¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 07.10.2014.2

¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 23:45:03 - 09/10/2014

Atualizado : 07/10/2014 | 12.40 Por g3n-h@ckm@n™
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFix
Boot: Normal boot
[AntonioCarlos (Administrator)] - [MEYERPC] -  (brasil [0416])
SID = S-1-5-21-2239031659-2206691629-1993922262-1001 || [416e746f6e696f4361726c6f73205e5e]
PC : ASUSTeK COMPUTER INC. - P8H77-M LE - SKU
Bios : American Megatrends Inc. - 05/07/2012
Sistema : Windows 8.1 Pro (64 bits) Professional 
Memória RAM = Total (MB) : 8341 | Livre (MB) : 5933
Pagefile = Total (MB) : 9652 | Livre (MB) : 6022
Virtual = Total (MB) : 4194 | Livre (MB) : 3994

Registro protegido, restabelecer :  : C:\AdsFix\Save\Registry [09.10.2014 @ 23_45_01] (Clique em Opções & Restabeleça o registro)
A Restauração de arquivos apagou por engano : Clique em Opções & Restabeleça Arquivos, Selecione um item >> "restaurar"

¤¤¤¤¤¤¤¤¤¤ | Windows atualizado

Nenhuma atualização descoberta !!! 

¤¤¤¤¤¤¤¤¤¤ | Navegadores

IE : 11.0.9600.17278     (© Microsoft Corporation. Todos os direitos reservados.)
GC : 38.0.2125.101     (Copyright 2012 Google Inc. All rights reserved.)

¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 3)

AV : avast! Antivirus Enabled
AS : avast! Antivirus Enabled
AM : Malwarebytes' Anti-Malware   (1.0.0.532)     [2014.06.17.13]
FW : avast! Antivirus Enabled
WMI : OK
WU: Windows Update Service [Manual(3)] = Ordem
AS: Windows Defender [Manual(3)] = Ordem
FW: Windows FireWall Service [Auto(2)] = Ordem

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

ActiveX : 15.0.0.152
Plugin : 15.0.0.152

¤¤¤¤¤¤¤¤¤¤ | Processos mortos

100 | [Owner : SISTEMA |Parent : 760] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.52.) - (8.17.13.4052) = C:\Windows\System32\nvvsvc.exe
444 | [Owner : SISTEMA |Parent : 760] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - (7.17.13.4052) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
580 | [Owner : SISTEMA |Parent : 100] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.4052) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
712 | [Owner : SISTEMA |Parent : 100] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.52.) - (8.17.13.4052) = C:\Windows\System32\nvvsvc.exe
1056 | [Owner : SISTEMA |Parent : 760] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) - (3.3.2.0) = C:\PROGRA~2\GbPlugin\gbpsv.exe
1656 | [Owner : SISTEMA |Parent : 760] - (.Microsoft Corporation - Aplicativo de subsistema de spooler.) - (6.3.9600.17238) = C:\Windows\System32\spoolsv.exe
1664 | [Owner : SISTEMA |Parent : 760] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.701.8.51) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
2156 | [Owner : SISTEMA |Parent : 760] - (.Microsoft Corporation - Updates Skype Click to Call.) - (7.3.16540.9015) = C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
2240 | [Owner : SERVIÇO DE REDE |Parent : 760] - (.Microsoft Corporation - Phone Number Recognition (PNR) module.) - (7.3.16540.9015) = C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
2272 | [Owner : SISTEMA |Parent : 760] - (.Microsoft Corporation - Microsoft Office Click-to-Run.) - (15.0.4649.1000) = C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
2352 | [Owner : SERVIÇO LOCAL |Parent : 1136] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.17031) = C:\Windows\System32\dasHost.exe
2600 | [Owner : SISTEMA |Parent : 760] - (.Microsoft Corporation - Machine Debug Manager.) - (7.10.3077.0) = C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
2724 | [Owner : UpdatusUser |Parent : 760] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - (6.4.23.3) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
3120 | [Owner : AntonioCarlos |Parent : 3960] - (.Microsoft Corporation - Windows Explorer.) - (6.3.9600.17284) = C:\Windows\explorer.exe
3620 | [Owner : AntonioCarlos |Parent : 1056] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) - (3.3.2.0) = C:\PROGRA~2\GbPlugin\gbpsv.exe
4612 | [Owner : SISTEMA |Parent : 760] - (.Microsoft Corporation - Indexador do Microsoft Windows Search.) - (7.0.9600.17031) = C:\Windows\System32\SearchIndexer.exe
4424 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft Corporation - OneDrive Sync Engine.) - (6.3.9600.17230) = C:\Windows\System32\SkyDrive.exe
5228 | [Owner : AntonioCarlos |Parent : 1152] - (.Microsoft Corporation - Processo de Host para Tarefas do Windows.) - (6.3.9600.17031) = C:\Windows\System32\taskhostex.exe
5360 | [Owner : SISTEMA |Parent : 5872] - (.Google Inc. - Google Crash Handler.) - (1.3.24.15) = C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
5396 | [Owner : SISTEMA |Parent : 5872] - (.Google Inc. - Google Crash Handler.) - (1.3.24.15) = C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
4780 | [Owner : AntonioCarlos |Parent : 3120] - (.NVIDIA Corporation - NVIDIA NvTmru Application.) - (6.4.23.3) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
5164 | [Owner : AntonioCarlos |Parent : 3120] - (.Hewlett-Packard Co. - ScanToPCActivationApp.) - (28.0.1315.0) = C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
6012 | [Owner : AntonioCarlos |Parent : 3120] - (.Microsoft Corporation - Microsoft Outlook.) - (15.0.4649.1000) = C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
4324 | [Owner : AntonioCarlos |Parent : 5812] - (.Piriform Ltd - CCleaner.) - (4.18.0.4844) = C:\Program Files\CCleaner\CCleaner64.exe
5772 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.3.9600.16384) = C:\Windows\System32\wbem\unsecapp.exe
6096 | [Owner : AntonioCarlos |Parent : 5848] - (.Wondershare - Wondershare Studio.) - (2.2.0.6) = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
6756 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.3.9600.16384) = C:\Windows\System32\wbem\unsecapp.exe
6900 | [Owner : AntonioCarlos |Parent : 5164] - (.Hewlett-Packard Co. - HPNetworkCommunicator.) - (28.0.1315.0) = C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
1196 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft Corporation - Runtime Broker.) - (6.3.9600.16384) = C:\Windows\System32\RuntimeBroker.exe
3240 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft Corporation - Windows Reader.) - (6.3.9600.17044) = C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
2780 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (6.3.9600.17031) = C:\Windows\System32\SettingSyncHost.exe
6800 | [Owner : AntonioCarlos |Parent : 6112] - (. - .) - (0.0.0.0) = C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
292 | [Owner : AntonioCarlos |Parent : 848] - (.Microsoft - Microsoft Solitaire Collection.) - (1.0.0.0) = C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\Solitaire.exe
2652 | [Owner : SISTEMA |Parent : 1152] - (.Microsoft Corporation - Mecanismo do Agendador de Tarefas.) - (6.3.9600.17031) = C:\Windows\System32\taskeng.exe
5924 | [Owner : SISTEMA |Parent : 760] - (.Microsoft Corporation - Microsoft Office Click-to-Run.) - (15.0.4649.1000) = C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe

¤¤¤¤¤¤¤¤¤¤ | Tasks



¤¤¤¤¤¤¤¤¤¤ | Serviços


¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs


¤¤¤¤¤¤¤¤¤¤ | Hosts

Hosts : Ok

¤¤¤¤¤¤¤¤¤¤ | SafeBoot

Consertado : [HKLM | Minimal\vga.sys] :  -> Driver
Consertado : [HKLM | Minimal\vgasave.sys] :  -> Driver

¤

Consertado : [HKLM | Network\vga.sys] :  -> Driver
Consertado : [HKLM | Network\vgasave.sys] :  -> Driver

¤¤¤¤¤¤¤¤¤¤ | Registro

Apagado prosperamente : HKLM64\SOFTWARE\Classes\Interface\{3856F531-CD1E-4B00-91C7-ED75EC8E7C18} : IOneTab
Apagado prosperamente : HKLM\SOFTWARE\Classes\Interface\{3856F531-CD1E-4B00-91C7-ED75EC8E7C18} : IOneTab
Apagado prosperamente : HKLM\SOFTWARE\Classes\Interface\{89A3A2ED-0546-4C60-8159-2D917245BCB3} : IBrowserSecurityManager
Apagado prosperamente : HKLM64\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Apagado prosperamente : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll    (String)
Apagado prosperamente : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll    (String)
Apagado prosperamente : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll    (String)
Apagado prosperamente : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll    (String)
Apagado prosperamente : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll    (String)
Apagado prosperamente : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll    (String)
Apagado prosperamente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}    (CLSID)
Apagado prosperamente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}    (CLSID)
Apagado prosperamente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}    (CLSID)
Apagado prosperamente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}    (CLSID)
Apagado prosperamente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}    (CLSID)
Apagado prosperamente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}    (CLSID)

¤¤¤¤¤¤¤¤¤¤ | Heuristics


¤¤¤¤¤¤¤¤¤¤ | reparsepoint


¤¤¤¤¤¤¤¤¤¤ | Arquivos

Apagado prosperamente : C:\Users\All Users\boost_interprocess
Apagado prosperamente : C:\ProgramData\DP45977C.lfl     (.-.)     
Apagado prosperamente : C:\Users\AntonioCarlos\AppData\Roaming\unins000.dat     (.-.)     
Apagado prosperamente : C:\Users\AntonioCarlos\AppData\Roaming\unins001.dat     (.-.)     
Apagado prosperamente : C:\Users\AntonioCarlos\AppData\Roaming\unins001.exe     (.-.)     

¤¤¤¤¤¤¤¤¤¤ | .LNK


¤¤¤¤¤¤¤¤¤¤ | Extensão desconhecida abrindo


¤¤¤¤¤¤¤¤¤¤ | Proxy


¤¤¤¤¤¤¤¤¤¤ | Internet Explorer

Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Main]~[Search Bar] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Main]~[Start Default_Page_URL] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\System32\blank.htm -> C:\WINDOWS\SysWOW64\blank.htm
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\SearchURL]~[Default] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Main]~[CustomizeSearch] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[SearchAssistant] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Search Bar] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Start Page] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Start Default_Page_URL] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Local Page] :  -> C:\WINDOWS\SysWOW64\blank.htm
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Search Page] :  -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Default_Search_URL] :  -> http://go.microsoft.com/fwlink/?LinkId=54896
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[Default_Page_URL] :  -> http://go.microsoft.com/fwlink/?LinkId=69157
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Search]~[CustomizeSearch] :  -> https://www.google.com/
Consertado : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]~[Tabs] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]~[Search Bar] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]~[Start Default_Page_URL] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchURL]~[Default] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]~[CustomizeSearch] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[SearchAssistant] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Search Bar] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Start Page] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Start Default_Page_URL] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Local Page] :  -> C:\WINDOWS\SysWOW64\blank.htm
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Search Page] :  -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Default_Search_URL] :  -> http://go.microsoft.com/fwlink/?LinkId=54896
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Default_Page_URL] :  -> http://go.microsoft.com/fwlink/?LinkId=69157
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[CustomizeSearch] :  -> https://www.google.com/
Consertado : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]~[Tabs] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Search Bar] : Preserve -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Start Page] : http://www.santander.com.br/ -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Start Default_Page_URL] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\WINDOWS\system32\blank.htm -> C:\WINDOWS\SysWOW64\blank.htm
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\SearchURL]~[Default] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[CustomizeSearch] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[Search Bar] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[Start Page] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[Start Default_Page_URL] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[Local Page] :  -> C:\WINDOWS\SysWOW64\blank.htm
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[Search Page] :  -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[Default_Page_URL] :  -> http://go.microsoft.com/fwlink/?LinkId=69157
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\Search]~[CustomizeSearch] :  -> https://www.google.com/
Consertado : [HKU\S-1-5-21-2239031659-2206691629-1993922262-1001\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]~[Tabs] :  -> https://www.google.com/

¤¤¤¤¤¤¤¤¤¤ | Google Chrome

Apagado prosperamente : HKLM64\SOFTWARE\Policies\Google
Apagado prosperamente : C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Reponha para zerar prosperamente : SearchURL

C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\abmojiekfpcmkkfamgfcpgfgipocface =  :     Módulo de Proteção - Banco Santander (Brasil) S.A. -     GBBD Banco Santander (Brasil) S.A. - permissions:[webRequestwebRequestBlockingtabsbrowsingDatacontentSettings\u003Call_urls>]
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - http://clients2.google.com/service/update2/crx
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\coobgpohoikkiipiblmjeljniedjpjpf =  : Google & co - http://www.google.com/webhp?source=search_app - Google & co - [*://www.google.com/search*://www.google.com/webhp*://www.google.com/imgres] - http://clients2.google.com/service/update2/crx
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl =  :     Skype Click to Call -     Skype Click to Call - https://clients2.google.com/service/update2/crx
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\AntonioCarlos\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx

¤¤¤¤¤¤¤¤¤¤ | Chromium



¤¤¤¤¤¤¤¤¤¤ | Comodo Dragon



¤¤¤¤¤¤¤¤¤¤ | Firefox



¤¤¤¤¤¤¤¤¤¤ | SeaMonkey



¤¤¤¤¤¤¤¤¤¤ | Pale moon



¤¤¤¤¤¤¤¤¤¤ | Opera



¤¤¤¤¤¤¤¤¤¤ | Spark



¤¤¤¤¤¤¤¤¤¤ | StartMenuInternet


¤¤¤¤¤¤¤¤¤¤ | Javascript


¤¤¤¤¤¤¤¤¤¤ | Firewall


¤¤¤¤¤¤¤¤¤¤ | ADS

¤¤¤¤¤¤¤¤¤¤ | Arquivos temporários

[All Users] Arquivos temporários Apagado : 0 Ko
[AntonioCarlos] Arquivos temporários Apagado : 0 Ko
[Default] Arquivos temporários Apagado : 0 Ko
[Default User] Arquivos temporários Apagado : 0 Ko
[Default.migrated] Arquivos temporários Apagado : 0 Ko
[Public] Arquivos temporários Apagado : 0 Ko
[Todos os Usuários] Arquivos temporários Apagado : 0 Ko
[UpdatusUser] Arquivos temporários Apagado : 0 Ko
[Usuário Padrão] Arquivos temporários Apagado : 0 Ko
[C:\WINDOWS\Temp] Arquivos temporários Apagado : 8 Ko
[C:\Temp] Arquivos temporários Apagado : 0 Ko


Outros relatórios


¤¤¤¤¤¤¤¤¤¤ | Listing 


¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)

[02/05/2014 07:32:21] - |D| - C:\Program Files (x86)\Acro Software
[30/07/2013 18:32:05] - |D| - C:\Program Files (x86)\Adobe
[19/08/2013 17:09:31] - |D| - C:\Program Files (x86)\Bonjour
[22/08/2013 10:36:15] - |D| - C:\Program Files (x86)\Common Files
[22/08/2013 12:36:33] - |SH| - C:\Program Files (x86)\desktop.ini
[02/10/2013 19:11:56] - |D| - C:\Program Files (x86)\DVD Shrink
[09/10/2014 22:11:36] - |D| - C:\Program Files (x86)\ESET
[29/07/2013 13:54:54] - |D| - C:\Program Files (x86)\GbPlugin
[28/07/2013 14:52:24] - |D| - C:\Program Files (x86)\Google
[02/05/2014 07:32:48] - |D| - C:\Program Files (x86)\GPLGS
[28/07/2013 17:29:10] - |D| - C:\Program Files (x86)\HP
[30/07/2013 20:52:22] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Internet Explorer
[11/10/2013 09:42:54] - |D| - C:\Program Files (x86)\IrfanView
[17/11/2013 20:27:15] - |D| - C:\Program Files (x86)\Lview
[14/07/2014 08:41:38] - |D| - C:\Program Files (x86)\Malwarebytes Anti-Malware
[27/07/2013 13:34:16] - |D| - C:\Program Files (x86)\Microsoft Office
[29/09/2013 14:42:39] - |D| - C:\Program Files (x86)\Microsoft Silverlight
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Microsoft.NET
[30/07/2013 20:52:15] - |D| - C:\Program Files (x86)\MonitorDriver
[10/07/2014 22:08:19] - |D| - C:\Program Files (x86)\MP3Gain
[09/11/2013 11:08:49] - |D| - C:\Program Files (x86)\MSBuild
[31/07/2013 07:35:02] - |D| - C:\Program Files (x86)\MSECache
[27/07/2013 13:39:38] - |D| - C:\Program Files (x86)\Nero
[27/07/2013 13:45:59] - |D| - C:\Program Files (x86)\NVIDIA Corporation
[26/08/2014 17:28:33] - |D| - C:\Program Files (x86)\qBittorrent
[09/11/2013 11:08:49] - |D| - C:\Program Files (x86)\Reference Assemblies
[27/07/2013 13:37:42] - |RD| - C:\Program Files (x86)\Skype
[29/07/2013 22:38:53] - |D| - C:\Program Files (x86)\VideoLAN
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows Defender
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows Mail
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows Media Player
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows Multimedia Platform
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows NT
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Windows Portable Devices
[22/08/2013 12:36:30] - |SHD| - C:\Program Files (x86)\Windows Sidebar
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\WindowsPowerShell
[09/09/2013 15:14:01] - |D| - C:\Program Files (x86)\WinRAR
[27/07/2013 13:34:34] - |D| - C:\Program Files (x86)\Winrar 4.20

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files

[27/07/2013 13:27:51] - |SHD| - C:\Program Files\Arquivos Comuns
[09/11/2013 10:10:54] - |D| - C:\Program Files\ASUS
[10/11/2013 09:03:08] - |D| - C:\Program Files\AVAST Software
[19/08/2013 17:09:31] - |D| - C:\Program Files\Bonjour
[15/08/2013 18:54:02] - |D| - C:\Program Files\CCleaner
[22/08/2013 10:36:15] - |D| - C:\Program Files\Common Files
[22/08/2013 12:36:45] - |ASH| - C:\Program Files\desktop.ini
[28/07/2013 17:28:53] - |D| - C:\Program Files\HP
[22/08/2013 12:36:31] - |D| - C:\Program Files\Internet Explorer
[30/12/2013 11:15:11] - |D| - C:\Program Files\Microsoft Office
[30/12/2013 11:10:03] - |D| - C:\Program Files\Microsoft Office 15
[29/09/2013 14:42:39] - |D| - C:\Program Files\Microsoft Silverlight
[09/11/2013 11:08:48] - |D| - C:\Program Files\MSBuild
[09/11/2013 10:11:04] - |D| - C:\Program Files\NVIDIA Corporation
[09/11/2013 10:10:52] - |D| - C:\Program Files\Realtek
[09/11/2013 11:08:48] - |D| - C:\Program Files\Reference Assemblies
[26/07/2012 04:22:18] - |HD| - C:\Program Files\Uninstall Information
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows Defender
[30/09/2013 00:59:10] - |D| - C:\Program Files\Windows Journal
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows Mail
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows Media Player
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows Multimedia Platform
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows NT
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows Photo Viewer
[22/08/2013 12:36:31] - |D| - C:\Program Files\Windows Portable Devices
[22/08/2013 12:36:31] - |SHD| - C:\Program Files\Windows Sidebar
[22/08/2013 12:36:31] - |HD| - C:\Program Files\WindowsApps
[22/08/2013 12:36:31] - |D| - C:\Program Files\WindowsPowerShell
[29/07/2013 22:25:31] - |D| - C:\Program Files\WinRAR

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)\Common Files

[30/07/2013 18:32:05] - |D| - C:\Program Files (x86)\Common Files\Adobe
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Common Files\Microsoft Shared
[27/07/2013 13:39:33] - |D| - C:\Program Files (x86)\Common Files\Nero
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Common Files\Services
[07/10/2014 09:30:42] - |D| - C:\Program Files (x86)\Common Files\Skype
[22/08/2013 12:36:30] - |D| - C:\Program Files (x86)\Common Files\System
[05/09/2014 13:28:08] - |D| - C:\Program Files (x86)\Common Files\Wondershare

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files\Common Files

[30/12/2013 11:26:32] - |D| - C:\Program Files\Common Files\DESIGNER
[22/08/2013 12:36:31] - |D| - C:\Program Files\Common Files\microsoft shared
[22/08/2013 12:36:31] - |D| - C:\Program Files\Common Files\Services
[27/07/2013 13:27:52] - |SHD| - C:\Program Files\Common Files\Sistema
[22/08/2013 12:36:31] - |D| - C:\Program Files\Common Files\System

¤¤¤¤¤¤¤¤¤¤ | C:\Users\AntonioCarlos\AppData\Roaming

[27/07/2013 13:30:03] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Adobe
[05/09/2014 13:49:58] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Anvsoft
[19/08/2013 17:10:56] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Apple Computer
[10/11/2013 09:03:50] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\AVAST Software
[02/10/2013 18:36:35] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\dvdcss
[29/07/2013 22:15:10] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Google
[24/04/2014 17:14:24] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\HD Tune Pro
[28/07/2013 17:29:51] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\HpUpdate
[27/07/2013 14:03:43] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Identities
[30/07/2013 20:52:14] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\InstallShield
[11/10/2013 09:42:54] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\IrfanView
[28/07/2013 14:51:17] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Macromedia
[14/10/2013 12:42:53] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Malwarebytes
[09/11/2013 10:12:24] - |SD| - C:\Users\AntonioCarlos\AppData\Roaming\Microsoft
[14/11/2013 16:59:24] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Mozilla
[27/07/2013 13:39:47] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Nero
[05/09/2014 13:30:34] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\NVIDIA
[28/07/2013 16:30:59] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\qBittorrent
[04/03/2014 14:10:22] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Runscanner.net
[26/08/2014 12:13:22] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Shareaza
[27/07/2013 13:37:45] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Skype
[29/07/2013 22:39:03] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\vlc
[27/07/2013 13:34:39] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\WinRAR
[05/09/2014 13:28:32] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\Wondershare Video Converter Ultimate
[22/04/2014 18:12:04] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\ZHP
[05/09/2014 13:28:34] - |D| - C:\Users\AntonioCarlos\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}

¤¤¤¤¤¤¤¤¤¤ | C:\Users\AntonioCarlos\AppData\Local

[09/10/2014 22:44:47] - |D| - C:\Users\AntonioCarlos\AppData\Local\CrashDumps
[09/11/2013 10:12:24] - |SHD| - C:\Users\AntonioCarlos\AppData\Local\Dados de Aplicativos
[26/08/2014 13:52:04] - |A| - C:\Users\AntonioCarlos\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[02/05/2014 08:45:22] - |D| - C:\Users\AntonioCarlos\AppData\Local\Deployment
[03/08/2013 18:18:31] - |D| - C:\Users\AntonioCarlos\AppData\Local\Diagnostics
[15/04/2014 18:05:48] - |SHD| - C:\Users\AntonioCarlos\AppData\Local\EmieSiteList
[15/04/2014 18:05:48] - |SHD| - C:\Users\AntonioCarlos\AppData\Local\EmieUserList
[05/09/2014 13:44:21] - |D| - C:\Users\AntonioCarlos\AppData\Local\FreemakeVideoConverter
[29/07/2013 13:54:45] - |D| - C:\Users\AntonioCarlos\AppData\Local\GAS Tecnologia
[29/07/2013 15:29:56] - |A| - C:\Users\AntonioCarlos\AppData\Local\GDIPFONTCACHEV1.DAT
[14/05/2014 21:32:15] - |D| - C:\Users\AntonioCarlos\AppData\Local\Google
[09/11/2013 10:12:24] - |SHD| - C:\Users\AntonioCarlos\AppData\Local\Histórico
[28/07/2013 17:15:06] - |D| - C:\Users\AntonioCarlos\AppData\Local\HP
[19/11/2013 18:17:00] - |D| - C:\Users\AntonioCarlos\AppData\Local\Macromedia
[09/11/2013 10:12:24] - |D| - C:\Users\AntonioCarlos\AppData\Local\Microsoft
[27/07/2013 13:34:17] - |D| - C:\Users\AntonioCarlos\AppData\Local\Microsoft Help
[14/11/2013 16:59:24] - |D| - C:\Users\AntonioCarlos\AppData\Local\Mozilla
[29/07/2013 21:11:58] - |D| - C:\Users\AntonioCarlos\AppData\Local\NVIDIA
[27/07/2013 13:29:50] - |D| - C:\Users\AntonioCarlos\AppData\Local\Packages
[29/07/2013 13:54:52] - |D| - C:\Users\AntonioCarlos\AppData\Local\Programs
[28/07/2013 16:30:59] - |D| - C:\Users\AntonioCarlos\AppData\Local\qBittorrent
[01/06/2014 17:02:30] - |A| - C:\Users\AntonioCarlos\AppData\Local\Resmon.ResmonCfg
[26/08/2014 12:13:26] - |D| - C:\Users\AntonioCarlos\AppData\Local\Shareaza
[24/06/2014 08:31:34] - |D| - C:\Users\AntonioCarlos\AppData\Local\Skype
[09/11/2013 10:12:24] - |SHD| - C:\Users\AntonioCarlos\AppData\Local\Temporary Internet Files
[27/07/2013 13:29:51] - |D| - C:\Users\AntonioCarlos\AppData\Local\VirtualStore
[05/09/2014 13:28:09] - |D| - C:\Users\AntonioCarlos\AppData\Local\Wondershare

¤¤¤¤¤¤¤¤¤¤ | C:\ProgramData

[20/09/2014 13:31:21] - |D| - C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[30/07/2013 18:31:59] - |D| - C:\ProgramData\Adobe
[28/07/2013 17:28:46] - |A| - C:\ProgramData\Ament.ini
[19/08/2013 17:09:27] - |D| - C:\ProgramData\Apple
[19/08/2013 17:10:43] - |D| - C:\ProgramData\Apple Computer
[22/08/2013 11:45:52] - |SHD| - C:\ProgramData\Application Data
[05/03/2014 18:16:05] - |D| - C:\ProgramData\Auslogics
[10/11/2013 09:02:01] - |D| - C:\ProgramData\AVAST Software
[27/07/2013 13:27:51] - |SHD| - C:\ProgramData\Dados de Aplicativos
[22/08/2013 11:45:52] - |SHD| - C:\ProgramData\Desktop
[27/07/2013 13:27:51] - |SHD| - C:\ProgramData\Documentos
[22/08/2013 11:45:52] - |SHD| - C:\ProgramData\Documents
[02/10/2013 19:11:57] - |D| - C:\ProgramData\DVD Shrink
[05/09/2014 13:44:10] - |D| - C:\ProgramData\Freemake
[29/07/2013 13:54:45] - |D| - C:\ProgramData\GAS Tecnologia
[29/07/2013 13:54:54] - |D| - C:\ProgramData\GbPlugin
[28/07/2013 17:29:19] - |D| - C:\ProgramData\HP
[14/10/2013 12:42:44] - |D| - C:\ProgramData\Malwarebytes
[16/01/2014 07:45:22] - |D| - C:\ProgramData\McAfee
[27/07/2013 13:27:51] - |SHD| - C:\ProgramData\Menu Iniciar
[22/08/2013 10:36:15] - |SD| - C:\ProgramData\Microsoft
[27/07/2013 13:34:16] - |D| - C:\ProgramData\Microsoft Help
[27/07/2013 13:27:51] - |SHD| - C:\ProgramData\Modelos
[14/11/2013 16:59:17] - |D| - C:\ProgramData\Mozilla
[05/09/2014 13:28:10] - |RASH| - C:\ProgramData\ntuser.pol
[09/11/2013 10:11:16] - |D| - C:\ProgramData\NVIDIA
[09/11/2013 10:11:06] - |D| - C:\ProgramData\NVIDIA Corporation
[26/08/2014 12:13:18] - |D| - C:\ProgramData\Package Cache
[27/07/2013 13:29:50] - |D| - C:\ProgramData\PRICache
[22/08/2013 12:36:30] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[27/07/2013 13:36:39] - |D| - C:\ProgramData\Skype
[22/08/2013 11:45:52] - |SHD| - C:\ProgramData\Start Menu
[01/08/2014 15:52:15] - |D| - C:\ProgramData\Temp
[22/08/2013 11:45:52] - |SHD| - C:\ProgramData\Templates
[05/09/2014 13:27:49] - |D| - C:\ProgramData\Wondershare
[05/09/2014 13:27:52] - |D| - C:\ProgramData\Wondershare Video Converter Ultimate

¤¤¤¤¤¤¤¤¤¤ | C:\WINDOWS\Tasks

[17/11/2013 22:05:18] - |A| - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[14/05/2014 21:32:20] - |A| - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[14/05/2014 21:32:20] - |A| - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[22/08/2013 11:45:54] - |AH| - C:\WINDOWS\Tasks\SA.DAT

¤¤¤¤¤¤¤¤¤¤ | C:\WINDOWS\System32\Tasks

[22/08/2013 12:36:31] - |D| - C:\WINDOWS\System32\Tasks\Microsoft

Analisados : 129636 | Modificados : 43 | Infetado : 27

¤¤¤¤¤¤¤¤¤¤ |EOF| ¤¤¤¤¤¤¤¤¤¤ | 09:30:21 | [33 Ko]