Social bookmarking
Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking
Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking
Estatísticas
Temos 14810 usuários registradosO último membro registrado é Josevinil
Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Quem está conectado?
Há 7 usuários online :: 0 registrados, 0 invisíveis e 7 visitantes :: 1 motor de buscaNenhum
O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
Top dos mais postadores
Power Max | ||||
joram | ||||
Wings [In Memoriam] | ||||
caedurodrigues | ||||
Amigo Brasileiro | ||||
luizvilarinho | ||||
Danii | ||||
Admin | ||||
Danilo Marsaro | ||||
Andreata |
Bloqueio constante também no notebook pelo Banco do Brasil
2 participantes
Página 1 de 1
Bloqueio constante também no notebook pelo Banco do Brasil
Toda vez que tento acessar o banco do Brasil, o mesmo, bloqueia o acesso pelo meu notebook. Já tive na agência várias vezes e dizem que o meu note está infectado. Utilizo meu antivírus, antispyware e não resolve.
Segue o log do AdwCleaner para análise e também o link que consta o relatório do ZHPdiag. Obrigado desde já.
PRIMEIRO - log do AdwCleaner
# AdwCleaner v4.109 - Relatório criado 29/01/2015 às 17:05:38
# Atualizado 24/01/2015 por Xplode
# Database : 2015-01-26.1 [Live]
# Sistema Operacional : Windows 7 Home Premium Service Pack 1 (64 bits)
# Usuário : AUGUSTO - AUGUSTO-PC
# Executando de : C:\adwcleaner_4.109.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Tarefas ] *****
Tarefa Deletedo : Driver Booster Scan
Tarefa Deletedo : Driver Booster Update
***** [ Atalhos ] *****
***** [ Registro ] *****
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
***** [ Navegadores ] *****
-\\ Internet Explorer v11.0.9600.17496
-\\ Google Chrome v36.0.1985.125
*************************
AdwCleaner[R0].txt - [964 octets] - [29/01/2015 16:56:09]
AdwCleaner[S0].txt - [877 octets] - [29/01/2015 17:05:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [936 octets] ##########
SEGUNDO: link que consta o relatório do ZHPdiag
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Desde já muito obrigado!!!
Segue o log do AdwCleaner para análise e também o link que consta o relatório do ZHPdiag. Obrigado desde já.
PRIMEIRO - log do AdwCleaner
# AdwCleaner v4.109 - Relatório criado 29/01/2015 às 17:05:38
# Atualizado 24/01/2015 por Xplode
# Database : 2015-01-26.1 [Live]
# Sistema Operacional : Windows 7 Home Premium Service Pack 1 (64 bits)
# Usuário : AUGUSTO - AUGUSTO-PC
# Executando de : C:\adwcleaner_4.109.exe
# Opção : Limpar
***** [ Serviços ] *****
***** [ Arquivos / Pastas ] *****
***** [ Tarefas ] *****
Tarefa Deletedo : Driver Booster Scan
Tarefa Deletedo : Driver Booster Update
***** [ Atalhos ] *****
***** [ Registro ] *****
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
***** [ Navegadores ] *****
-\\ Internet Explorer v11.0.9600.17496
-\\ Google Chrome v36.0.1985.125
*************************
AdwCleaner[R0].txt - [964 octets] - [29/01/2015 16:56:09]
AdwCleaner[S0].txt - [877 octets] - [29/01/2015 17:05:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [936 octets] ##########
SEGUNDO: link que consta o relatório do ZHPdiag
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Desde já muito obrigado!!!
Alfilosofia- Membro
- Mensagens : 70
Reputação : 0
Data de inscrição : 16/05/2014
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Olá. Este computador é o mesmo deste seu tópico abaixo?
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Se for o mesmo, dê continuidade no tópico no endereço acima.
_______________________________________________________
Se for um outro PC, me avise para iniciarmos a limpeza dele.
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Se for o mesmo, dê continuidade no tópico no endereço acima.
_______________________________________________________
Se for um outro PC, me avise para iniciarmos a limpeza dele.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Olá! Não! é um outro PC. Estou tendo o mesmo problema nele.
Somente adiantei e usei o AdwCleaner e o ZHPDiag nele também...
Somente adiantei e usei o AdwCleaner e o ZHPDiag nele também...
Alfilosofia- Membro
- Mensagens : 70
Reputação : 0
Data de inscrição : 16/05/2014
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Selecione e copie todo o texto destacado em vermelho abaixo (começando em script zhpfix e indo até emptyclsid)
script zhpfix
SysRestore
[MD5.2CEC567FCCA2BD662C8F47FC7EB5046D] - (.PSafe Tecnologia S.A. - PSafe Internet.) -- C:\Users\AUGUSTO\AppData\Local\PSafeInternet\Browser\Application\PSafeInternet.exe [2230112] [PID.4696]
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O42 - Logiciel: Loaris Trojan Remover - (.Loaris, Inc..) [HKLM][64Bits] -- {29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1
[HKLM\Software\Wow6432Node\Loaris]
O42 - Logiciel: PSafe Internet - (.PSafe Tecnologia S.A..) [HKCU][64Bits] -- PSafeInternet
[HKCU\Software\Baixaki]
[HKLM\Software\Wow6432Node\360Safe]
[HKLM\Software\Wow6432Node\Loaris]
O43 - CFD: 28/11/2014 - 16:37:49 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 25/07/2014 - 17:35:43 - [] ----D C:\ProgramData\Loaris
O43 - CFD: 25/07/2014 - 06:11:15 - [0] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
O43 - CFD: 24/01/2015 - 12:49:54 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 25/07/2014 - 17:35:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover
O43 - CFD: 25/07/2014 - 17:00:06 - [] ----D C:\Users\AUGUSTO\AppData\Local\PSafeInternet
O43 - CFD: 30/11/2014 - 06:51:45 - [] ----D C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSafe Internet
O61 - LFC: 24/01/2015 - 17:28:57 ---A- . (...) -- C:\Users\AUGUSTO\AppData\Local\Temp\Quarantine.exe [601088]
O67 - Shell Spawning: <.html> <PSafeInternetURL>[HKCU\..\open\Command] (.Not Key.)
O68 - StartMenuInternet: <PSafe Internet> <PSafe Internet>[HKLM\..\Shell\open\Command] (.PSafe Tecnologia S.A. - PSafe Internet.) -- C:\Users\AUGUSTO\AppData\Local\PSafeInternet\Browser\Application\PSafeInternet.exe
[MD5.169180F02ABCECA5DE72FC5EEBC861BB] [SPRF][25/07/2014] (.No owner - Setup/Uninstall.) -- C:\Users\AUGUSTO\AppData\Roaming\unins001.exe [730322]
[HKLM\Software\Wow6432Node\Loaris] =>Rogue.Multiple
C:\ProgramData\Loaris =>Rogue.Multiple
ShortcutFix
EmptyTemp
EmptyFlash
emptyclsid
_____________________________________________________________________________________________________________
Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.
Copie este relatório e poste em sua próxima resposta.
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
script zhpfix
SysRestore
[MD5.2CEC567FCCA2BD662C8F47FC7EB5046D] - (.PSafe Tecnologia S.A. - PSafe Internet.) -- C:\Users\AUGUSTO\AppData\Local\PSafeInternet\Browser\Application\PSafeInternet.exe [2230112] [PID.4696]
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O42 - Logiciel: Loaris Trojan Remover - (.Loaris, Inc..) [HKLM][64Bits] -- {29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1
[HKLM\Software\Wow6432Node\Loaris]
O42 - Logiciel: PSafe Internet - (.PSafe Tecnologia S.A..) [HKCU][64Bits] -- PSafeInternet
[HKCU\Software\Baixaki]
[HKLM\Software\Wow6432Node\360Safe]
[HKLM\Software\Wow6432Node\Loaris]
O43 - CFD: 28/11/2014 - 16:37:49 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 25/07/2014 - 17:35:43 - [] ----D C:\ProgramData\Loaris
O43 - CFD: 25/07/2014 - 06:11:15 - [0] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
O43 - CFD: 24/01/2015 - 12:49:54 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 25/07/2014 - 17:35:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover
O43 - CFD: 25/07/2014 - 17:00:06 - [] ----D C:\Users\AUGUSTO\AppData\Local\PSafeInternet
O43 - CFD: 30/11/2014 - 06:51:45 - [] ----D C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSafe Internet
O61 - LFC: 24/01/2015 - 17:28:57 ---A- . (...) -- C:\Users\AUGUSTO\AppData\Local\Temp\Quarantine.exe [601088]
O67 - Shell Spawning: <.html> <PSafeInternetURL>[HKCU\..\open\Command] (.Not Key.)
O68 - StartMenuInternet: <PSafe Internet> <PSafe Internet>[HKLM\..\Shell\open\Command] (.PSafe Tecnologia S.A. - PSafe Internet.) -- C:\Users\AUGUSTO\AppData\Local\PSafeInternet\Browser\Application\PSafeInternet.exe
[MD5.169180F02ABCECA5DE72FC5EEBC861BB] [SPRF][25/07/2014] (.No owner - Setup/Uninstall.) -- C:\Users\AUGUSTO\AppData\Roaming\unins001.exe [730322]
[HKLM\Software\Wow6432Node\Loaris] =>Rogue.Multiple
C:\ProgramData\Loaris =>Rogue.Multiple
ShortcutFix
EmptyTemp
EmptyFlash
emptyclsid
_____________________________________________________________________________________________________________
Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.
Copie este relatório e poste em sua próxima resposta.
Nota: Esse script foi elaborado somente para este computador, de acordo com os arquivos e chaves presentes.
Aos visitantes: Se estiverem com um problema semelhante, não utilizem esse script, pois o uso sem supervisão pode causar danos ao sistema.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Segue o relatório do ZHPDiag:
Rapport de ZHPFix 2015.1.15.1 par Nicolas Coolman, Update du 15/01/2015
Fichier d'export Registre :
Run by AUGUSTO at 29/01/2015 19:54:00
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Reciclagem vazia (00mn 10s)
Reparação de atalhos do navegador
========== Softwares ==========
ELIMINÉ: PSafe Internet
========== Chaves do Registo ==========
ELIMINÉ: HKLM\Software\Wow6432Node\Loaris
ELIMINÉ: HKCU\Software\Baixaki
ELIMINÉ: HKLM\Software\Wow6432Node\360Safe
========== Valores do Registo ==========
ELIMINÉ RunValue: SynTPEnh
========== Elementos dos dados do Registo ==========
ELIMINÉ Pointeurs: PSafeInternetURL(html) Default=
========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia
========== Ficheiros ==========
ELIMINÉ: c:\users\augusto\appdata\local\temp\quarantine.exe
ELIMINÉ Temporários windows (42) (28.007.060 octets)
ELIMINÉ Flash Cookies (0) (0 octets)
========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso
========== Recapitulativo ==========
3 : Chaves do Registo
1 : Valores do Registo
1 : Elementos dos dados do Registo
1 : Pastas
3 : Ficheiros
1 : Softwares
1 : Restauração Sistema
End of clean in 02mn 41s
========== Caminho do ficheiro do relatório ==========
C:\Users\AUGUSTO\AppData\Roaming\ZHP\ZHPFix[R1].txt - 29/01/2015 19:54:14 [1347]
Rapport de ZHPFix 2015.1.15.1 par Nicolas Coolman, Update du 15/01/2015
Fichier d'export Registre :
Run by AUGUSTO at 29/01/2015 19:54:00
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Reciclagem vazia (00mn 10s)
Reparação de atalhos do navegador
========== Softwares ==========
ELIMINÉ: PSafe Internet
========== Chaves do Registo ==========
ELIMINÉ: HKLM\Software\Wow6432Node\Loaris
ELIMINÉ: HKCU\Software\Baixaki
ELIMINÉ: HKLM\Software\Wow6432Node\360Safe
========== Valores do Registo ==========
ELIMINÉ RunValue: SynTPEnh
========== Elementos dos dados do Registo ==========
ELIMINÉ Pointeurs: PSafeInternetURL(html) Default=
========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia
========== Ficheiros ==========
ELIMINÉ: c:\users\augusto\appdata\local\temp\quarantine.exe
ELIMINÉ Temporários windows (42) (28.007.060 octets)
ELIMINÉ Flash Cookies (0) (0 octets)
========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso
========== Recapitulativo ==========
3 : Chaves do Registo
1 : Valores do Registo
1 : Elementos dos dados do Registo
1 : Pastas
3 : Ficheiros
1 : Softwares
1 : Restauração Sistema
End of clean in 02mn 41s
========== Caminho do ficheiro do relatório ==========
C:\Users\AUGUSTO\AppData\Roaming\ZHP\ZHPFix[R1].txt - 29/01/2015 19:54:14 [1347]
Alfilosofia- Membro
- Mensagens : 70
Reputação : 0
Data de inscrição : 16/05/2014
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Desative temporariamente seu antivírus para evitar conflitos.
* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Para executá-lo corretamente siga as dicas deste tutorial:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.
* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Para executá-lo corretamente siga as dicas deste tutorial:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Segue o log (relatório) do Zoek:
Zoek.exe v5.0.0.0 Updated 27-01-2015
Tool run by AUGUSTO on 29/01/2015 at 20:32:06,97.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
29/01/2015 20:34:19 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\Loaris deleted successfully
C:\PROGRA~3\ProductData deleted successfully
C:\Users\AUGUSTO\AppData\Roaming\CF3993F5-9D5E-4D48-BE26-8E90C0BF1913 deleted successfully
C:\Users\AUGUSTO\AppData\Roaming\Publish Providers deleted successfully
C:\Users\AUGUSTO\AppData\Roaming\Vso deleted successfully
C:\Users\AUGUSTO\AppData\Local\SpaceKace deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default\prefs.js:
Added to C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\adwcleaner_4.109.exe deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\AUGUSTO\AppData\Local\mbt-actwiz.log deleted
C:\Users\AUGUSTO\AppData\LocalLow\ADSRemoval deleted
C:\Windows\Syswow64\GroupPolicy\Machine deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\AUGUSTO\AppData\Roaming\unins000.exe deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [25/07/2014 20:46]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{87F8774F-B485-47E2-A755-A40A8A5E886C}"="C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\bb\xpi" [29/01/2015 19:40]
==== Firefox Extensions ======================
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default
0FC325593893749364EC4A733E7D9100 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll - Shockwave Flash
F6419D3B99616C80C947B9D7B427348B - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll - Guardião Itaú 30 horas
BFD1CDA328C83054154DD05EA233F79B - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll - Módulo de Proteção - Banco do Brasil
E37EAD09D28AE19D8A39B6A95F47513A - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll - Shockwave for Director / Shockwave for Director
B8CFF778A75C685AAC275BFC00BB8FD8 - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll - Guardião Itaú 30 horas
FF7BE908352D36D50E308F49162FEA32 - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll - Módulo de Proteção - Banco do Brasil
==== Chromium Look ======================
Google Chrome Version: 36.0.1985.125 (Possible outdated, latest Stable version: 40.0.2214.93)
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[05/09/2013 12:04]
Adobe Acrobat - Create PDF - AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
Google Wallet - AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com.br/"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com.br/"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{474C0043-39B3-4443-9CE5-8941A86BEE41}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{474C0043-39B3-4443-9CE5-8941A86BEE41} Google Url="https://www.google.com/search?q={searchTerms}"
==== Reset Google Chrome ======================
C:\Users\AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== shortcuts on Users Desktops ======================
C:\Users\AUGUSTO\Desktop\AULA - Atalho.lnk - C:\Users\AUGUSTO\AULA
C:\Users\AUGUSTO\Desktop\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\Users\AUGUSTO\Desktop\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Access 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\accicons.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Acronis One-Click Backup.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe /one_click_backup
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Acronis True Image Home.lnk -
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Advanced Uninstaller PRO 11.lnk - C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\ATF-Cleaner - Atalho.lnk - C:\ATF-Cleaner\ATF-Cleaner.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\aTube Catcher.lnk - C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\AVG Manutenção em um Clique.lnk -
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Bitstream Font Navigator.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\FontNav\FontNav.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Camtasia Studio 8.lnk - C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\CCleaner.lnk - C:\Program Files (x86)\CCleaner\CCleaner64.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\CDBurnerXP.lnk - C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Corel CAPTURE X5.lnk - c:\Windows\Installer\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}\NewShortcut8.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Corel CONNECT.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Connect\Connect.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Corel PHOTO-PAINT X5.lnk - c:\Windows\Installer\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}\NewShortcut2.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\CorelDRAW X5.lnk - c:\Windows\Installer\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}\NewShortcut1.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Enciclopédia Barsa Universal Multimídia DVD-ROM.lnk -
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Excel 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\xlicons.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\FastCopy.lnk - C:\Program Files (x86)\FastCopy\FastCopy.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Klavaro-1.9.7.lnk - C:\Program Files (x86)\Klavaro-1.9.7\bin\klavaro.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\LibreOffice 4.2.lnk - C:\Program Files (x86)\LibreOffice 4\program\soffice.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Magic DVD Copier.lnk - C:\Program Files (x86)\MagicDVDCopier\MagicDVDCopier.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Magic DVD Ripper.lnk - C:\Program Files (x86)\MagicDVDRipper\MagicDVDRipper.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\MartView.lnk - C:\Program Files (x86)\MartView\MartView.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Media Player Classic.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Movie Maker.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Nero Burning ROM 2014.lnk - C:\Windows\Installer\{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}\ARPPRODUCTICON.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\OneDrive for Business 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Power Translator 15.lnk - C:\Program Files (x86)\Power Translator 15\Applications\LEC Power Translator 15.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\PowerPoint 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Publisher 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pubs.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\PureRa - Atalho.lnk - C:\PureRa\PureRa.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Sound Forge Pro 11.0.lnk - C:\Program Files (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Video Tutorials.lnk - c:\Windows\Installer\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}\NewShortcut6_CB374E334DC6464A9290A10D941E6568.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\VirtualDub - Atalho.lnk - C:\VirtualDub-1.10.4\VirtualDub.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\VSO Video Converter 1.lnk - C:\Program Files (x86)\VSO\VSO Video Converter\1\vsoVideoConverter.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
==== shortcuts on All Users Desktop ======================
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
==== shortcuts in All Users Start Menu ======================
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk - C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher\aTube Catcher.lnk - C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Bitstream Font Navigator.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\FontNav\FontNav.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Corel CAPTURE X5.lnk - c:\Windows\Installer\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}\NewShortcut8.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Corel CONNECT.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Connect\Connect.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Corel PHOTO-PAINT X5.lnk - c:\Windows\Installer\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}\NewShortcut2.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\CorelDRAW X5.lnk - c:\Windows\Installer\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}\NewShortcut1.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Documentation\Corel PHOTO-PAINT X5 Object Model Diagram PDF .lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Data\Corel PHOTO-PAINT Object Model Diagram.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Documentation\CorelDRAW X5 Object Model Diagram PDF.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Data\CorelDRAW Object Model Diagram.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Documentation\Macro Programming Guide PDF.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Data\Macro Programming Guide.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configurar Java.lnk - C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Obter Ajuda.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Sobre o Java.lnk - C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Verificar Atualizações.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visite Java.com.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Desinstalar Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\accicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\xlicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Ajuda.lnk - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /URL:WebHelp
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Ideias e soluções.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Panda Cloud Antivirus.lnk - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Suporte técnico on-line.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security\Panda Cloud Cleaner\Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security\Panda Cloud Cleaner\Uninstall Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Console do Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Encerrar Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Iniciar Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
==== shortcuts in Quick Launch ======================
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Adobe Acrobat XI Pro.lnk - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Adobe FormsCentral.lnk - C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Advanced IP Scanner.lnk - C:\Program Files (x86)\Advanced IP Scanner\advanced_ip_scanner.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\AIMP3.lnk - C:\Program Files (x86)\AIMP3\AIMP3.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Command Prompt.lnk - C:\Windows\system32\cmd.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Driver Booster.lnk - C:\Program Files (x86)\IObit\Driver Booster\SkipUacExec.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\FB Checker.lnk - C:\Program Files (x86)\Innovative Solutions\FB Checker\fbchecker.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\GPBe - GUIA POSTAL BRASILEIRO ELETRÔNICO®.lnk -
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Media Center.lnk - C:\Windows\ehome\ehshell.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mp3tag.lnk - C:\Program Files (x86)\Mp3tag\Mp3tag.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Notepad.lnk - C:\Windows\system32\notepad.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Paint.lnk - C:\Windows\system32\mspaint.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Shortcut to FilenameFix.exe.lnk - C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Installer\{E513B9C6-E227-469E-9370-0F77892D3395}\_719b2d65.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Calculator.lnk - C:\Windows\system32\calc.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Dicionário Houaiss 3.lnk -
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox (2).lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Notepad.lnk - C:\Windows\system32\notepad.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
==== Reset IE Proxy ======================
Value(s) before fix:
"ProxyEnable"=dword:00000000
Value(s) after fix:
"ProxyEnable"=dword:00000000
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\AUGUSTO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\AUGUSTO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\AUGUSTO\AppData\Local\Mozilla\Firefox\Profiles\5of64pvk.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=13 folders=12 11018452 bytes)
==== Empty Temp Folders ======================
C:\Users\AUGUSTO\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\AUGUSTO\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 29/01/2015 at 21:48:42,04 ======================
Zoek.exe v5.0.0.0 Updated 27-01-2015
Tool run by AUGUSTO on 29/01/2015 at 20:32:06,97.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
29/01/2015 20:34:19 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\Loaris deleted successfully
C:\PROGRA~3\ProductData deleted successfully
C:\Users\AUGUSTO\AppData\Roaming\CF3993F5-9D5E-4D48-BE26-8E90C0BF1913 deleted successfully
C:\Users\AUGUSTO\AppData\Roaming\Publish Providers deleted successfully
C:\Users\AUGUSTO\AppData\Roaming\Vso deleted successfully
C:\Users\AUGUSTO\AppData\Local\SpaceKace deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default\prefs.js:
Added to C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\adwcleaner_4.109.exe deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\AUGUSTO\AppData\Local\mbt-actwiz.log deleted
C:\Users\AUGUSTO\AppData\LocalLow\ADSRemoval deleted
C:\Windows\Syswow64\GroupPolicy\Machine deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\AUGUSTO\AppData\Roaming\unins000.exe deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [25/07/2014 20:46]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{87F8774F-B485-47E2-A755-A40A8A5E886C}"="C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\bb\xpi" [29/01/2015 19:40]
==== Firefox Extensions ======================
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\AUGUSTO\AppData\Roaming\Mozilla\Firefox\Profiles\5of64pvk.default
0FC325593893749364EC4A733E7D9100 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll - Shockwave Flash
F6419D3B99616C80C947B9D7B427348B - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll - Guardião Itaú 30 horas
BFD1CDA328C83054154DD05EA233F79B - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll - Módulo de Proteção - Banco do Brasil
E37EAD09D28AE19D8A39B6A95F47513A - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll - Shockwave for Director / Shockwave for Director
B8CFF778A75C685AAC275BFC00BB8FD8 - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll - Guardião Itaú 30 horas
FF7BE908352D36D50E308F49162FEA32 - C:\Users\AUGUSTO\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll - Módulo de Proteção - Banco do Brasil
==== Chromium Look ======================
Google Chrome Version: 36.0.1985.125 (Possible outdated, latest Stable version: 40.0.2214.93)
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[05/09/2013 12:04]
Adobe Acrobat - Create PDF - AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
Google Wallet - AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com.br/"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com.br/"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{474C0043-39B3-4443-9CE5-8941A86BEE41}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{474C0043-39B3-4443-9CE5-8941A86BEE41} Google Url="https://www.google.com/search?q={searchTerms}"
==== Reset Google Chrome ======================
C:\Users\AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== shortcuts on Users Desktops ======================
C:\Users\AUGUSTO\Desktop\AULA - Atalho.lnk - C:\Users\AUGUSTO\AULA
C:\Users\AUGUSTO\Desktop\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\Users\AUGUSTO\Desktop\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Access 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\accicons.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Acronis One-Click Backup.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe /one_click_backup
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Acronis True Image Home.lnk -
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Advanced Uninstaller PRO 11.lnk - C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\ATF-Cleaner - Atalho.lnk - C:\ATF-Cleaner\ATF-Cleaner.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\aTube Catcher.lnk - C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\AVG Manutenção em um Clique.lnk -
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Bitstream Font Navigator.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\FontNav\FontNav.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Camtasia Studio 8.lnk - C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\CCleaner.lnk - C:\Program Files (x86)\CCleaner\CCleaner64.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\CDBurnerXP.lnk - C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Corel CAPTURE X5.lnk - c:\Windows\Installer\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}\NewShortcut8.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Corel CONNECT.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Connect\Connect.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Corel PHOTO-PAINT X5.lnk - c:\Windows\Installer\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}\NewShortcut2.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\CorelDRAW X5.lnk - c:\Windows\Installer\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}\NewShortcut1.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Enciclopédia Barsa Universal Multimídia DVD-ROM.lnk -
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Excel 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\xlicons.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\FastCopy.lnk - C:\Program Files (x86)\FastCopy\FastCopy.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Klavaro-1.9.7.lnk - C:\Program Files (x86)\Klavaro-1.9.7\bin\klavaro.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\LibreOffice 4.2.lnk - C:\Program Files (x86)\LibreOffice 4\program\soffice.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Magic DVD Copier.lnk - C:\Program Files (x86)\MagicDVDCopier\MagicDVDCopier.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Magic DVD Ripper.lnk - C:\Program Files (x86)\MagicDVDRipper\MagicDVDRipper.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\MartView.lnk - C:\Program Files (x86)\MartView\MartView.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Media Player Classic.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Movie Maker.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Nero Burning ROM 2014.lnk - C:\Windows\Installer\{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}\ARPPRODUCTICON.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\OneDrive for Business 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Power Translator 15.lnk - C:\Program Files (x86)\Power Translator 15\Applications\LEC Power Translator 15.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\PowerPoint 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Publisher 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pubs.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\PureRa - Atalho.lnk - C:\PureRa\PureRa.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Sound Forge Pro 11.0.lnk - C:\Program Files (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Video Tutorials.lnk - c:\Windows\Installer\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}\NewShortcut6_CB374E334DC6464A9290A10D941E6568.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\VirtualDub - Atalho.lnk - C:\VirtualDub-1.10.4\VirtualDub.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\VSO Video Converter 1.lnk - C:\Program Files (x86)\VSO\VSO Video Converter\1\vsoVideoConverter.exe
C:\Users\AUGUSTO\Desktop\PROGRAMAS\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
==== shortcuts on All Users Desktop ======================
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
==== shortcuts in All Users Start Menu ======================
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk - C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher\aTube Catcher.lnk - C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Bitstream Font Navigator.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\FontNav\FontNav.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Corel CAPTURE X5.lnk - c:\Windows\Installer\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}\NewShortcut8.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Corel CONNECT.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Connect\Connect.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Corel PHOTO-PAINT X5.lnk - c:\Windows\Installer\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}\NewShortcut2.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\CorelDRAW X5.lnk - c:\Windows\Installer\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}\NewShortcut1.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Documentation\Corel PHOTO-PAINT X5 Object Model Diagram PDF .lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Data\Corel PHOTO-PAINT Object Model Diagram.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Documentation\CorelDRAW X5 Object Model Diagram PDF.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Data\CorelDRAW Object Model Diagram.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5\Documentation\Macro Programming Guide PDF.lnk - C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Data\Macro Programming Guide.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configurar Java.lnk - C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Obter Ajuda.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Sobre o Java.lnk - C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Verificar Atualizações.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visite Java.com.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Desinstalar Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\accicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\xlicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Ajuda.lnk - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /URL:WebHelp
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Ideias e soluções.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Panda Cloud Antivirus.lnk - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus\Suporte técnico on-line.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security\Panda Cloud Cleaner\Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security\Panda Cloud Cleaner\Uninstall Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Console do Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Encerrar Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer\Iniciar Trusteer Endpoint Protection.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
==== shortcuts in Quick Launch ======================
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Adobe Acrobat XI Pro.lnk - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Adobe FormsCentral.lnk - C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Advanced IP Scanner.lnk - C:\Program Files (x86)\Advanced IP Scanner\advanced_ip_scanner.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\AIMP3.lnk - C:\Program Files (x86)\AIMP3\AIMP3.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Command Prompt.lnk - C:\Windows\system32\cmd.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Driver Booster.lnk - C:\Program Files (x86)\IObit\Driver Booster\SkipUacExec.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\FB Checker.lnk - C:\Program Files (x86)\Innovative Solutions\FB Checker\fbchecker.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\GPBe - GUIA POSTAL BRASILEIRO ELETRÔNICO®.lnk -
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Media Center.lnk - C:\Windows\ehome\ehshell.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mp3tag.lnk - C:\Program Files (x86)\Mp3tag\Mp3tag.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Notepad.lnk - C:\Windows\system32\notepad.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Paint.lnk - C:\Windows\system32\mspaint.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Shortcut to FilenameFix.exe.lnk - C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Installer\{E513B9C6-E227-469E-9370-0F77892D3395}\_719b2d65.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Calculator.lnk - C:\Windows\system32\calc.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Dicionário Houaiss 3.lnk -
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox (2).lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Notepad.lnk - C:\Windows\system32\notepad.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\AUGUSTO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
==== Reset IE Proxy ======================
Value(s) before fix:
"ProxyEnable"=dword:00000000
Value(s) after fix:
"ProxyEnable"=dword:00000000
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\AUGUSTO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\AUGUSTO\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\AUGUSTO\AppData\Local\Mozilla\Firefox\Profiles\5of64pvk.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\AUGUSTO\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=13 folders=12 11018452 bytes)
==== Empty Temp Folders ======================
C:\Users\AUGUSTO\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\AUGUSTO\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 29/01/2015 at 21:48:42,04 ======================
Alfilosofia- Membro
- Mensagens : 70
Reputação : 0
Data de inscrição : 16/05/2014
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Bem melhor! Acabou?
Alfilosofia- Membro
- Mensagens : 70
Reputação : 0
Data de inscrição : 16/05/2014
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Fico feliz que o problema tenha sido resolvido.
Só para finalizar siga estes tutoriais abaixo, por gentileza:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________________________
Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Tens de ter uma conta e sessão iniciada para poderes visualizar este link].
_______________________________________________________________________________________________________________________
Foi um prazer ajudar. Conte sempre conosco!
Só para finalizar siga estes tutoriais abaixo, por gentileza:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________________________
Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Tens de ter uma conta e sessão iniciada para poderes visualizar este link].
_______________________________________________________________________________________________________________________
Foi um prazer ajudar. Conte sempre conosco!
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Muito obrigado mesmo!!! Vou terminar usando o delfix e as outras ferramentas de limpeza.
Alfilosofia- Membro
- Mensagens : 70
Reputação : 0
Data de inscrição : 16/05/2014
Re: Bloqueio constante também no notebook pelo Banco do Brasil
Caso Resolvido
Necessitando nova verificação para este computador, basta abrir um Novo Tópico e relatar o problema.
Necessitando nova verificação para este computador, basta abrir um Novo Tópico e relatar o problema.
Power Max- Colaborador
- Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009
Tópicos semelhantes
» Bloqueio constante do computador pelo Banco do Brasil
» estao acessando meus dados pelo wireshark como bloqueio??
» Notebook infectado pelo Buy2cheap
» bloqueio no sistema
» Ajudem: Programa de bloqueio sites
» estao acessando meus dados pelo wireshark como bloqueio??
» Notebook infectado pelo Buy2cheap
» bloqueio no sistema
» Ajudem: Programa de bloqueio sites
Página 1 de 1
Permissões neste sub-fórum
Não podes responder a tópicos
|
|