Report : C:\Documents and Settings\adm\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Documents and Settings\adm\Dados de aplicativos\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Windows XP, 32-bit Service Pack 3 (Build 2600)
---\\ Services (0)
~ No malicious items found.
---\\ Browser internet (2)
REPLACED IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page ( &hxxp://home.microsoft.com/intl/br/access/allinone.asp )
REPLACED IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs ( [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] )
---\\ Hosts file (2)
REPLACED:
Number of found redirections 1/20
---\\ Scheduled automatic tasks. (0)
~ No malicious items found.
---\\ Explorer ( File, Folder) (0)
~ No malicious items found.
---\\ Registry ( Key, Value, Data) (2)
DELETED data: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\\Intl [Bad : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (Hijacker.Association)
DELETED key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ContentExplorer [] (PUP.ContentExplorer)
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)
~ Repair canceled by the user (Google Chrome)
---\\ Statistics
~ Items scanned : 44662
~ Items found : 1
~ Items repaired : 4
End of clean at 21:19:05
===================
ZHPCleaner-[R]-21012015-21_19_05.txt
~ Run by adm (Administrator) (21/01/2015 21:13:21)
~ Forum : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Facebook : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ State version : No network file
~ Type : Repair
~ Report : C:\Documents and Settings\adm\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Documents and Settings\adm\Dados de aplicativos\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Windows XP, 32-bit Service Pack 3 (Build 2600)
---\\ Services (0)
~ No malicious items found.
---\\ Browser internet (2)
REPLACED IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page ( &hxxp://home.microsoft.com/intl/br/access/allinone.asp )
REPLACED IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs ( [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] )
---\\ Hosts file (2)
REPLACED:
Number of found redirections 1/20
---\\ Scheduled automatic tasks. (0)
~ No malicious items found.
---\\ Explorer ( File, Folder) (0)
~ No malicious items found.
---\\ Registry ( Key, Value, Data) (2)
DELETED data: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\\Intl [Bad : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (Hijacker.Association)
DELETED key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ContentExplorer [] (PUP.ContentExplorer)
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)
~ Repair canceled by the user (Google Chrome)
---\\ Statistics
~ Items scanned : 44662
~ Items found : 1
~ Items repaired : 4
End of clean at 21:19:05
===================
ZHPCleaner-[R]-21012015-21_19_05.txt
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Faça o download do Malwarebytes em um destes links abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Para instalá-lo e executá-lo corretamente siga, por gentileza, as dicas desta postagem:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Na sua próxima resposta poste este log (relatório) do Malwarebytes.
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Para instalá-lo e executá-lo corretamente siga, por gentileza, as dicas desta postagem:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Na sua próxima resposta poste este log (relatório) do Malwarebytes.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
aqui esta o log do malwarebytes no meu caso ele nao encontrou nenhum malware mais tem 15 itens detectados posso movelos para quarentena???? : Malwarebytes Anti-Malware
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Protection, 21/1/2015 22:33:27, SYSTEM, ADM-92AA9CA763F, Protection, Malware Protection, Starting,
Protection, 21/1/2015 22:33:27, SYSTEM, ADM-92AA9CA763F, Protection, Malware Protection, Started,
Protection, 21/1/2015 22:33:29, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Starting,
Protection, 21/1/2015 22:33:39, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Started,
Update, 21/1/2015 22:33:46, SYSTEM, ADM-92AA9CA763F, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1,
Update, 21/1/2015 22:33:46, SYSTEM, ADM-92AA9CA763F, Manual, Rootkit Database, 2014.11.18.1, 2015.1.14.1,
Update, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Manual, Malware Database, 2014.11.20.6, 2015.1.21.11,
Protection, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Starting,
Protection, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopping,
Protection, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopped,
Protection, 21/1/2015 22:38:16, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Success,
Protection, 21/1/2015 22:38:16, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Starting,
Protection, 21/1/2015 22:38:29, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Started,
Update, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Scheduler, Malware Database, 2015.1.21.11, 2015.1.22.1,
Protection, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Starting,
Protection, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopping,
Protection, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopped,
Protection, 21/1/2015 23:03:34, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Success,
Protection, 21/1/2015 23:03:34, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Starting,
Protection, 21/1/2015 23:03:53, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Started,
(end)
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Protection, 21/1/2015 22:33:27, SYSTEM, ADM-92AA9CA763F, Protection, Malware Protection, Starting,
Protection, 21/1/2015 22:33:27, SYSTEM, ADM-92AA9CA763F, Protection, Malware Protection, Started,
Protection, 21/1/2015 22:33:29, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Starting,
Protection, 21/1/2015 22:33:39, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Started,
Update, 21/1/2015 22:33:46, SYSTEM, ADM-92AA9CA763F, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1,
Update, 21/1/2015 22:33:46, SYSTEM, ADM-92AA9CA763F, Manual, Rootkit Database, 2014.11.18.1, 2015.1.14.1,
Update, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Manual, Malware Database, 2014.11.20.6, 2015.1.21.11,
Protection, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Starting,
Protection, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopping,
Protection, 21/1/2015 22:38:02, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopped,
Protection, 21/1/2015 22:38:16, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Success,
Protection, 21/1/2015 22:38:16, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Starting,
Protection, 21/1/2015 22:38:29, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Started,
Update, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Scheduler, Malware Database, 2015.1.21.11, 2015.1.22.1,
Protection, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Starting,
Protection, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopping,
Protection, 21/1/2015 23:03:19, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Stopped,
Protection, 21/1/2015 23:03:34, SYSTEM, ADM-92AA9CA763F, Protection, Refresh, Success,
Protection, 21/1/2015 23:03:34, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Starting,
Protection, 21/1/2015 23:03:53, SYSTEM, ADM-92AA9CA763F, Protection, Malicious Website Protection, Started,
(end)
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
você postou o log errado, poste o Log de Verificação dele por gentileza.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
okk vou manda o certo aqui mais ele detectou 15 objetos posso por em quarentena?? : Malwarebytes Anti-Malware
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Data da Verificação: 21/1/2015
Hora da Verificação: 23:03:19
Arquivo de Log: log malware.txt
Administrador: Sim
Versão: 0.00.0.0000
Base de Dados de Malware: v2015.01.22.01
Base de Dados de Rootkit: v2015.01.14.01
Licença: Avaliação Gratuita
Proteção de Malware: Habilitado
Proteção de Site Malicioso: Habilitado
Auto-Proteção: Desabilitado
SO: Windows XP Service Pack 3
Processador: x86
Sistema de Arquivos: NTFS
Usuário: adm
Tipo da Verificação: Verificação Personalizada
Resultado: Terminado
Objetos Verificados: 399398
Tempo Decorrido: 24 min, 35 seg
Memória: Habilitado
Inicialização: Habilitado
Sistema de Arquivos: Habilitado
Arquivos Compactados: Habilitado
Rootkits: Desabilitado
Heurística: Habilitado
PUP: Habilitado
PUM: Habilitado
Processos: 0
(Nenhum item malicioso detectado)
Módulos: 0
(Nenhum item malicioso detectado)
Chaves de Registro: 0
(Nenhum item malicioso detectado)
Valores de Registro: 0
(Nenhum item malicioso detectado)
Dados de Registro: 0
(Nenhum item malicioso detectado)
Pastas: 0
(Nenhum item malicioso detectado)
Arquivos: 0
(Nenhum item malicioso detectado)
Setores Físicos: 0
(Nenhum item malicioso detectado)
(end)
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Data da Verificação: 21/1/2015
Hora da Verificação: 23:03:19
Arquivo de Log: log malware.txt
Administrador: Sim
Versão: 0.00.0.0000
Base de Dados de Malware: v2015.01.22.01
Base de Dados de Rootkit: v2015.01.14.01
Licença: Avaliação Gratuita
Proteção de Malware: Habilitado
Proteção de Site Malicioso: Habilitado
Auto-Proteção: Desabilitado
SO: Windows XP Service Pack 3
Processador: x86
Sistema de Arquivos: NTFS
Usuário: adm
Tipo da Verificação: Verificação Personalizada
Resultado: Terminado
Objetos Verificados: 399398
Tempo Decorrido: 24 min, 35 seg
Memória: Habilitado
Inicialização: Habilitado
Sistema de Arquivos: Habilitado
Arquivos Compactados: Habilitado
Rootkits: Desabilitado
Heurística: Habilitado
PUP: Habilitado
PUM: Habilitado
Processos: 0
(Nenhum item malicioso detectado)
Módulos: 0
(Nenhum item malicioso detectado)
Chaves de Registro: 0
(Nenhum item malicioso detectado)
Valores de Registro: 0
(Nenhum item malicioso detectado)
Dados de Registro: 0
(Nenhum item malicioso detectado)
Pastas: 0
(Nenhum item malicioso detectado)
Arquivos: 0
(Nenhum item malicioso detectado)
Setores Físicos: 0
(Nenhum item malicioso detectado)
(end)
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Neste relatório que você postou acima não consta nenhuma ameaça. Você tem algum outro relatório aí onde aparecem estas 15 ameaças?
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
entao na opçao verificar do malwarebytes ta assim: non-malware items detected:15 ai em vermelho esta assim: escolha uma açao para os items detectados
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Se você puder citar aqui quais são as ameaças ou tirar um print da tela e postar aqui, posso te falar se pode removê-los ou não.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
[img][Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem][/img]
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
[img][Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem][/img]
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Pode enviar tudo para a quarentena dele. Depois nos diga como está o PC.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
certoo vlw ai esse progrma eu mantenho né. agora aqueles outros posso exclui né tipo o zhp?
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Vou te passar os procedimentos para remover os programas usados. Mas como está seu computador? melhorou?
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: pc lento o que fazer
uhum melhorou sim agora nao ta travando como antes pode passar o procedimento pra eu remover eles e amanha acho que vou trocar o avg pelo avast kk
samuel willians- Iniciante
- Mensagens : 27
Reputação : 0
Data de inscrição : 21/01/2015
Re: pc lento o que fazer
Fico feliz que o problema tenha sido resolvido.
Só para finalizar siga estes tutoriais abaixo, por gentileza:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________________________
Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Tens de ter uma conta e sessão iniciada para poderes visualizar este link].
_______________________________________________________________________________________________________________________
Foi um prazer ajudar. Conte sempre conosco!
Só para finalizar siga estes tutoriais abaixo, por gentileza:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________________________
Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Tens de ter uma conta e sessão iniciada para poderes visualizar este link].
_______________________________________________________________________________________________________________________
Foi um prazer ajudar. Conte sempre conosco!
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Página 2 de 3 • 1, 2, 3
Página 2 de 3
Permissões neste sub-fórum
Não podes responder a tópicos
|
|