Logo Hardware.com.br
jot@
jot@ Super Participante Registrado
475 Mensagens 16 Curtidas

[Resolvido] Não estou conseguindo remover o MyStart do IE 10 Win 8

#1 Por jot@ 29/12/2013 - 21:03
Olá pessoal!!

Não estou conseguindo remover o MyStart do IE 10 Win 8.
Não da para desinstalar pq não costa no REVO e
Não localizo nada em nenhum lugar (registro, etc..)

Ele simplesmente sequestrou o IE.

Desejo a todos um maravilhoso ano de 2014.
Abs!!!
10 win ie remover conseguindo mystart
Wings
Wings Cyber Highlander Registrado
20.3K Mensagens 1.2K Curtidas
#2 Por Wings
29/12/2013 - 21:05
Olá jot@


veja.png Baixe o AdwCleaner (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Salve qualquer trabalho aberto e feche o seu navegador

*Execute-o, clique [Examinar] e aguarde o término

*Clique [Limpar] e aguarde o término

*Caso seja solicitada a reinicialização do PC, clique [OK] para reiniciar.

*Cole o relatório C:\AdwCleaner\AdwCleaner[S0].txt
jot@
jot@ Super Participante Registrado
475 Mensagens 16 Curtidas
#3 Por jot@
29/12/2013 - 21:26
Wings disse:
Olá jot@


veja.png Baixe o AdwCleaner (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Salve qualquer trabalho aberto e feche o seu navegador

*Execute-o, clique [Examinar] e aguarde o término

*Clique [Limpar] e aguarde o término

*Caso seja solicitada a reinicialização do PC, clique [OK] para reiniciar.

*Cole o relatório C:\AdwCleaner\AdwCleaner[S0].txt
# AdwCleaner v3.016 - Relatório criado 29/12/2013 às 21:14:16
# Atualizado 23/12/2013 por Xplode
# Sistema Operacional : Windows 8 Single Language (64 bits)
# Usuário : Jotinha - SKILLBEST
# Executando de : C:\Users\Jotinha\Desktop\AdwCleaner.exe
# Opção : Limpar

***** [ Serviços ] *****


***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\ProgramData\boost_interprocess

***** [ Atalhos ] *****


***** [ Registro ] *****


***** [ Navegadores ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v31.0.1650.63

[ Arquivo : C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1412 octets] - [04/12/2013 02:02:26]
AdwCleaner[R1].txt - [948 octets] - [29/12/2013 21:10:55]
AdwCleaner[R2].txt - [1005 octets] - [29/12/2013 21:13:18]
AdwCleaner[S0].txt - [1407 octets] - [04/12/2013 02:21:41]
AdwCleaner[S1].txt - [925 octets] - [29/12/2013 21:14:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [984 octets] ##########
NoteSamsung\i7/NVIDIA®GeForce®GT630M\8GBDDR3/+2GBdedic.6cél\1TBint+1TBext/BluRay\15.6"/Win 8.1\NetVirt/10Mb
Wings
Wings Cyber Highlander Registrado
20.3K Mensagens 1.2K Curtidas
#4 Por Wings
29/12/2013 - 21:29
veja.png Baixe o Zoek (...de Smeenk)

*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)

*Clique com o botão direito do mouse no Zoek e selecione Imagem

*Cole as linhas em marrom no espaço do Zoek

autoclean;
emptyalltemp;

*Feche o seu navegador e clique [Run Script]

*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!

Zoek.exe is running now.
Do not start any browser windows, they will be closed automatically.
Please wait! This window will close when finished.
A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log


*Caso a reinicialização do PC seja solicitada, clique [OK]

*Cole o relatório apresentado
jot@
jot@ Super Participante Registrado
475 Mensagens 16 Curtidas
#5 Por jot@
29/12/2013 - 22:36
Wings disse:
veja.png Baixe o Zoek (...de Smeenk)

*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)

*Clique com o botão direito do mouse no Zoek e selecione Imagem

*Cole as linhas em marrom no espaço do Zoek

autoclean;
emptyalltemp;

*Feche o seu navegador e clique [Run Script]

*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!


*Caso a reinicialização do PC seja solicitada, clique [OK]

*Cole o relatório apresentado
Minhas desculpas amigo Wings faltou energia elétrica.

Zoek.exe v5.0.0.0 Updated 28-December-2013
Tool run by Jotinha on 29/12/2013 at 22:26:53,90.
Microsoft Windows 8 Single Language 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jotinha\Desktop\zoek.scr [Scan all users] [Script inserted]

===== Runcheck 22:29:06,39 =====

--- Create Environment Variables 22:29:07,96
--- Create System Restore Point 22:29:26,58
--- Checking Input 22:30:21,22
--- AU AppData Check 22:30:29,88
--- Remove From Windows Installer 22:30:43,13
NoteSamsung\i7/NVIDIA®GeForce®GT630M\8GBDDR3/+2GBdedic.6cél\1TBint+1TBext/BluRay\15.6"/Win 8.1\NetVirt/10Mb
jot@
jot@ Super Participante Registrado
475 Mensagens 16 Curtidas
#9 Por jot@
29/12/2013 - 23:56
Wings disse:
veja.png Baixe o FRST (...de Farbar) e salve-o no Desktop

*Execute-o, aceite o contrato, desmarque a opção Addition.txt, clique [Scan] e ao término clique [OK]

*Cole ou anexe o relatório FRST.txt criado no Desktop
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Jotinha (administrator) on SKILLBEST on 29-12-2013 23:54:36
Running from C:\Users\Jotinha\Desktop
Windows 8 Single Language (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
(IOBit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
() C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterCaptureService.exe
() C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterWebService.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Management\Engine\3.2.2.12\ccsvchst.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\nis.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Clarus, Inc.) C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Management\Engine\3.2.2.12\ccsvchst.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\nis.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Dropbox, Inc.) C:\Users\Jotinha\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Microsoft Corporation) C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\CyberLink\Shared files\brs.exe [78352 2012-05-22] (cyberlink)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2237328 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IObit Malware Fighter] - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [GoogleChromeAutoLaunch_B7618A9353CC678714579F052C369C51] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184 2013-12-04] (Google Inc.)
HKCU\...\Run: [Google Update] - C:\Users\Jotinha\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-08-22] (Google Inc.)
HKCU\...\Run: [Samsung Drive Manager] - C:\Program Files (x86)\Clarus\Samsung Drive Manager\Drive Manager.exe [5796440 2012-08-17] (Clarus, Inc.)
HKCU\...\Run: [Advanced SystemCare Ultimate] - C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe [2562368 2013-12-02] (IObit)
HKCU\...\Runonce: [Uninstall C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64] - C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64"
HKCU\...\Runonce: [Uninstall C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64] - C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"
HKCU\...\Runonce: [Uninstall C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] - C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jotinha\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"
MountPoints2: {18c917cf-c8b3-11e2-be7c-c4850899074f} - "F:\LaunchU3.exe"
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [247144 2012-10-08] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll [202600 2012-10-08] (NVIDIA Corporation)
Startup: C:\Users\Jotinha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Jotinha\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Jotinha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar para o OneNote.lnk
ShortcutTarget: Enviar para o OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchinfinitas.com/?affilt=4&id={d9d7e82b-a5b0-4b69-ac68-26336aaecd8e}
SearchScopes: HKLM - DefaultScope {717BBFD1-DAB1-4B78-9E70-EC4985D28522} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {717BBFD1-DAB1-4B78-9E70-EC4985D28522} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM-x32 - {717BBFD1-DAB1-4B78-9E70-EC4985D28522} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - DefaultScope {717BBFD1-DAB1-4B78-9E70-EC4985D28522} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - {12451AC6-91F9-4596-B5C1-B64F2B6CC922} URL = http://tempoagora.uol.com.br/acelerador/resultadoprocura.php?q={searchTerms}
SearchScopes: HKCU - {717BBFD1-DAB1-4B78-9E70-EC4985D28522} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - {8C85EB3E-5C53-11E3-BEAC-C4850899074F} URL = http://searchinfinitas.com/?affilt=4&q={searchTerms}&id={D9D7E82B-A5B0-4B69-AC68-26336AAECD8E}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coieplg.dll (Symantec Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coieplg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\ips\ipsbho.dll (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Program Files (x86)\GbPlugin\gbieh.dll (Banco do Brasil)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coieplg.dll (Symantec Corporation)
Toolbar: HKLM - No Name - {F051F6BF-82D9-49A7-9E6C-BA63CDB487D2} - No File
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coieplg.dll (Symantec Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coieplg.dll (Symantec Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1487912 2013-10-07] (Banco do Brasil)
Tcpip\Parameters: [DhcpNameServer] 189.7.144.15 189.7.144.16

Chrome:
=======
CHR RestoreOnStartup: "https://www.google.com.br/search?q=8.8.8.8+e+8.8.4.4+google+public+dns&oq=8.8.8.8&aqs=chrome.4.69i58j69i57j0l3.13326j0j7&sourceid=chrome&espv=210&es_sm=93&ie=UTF-8#es_sm=93&espv=210&q=instalar+windows+8.1", "https://www.google.com.br/"
CHR DefaultSearchKeyword: searchinfinitas.com
CHR DefaultSearchProvider: Web Search
CHR DefaultSearchURL: http://searchinfinitas.com/?affilt=4&q={searchTerms}&id={D9D7E82B-A5B0-4B69-AC68-26336AAECD8E}
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1
CHR Extension: (Google Drive) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1
CHR Extension: (YouTube) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1
CHR Extension: (Adblock Plus) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0
CHR Extension: (Google Search) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1
CHR Extension: (Ads Removal) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcefkcdkepgkpbgncjchhbjgoanleod\1.0.0_0
CHR Extension: (Norton Identity Protection) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2014.6.2.3_0
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0
CHR Extension: (Google Wallet) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Quebrador de Links) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchaoppopfjnlficjlobfjhfceadbfla\3.0.2_0
CHR Extension: (GBBD Banco do Brasil) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgacfjdigcddmmncljpflgcfpfahebkh\3.5.0_0
CHR Extension: (Gmail) - C:\Users\Jotinha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\Exts\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171664 2012-11-05] (Adobe Systems Incorporated)
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe [886592 2013-12-16] (IObit)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe [647488 2013-12-10] (IOBit)
R2 BitMeterCaptureService; C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterCaptureService.exe [85435 2011-11-19] ()
R2 BitMeterWebService; C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterWebService.exe [141466 2011-11-19] ()
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243728 2012-05-22] (CyberLink)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1591176 2012-11-30] (Samsung Electronics CO., LTD.)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [452136 2013-10-08] (GAS Tecnologia)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
S4 IntelliMemory; C:\Program Files\Condusiv Technologies\IntelliMemory\IntelliMem.exe [55120 2012-11-01] (Condusiv Technologies)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151232 2013-12-02] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MCLIENT; C:\Program Files (x86)\Norton Management\Engine\3.2.2.12\ccSvcHst.exe [143928 2012-12-04] (Symantec Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [275696 2013-10-08] (Symantec Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 SZDrvSvc; C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe [19456 2012-08-17] (Clarus, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-01] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)
S2 SWUpdateService; C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe /SERVICE [x]

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.1.3\Definitions\BASHDefs\20131203.001\BHDrvx64.sys [1526488 2013-12-03] (Symantec Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [121728 2012-08-26] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [857472 2012-08-28] (Motorola Solutions, Inc.)
R1 cbfs3; C:\windows\system32\drivers\cbfs3.sys [352456 2012-08-06] (EldoS Corporation)
R1 ccSet_MCLIENT; C:\Windows\system32\drivers\MCLIENTx64\0302020.00C\ccSetx64.sys [168096 2012-10-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-24] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-21] (Symantec Corporation)
S3 epmntdrv; C:\windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\windows\SysWow64\epmntdrv.sys [14920 2013-03-07] ()
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-21] (Symantec Corporation)
S3 EuGdiDrv; C:\windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\windows\SysWow64\EuGdiDrv.sys [9160 2013-03-07] ()
S3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.1.3\Definitions\IPSDefs\20131227.001\IDSvia64.sys [521944 2013-12-13] (Symantec Corporation)
R1 intmfs; C:\Windows\System32\DRIVERS\intmfs.sys [28496 2012-11-01] (Condusiv Technologies)
R0 intmsd; C:\Windows\System32\DRIVERS\intmsd.sys [104272 2012-11-01] (Condusiv Technologies)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 mdf16; C:\Program Files (x86)\Clarus\Samsung Drive Manager\mdf16.sys [20400 2012-06-21] ()
R3 mvd23; C:\Program Files (x86)\Clarus\Samsung Drive Manager\mvd23.sys [99248 2012-06-21] ()
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.1.3\Definitions\VirusDefs\20131228.006\ENG64.SYS [126040 2013-12-27] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.1.3\Definitions\VirusDefs\20131228.006\EX64.SYS [2099288 2013-12-27] (Symantec Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-10-08] (Intel Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-09] (Corel Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2013-03-03] (Windows (R) 2003 DDK 3790 provider)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2013-05-22] ()
R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NISx64\1501000.012\SymELAM.sys [23568 2013-08-01] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-09-04] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S3 SBIOSIO; \??\C:\Users\Jotinha\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys [x]
S3 TVICPORT; \??\C:\windows\system32\DRIVERS\TVICPORT.SYS [x]
S3 UCORESYS; \??\C:\MfgDiag\DiagTools\ReadDMI8\UCORESYS.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-29 23:54 - 2013-12-29 23:54 - 00024400 _____ C:\Users\Jotinha\Desktop\FRST.txt
2013-12-29 23:54 - 2013-12-29 23:54 - 00000000 ____D C:\FRST
2013-12-29 23:52 - 2013-12-29 23:53 - 01931302 _____ (Farbar) C:\Users\Jotinha\Desktop\FRST64.exe
2013-12-29 23:42 - 2013-12-25 18:40 - 01409177 _____ C:\Users\Jotinha\Desktop\zoek.scr
2013-12-29 23:42 - 2013-12-25 18:40 - 01409177 _____ C:\Users\Jotinha\Desktop\zoek.pif
2013-12-29 23:42 - 2013-12-25 18:40 - 01409177 _____ C:\Users\Jotinha\Desktop\zoek.com
2013-12-29 22:29 - 2013-12-29 22:30 - 00000404 _____ C:\zoek-results.log
2013-12-29 22:27 - 2013-12-29 22:27 - 00003134 _____ C:\windows\System32\Tasks\{8F00113B-EDFB-41D9-9F79-6E738F1B194C}
2013-12-29 22:26 - 2013-12-29 22:30 - 00000526 _____ C:\runcheck.txt
2013-12-29 22:26 - 2013-12-29 22:26 - 00000000 ____D C:\zoek_backup
2013-12-29 22:18 - 2013-12-29 22:19 - 04218387 _____ C:\Users\Jotinha\Desktop\zoek.rar
2013-12-29 21:07 - 2013-12-29 21:07 - 01233962 _____ C:\Users\Jotinha\Desktop\AdwCleaner.exe
2013-12-29 20:12 - 2013-12-29 22:30 - 00062239 _____ C:\windows\WindowsUpdate.log
2013-12-29 20:10 - 2013-12-29 20:10 - 07990424 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-29 20:10 - 2013-12-29 20:10 - 00008274 _____ C:\windows\PFRO.log
2013-12-27 03:24 - 2013-12-27 03:24 - 00001365 _____ C:\Users\Public\Desktop\EaseUS Partition Master 9.2.2.lnk
2013-12-27 03:24 - 2013-04-11 14:10 - 02498216 _____ C:\windows\SysWOW64\BootMan.exe
2013-12-27 03:24 - 2013-03-28 19:02 - 03376640 _____ C:\windows\system32\BootMan.exe
2013-12-27 03:24 - 2013-03-07 09:49 - 00100936 _____ C:\windows\system32\setupempdrvx64.exe
2013-12-27 03:24 - 2013-03-07 09:49 - 00087112 _____ C:\windows\SysWOW64\setupempdrv03.exe
2013-12-27 03:24 - 2013-03-07 09:49 - 00019840 _____ C:\windows\SysWOW64\EuEpmGdi.dll
2013-12-27 03:24 - 2013-03-07 09:49 - 00017480 _____ C:\windows\system32\epmntdrv.sys
2013-12-27 03:24 - 2013-03-07 09:49 - 00016256 _____ C:\windows\system32\EuEpmGdi.dll
2013-12-27 03:24 - 2013-03-07 09:49 - 00014920 _____ C:\windows\SysWOW64\epmntdrv.sys
2013-12-27 03:24 - 2013-03-07 09:49 - 00009800 _____ C:\windows\system32\EuGdiDrv.sys
2013-12-27 03:24 - 2013-03-07 09:49 - 00009160 _____ C:\windows\SysWOW64\EuGdiDrv.sys
2013-12-27 02:48 - 2013-12-27 02:49 - 18607760 _____ (EaseUS ) C:\Users\Jotinha\Downloads\epm_trial.exe
2013-12-25 22:00 - 2013-12-25 22:00 - 00000000 ____D C:\Users\Jotinha\AppData\Local\Microsoft Help
2013-12-20 19:36 - 2013-12-20 19:36 - 00002228 _____ C:\Users\Public\Desktop\ Google Earth.lnk
2013-12-20 00:19 - 2013-12-20 00:19 - 00819136 _____ (Google Inc.) C:\Users\Jotinha\Downloads\googledrivesync.exe
2013-12-19 23:48 - 2013-12-24 03:28 - 00000284 _____ C:\windows\Tasks\ASC7U_SkipUac_Jotinha.job
2013-12-19 23:48 - 2013-12-19 23:48 - 00003116 _____ C:\windows\System32\Tasks\ASC7_PerformanceMonitor
2013-12-19 23:48 - 2013-12-19 23:48 - 00002388 _____ C:\windows\System32\Tasks\ASC7U_SkipUac_Jotinha
2013-12-19 21:14 - 2013-12-19 23:30 - 00000000 ____D C:\Program Files\CCleaner
2013-12-19 21:14 - 2013-12-19 23:20 - 00000828 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-19 21:14 - 2013-12-19 21:14 - 00002776 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2013-12-19 20:33 - 2013-12-19 20:33 - 00001024 _____ C:\Users\Jotinha\Desktop\Dropbox.lnk
2013-12-19 19:58 - 2013-12-19 19:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\Apple Computer
2013-12-19 19:58 - 2013-12-19 19:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Apple Computer
2013-12-19 19:57 - 2013-12-29 21:18 - 00000000 ____D C:\ProgramData\ProductData
2013-12-19 19:57 - 2013-12-29 20:11 - 00000290 _____ C:\windows\Tasks\ASC7U_SkipUac_SISTEMA.job
2013-12-19 19:57 - 2013-12-19 19:58 - 00002246 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-19 19:57 - 2013-12-19 19:57 - 00002394 _____ C:\windows\System32\Tasks\ASC7U_SkipUac_SISTEMA
2013-12-19 19:57 - 2013-12-19 19:57 - 00001165 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-13 22:03 - 2013-12-03 22:53 - 00694240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-13 22:03 - 2013-12-03 22:53 - 00078304 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 09:01 - 2013-10-25 04:19 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-11 09:01 - 2013-10-25 04:18 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-11 09:01 - 2013-10-25 02:45 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-11 09:01 - 2013-10-25 02:44 - 01140736 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-11 09:01 - 2013-10-25 02:43 - 13761536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-11 09:01 - 2013-10-25 02:43 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-11 09:00 - 2013-10-25 04:19 - 02241536 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-11 09:00 - 2013-10-25 04:19 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2013-12-11 09:00 - 2013-10-25 04:19 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-11 09:00 - 2013-10-25 04:18 - 19271168 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-11 09:00 - 2013-10-25 04:17 - 15404032 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-11 09:00 - 2013-10-25 04:17 - 03959808 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-11 09:00 - 2013-10-25 04:17 - 02648576 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-11 09:00 - 2013-10-25 04:17 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-11 09:00 - 2013-10-25 02:44 - 14356992 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-11 09:00 - 2013-10-25 02:43 - 02877952 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-11 09:00 - 2013-10-25 02:43 - 02049024 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-11 09:00 - 2013-10-25 02:43 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-11 08:53 - 2013-10-19 03:45 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 08:53 - 2013-10-19 02:04 - 00059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 08:52 - 2013-10-08 23:33 - 00059416 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2013-12-11 08:52 - 2013-10-08 20:30 - 00628736 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2013-12-11 08:52 - 2013-10-08 20:30 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2013-12-11 08:52 - 2013-10-08 20:30 - 00084992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2013-12-11 08:52 - 2013-10-08 20:30 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2013-12-11 08:52 - 2013-10-08 20:28 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2013-12-11 08:52 - 2013-10-08 20:27 - 03279872 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2013-12-11 08:52 - 2013-10-08 20:27 - 01622016 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2013-12-11 08:52 - 2013-10-08 20:27 - 00773120 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2013-12-11 08:52 - 2013-10-08 20:27 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2013-12-11 08:52 - 2013-10-08 20:27 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2013-12-11 08:52 - 2013-10-08 20:27 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2013-12-11 08:52 - 2013-10-08 20:27 - 00099328 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2013-12-11 08:52 - 2013-10-05 04:10 - 00285016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2013-12-11 08:52 - 2013-10-03 20:09 - 00385528 _____ C:\windows\system32\ApnDatabase.xml
2013-12-11 08:52 - 2013-10-02 00:50 - 00447320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2013-12-11 08:52 - 2013-09-28 03:48 - 00778752 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2013-12-11 08:52 - 2013-09-28 01:58 - 00551424 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2013-12-11 08:52 - 2013-09-19 05:32 - 01455448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2013-12-11 08:52 - 2013-08-30 03:19 - 00626688 _____ (Microsoft Corporation) C:\windows\system32\resutils.dll
2013-12-11 08:52 - 2013-08-30 03:18 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\clusapi.dll
2013-12-11 08:52 - 2013-08-29 21:48 - 00488960 _____ (Microsoft Corporation) C:\windows\SysWOW64\resutils.dll
2013-12-11 08:52 - 2013-08-29 21:47 - 00302080 _____ (Microsoft Corporation) C:\windows\SysWOW64\clusapi.dll
2013-12-11 08:51 - 2013-11-23 04:43 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 08:51 - 2013-11-23 03:05 - 00368640 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 08:51 - 2013-11-06 21:18 - 04036608 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 08:51 - 2013-11-01 03:38 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 08:51 - 2013-11-01 01:49 - 00273408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 08:51 - 2013-10-10 07:32 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-11 08:51 - 2013-10-10 07:30 - 00162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrobj.dll
2013-12-11 08:51 - 2013-10-10 07:30 - 00156160 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 08:51 - 2013-10-10 07:24 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 08:51 - 2013-10-10 07:23 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 08:51 - 2013-10-10 07:22 - 00222720 _____ (Microsoft Corporation) C:\windows\system32\scrobj.dll
2013-12-11 08:51 - 2013-10-10 07:22 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 08:51 - 2013-09-28 01:35 - 00288768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-07 11:17 - 2013-12-07 11:17 - 00720082 _____ C:\Users\Jotinha\AppData\Roaming\unins000.exe
2013-12-04 03:12 - 2013-12-04 03:12 - 00001472 _____ C:\Users\Jotinha\Desktop\Malwarebytes' Anti-Malware - Atalho.lnk
2013-12-04 02:42 - 2013-12-04 02:42 - 00388608 _____ (Trend Micro Inc.) C:\Users\Jotinha\Desktop\HijackThis.exe
2013-12-04 02:00 - 2013-12-29 21:30 - 00000000 ____D C:\AdwCleaner
2013-12-03 17:45 - 2013-12-04 00:33 - 00000000 ____D C:\Program Files (x86)\Notificatoin
2013-12-01 17:54 - 2013-12-01 17:54 - 00000918 _____ C:\Users\Jotinha\Downloads\extrato.txt
2013-12-01 06:57 - 2013-12-01 06:57 - 00000549 _____ C:\Users\Jotinha\Documents\Adicionar itens ao sendto.txt

==================== One Month Modified Files and Folders =======

2013-12-29 23:55 - 2013-12-29 23:54 - 00024400 _____ C:\Users\Jotinha\Desktop\FRST.txt
2013-12-29 23:54 - 2013-12-29 23:54 - 00000000 ____D C:\FRST
2013-12-29 23:53 - 2013-12-29 23:52 - 01931302 _____ (Farbar) C:\Users\Jotinha\Desktop\FRST64.exe
2013-12-29 23:39 - 2013-05-30 19:20 - 00005032 _____ C:\windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for SKILLBEST-Jotinha SkiLLBest
2013-12-29 23:39 - 2013-05-29 22:27 - 00000000 ___RD C:\Users\Jotinha\SkyDrive
2013-12-29 23:34 - 2013-10-19 12:31 - 00000000 ___RD C:\Users\Jotinha\Dropbox
2013-12-29 23:34 - 2013-10-19 12:21 - 00000000 ____D C:\Users\Jotinha\AppData\Roaming\Dropbox
2013-12-29 23:34 - 2013-06-15 22:07 - 00001086 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-29 23:33 - 2013-06-15 22:07 - 00001090 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-29 23:02 - 2012-07-26 06:12 - 00000000 ____D C:\windows\system32\sru
2013-12-29 22:33 - 2013-06-01 23:19 - 00000000 ____D C:\ProgramData\BitMeterOS
2013-12-29 22:30 - 2013-12-29 22:29 - 00000404 _____ C:\zoek-results.log
2013-12-29 22:30 - 2013-12-29 22:26 - 00000526 _____ C:\runcheck.txt
2013-12-29 22:30 - 2013-12-29 20:12 - 00062239 _____ C:\windows\WindowsUpdate.log
2013-12-29 22:27 - 2013-12-29 22:27 - 00003134 _____ C:\windows\System32\Tasks\{8F00113B-EDFB-41D9-9F79-6E738F1B194C}
2013-12-29 22:26 - 2013-12-29 22:26 - 00000000 ____D C:\zoek_backup
2013-12-29 22:19 - 2013-12-29 22:18 - 04218387 _____ C:\Users\Jotinha\Desktop\zoek.rar
2013-12-29 21:34 - 2013-01-03 19:31 - 00000000 ____D C:\ProgramData\WinClon
2013-12-29 21:31 - 2013-07-20 08:51 - 00031088 _____ (GbPlugin NDIS Device Driver) C:\windows\SysWOW64\Drivers\gbpndisrd.sys
2013-12-29 21:31 - 2013-07-20 08:51 - 00010266 _____ C:\windows\SysWOW64\Drivers\ndisrd.cat
2013-12-29 21:31 - 2013-07-20 08:51 - 00001402 _____ C:\windows\SysWOW64\Drivers\gas.cer
2013-12-29 21:31 - 2012-07-26 05:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-29 21:30 - 2013-12-04 02:00 - 00000000 ____D C:\AdwCleaner
2013-12-29 21:30 - 2012-07-26 03:26 - 00262144 ___SH C:\windows\system32\config\BBI
2013-12-29 21:18 - 2013-12-19 19:57 - 00000000 ____D C:\ProgramData\ProductData
2013-12-29 21:17 - 2012-07-26 03:26 - 00262144 ___SH C:\windows\system32\config\ELAM
2013-12-29 21:07 - 2013-12-29 21:07 - 01233962 _____ C:\Users\Jotinha\Desktop\AdwCleaner.exe
2013-12-29 20:15 - 2012-07-26 06:12 - 00000000 ____D C:\windows\system32\NDF
2013-12-29 20:13 - 2013-07-29 22:41 - 00131072 ___SH C:\Users\Jotinha\Desktop\Thumbs.db
2013-12-29 20:11 - 2013-12-19 19:57 - 00000290 _____ C:\windows\Tasks\ASC7U_SkipUac_SISTEMA.job
2013-12-29 20:11 - 2013-10-23 05:24 - 00000308 _____ C:\windows\Tasks\Driver Booster Update.job
2013-12-29 20:11 - 2013-08-22 22:20 - 00001106 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3040202017-829934666-1125082906-1002UA.job
2013-12-29 20:11 - 2013-08-22 22:20 - 00001054 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3040202017-829934666-1125082906-1002Core.job
2013-12-29 20:11 - 2013-07-09 12:27 - 00000000 ____D C:\ProgramData\GbPlugin
2013-12-29 20:10 - 2013-12-29 20:10 - 07990424 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-29 20:10 - 2013-12-29 20:10 - 00008274 _____ C:\windows\PFRO.log
2013-12-29 18:58 - 2013-06-01 18:37 - 00003954 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{3669538D-83B6-43F3-BA6B-4E3B98E319A8}
2013-12-27 15:14 - 2013-07-09 12:27 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2013-12-27 12:49 - 2013-05-27 07:08 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3040202017-829934666-1125082906-1002
2013-12-27 03:24 - 2013-12-27 03:24 - 00001365 _____ C:\Users\Public\Desktop\EaseUS Partition Master 9.2.2.lnk
2013-12-27 03:19 - 2013-10-23 08:50 - 00000000 ____D C:\Program Files (x86)\EaseUS
2013-12-27 02:49 - 2013-12-27 02:48 - 18607760 _____ (EaseUS ) C:\Users\Jotinha\Downloads\epm_trial.exe
2013-12-25 22:00 - 2013-12-25 22:00 - 00000000 ____D C:\Users\Jotinha\AppData\Local\Microsoft Help
2013-12-25 21:42 - 2012-07-26 06:12 - 00000000 ____D C:\windows\AUInstallAgent
2013-12-25 18:40 - 2013-12-29 23:42 - 01409177 _____ C:\Users\Jotinha\Desktop\zoek.scr
2013-12-25 18:40 - 2013-12-29 23:42 - 01409177 _____ C:\Users\Jotinha\Desktop\zoek.pif
2013-12-25 18:40 - 2013-12-29 23:42 - 01409177 _____ C:\Users\Jotinha\Desktop\zoek.com
2013-12-24 03:28 - 2013-12-19 23:48 - 00000284 _____ C:\windows\Tasks\ASC7U_SkipUac_Jotinha.job
2013-12-23 20:02 - 2013-05-29 22:23 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-22 00:06 - 2013-06-30 08:18 - 00000000 ____D C:\Users\Jotinha\Documents\FILMES VER
2013-12-20 19:36 - 2013-12-20 19:36 - 00002228 _____ C:\Users\Public\Desktop\ Google Earth.lnk
2013-12-20 19:36 - 2013-06-15 22:07 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-20 01:55 - 2013-08-20 16:07 - 00000000 ____D C:\windows\system32\MRT
2013-12-20 01:55 - 2013-05-29 20:25 - 90708896 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-12-20 00:19 - 2013-12-20 00:19 - 00819136 _____ (Google Inc.) C:\Users\Jotinha\Downloads\googledrivesync.exe
2013-12-20 00:17 - 2012-08-05 20:07 - 00000000 ____D C:\windows\Panther
2013-12-19 23:48 - 2013-12-19 23:48 - 00003116 _____ C:\windows\System32\Tasks\ASC7_PerformanceMonitor
2013-12-19 23:48 - 2013-12-19 23:48 - 00002388 _____ C:\windows\System32\Tasks\ASC7U_SkipUac_Jotinha
2013-12-19 23:30 - 2013-12-19 21:14 - 00000000 ____D C:\Program Files\CCleaner
2013-12-19 23:20 - 2013-12-19 21:14 - 00000828 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-19 21:14 - 2013-12-19 21:14 - 00002776 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2013-12-19 20:55 - 2013-10-25 22:39 - 00003172 _____ C:\windows\System32\Tasks\SmartDefrag_Startup
2013-12-19 20:55 - 2013-10-25 22:39 - 00003170 _____ C:\windows\System32\Tasks\SmartDefragUpdate
2013-12-19 20:55 - 2013-10-23 05:24 - 00003220 _____ C:\windows\System32\Tasks\Driver Booster Scan
2013-12-19 20:55 - 2013-10-23 05:24 - 00002568 _____ C:\windows\System32\Tasks\Driver Booster Update
2013-12-19 20:55 - 2013-08-22 22:20 - 00004058 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3040202017-829934666-1125082906-1002UA
2013-12-19 20:55 - 2013-08-22 22:20 - 00003678 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3040202017-829934666-1125082906-1002Core
2013-12-19 20:55 - 2013-07-13 21:53 - 00003510 _____ C:\windows\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-jjr.2063@live.com
2013-12-19 20:34 - 2013-05-27 07:02 - 00000000 ___RD C:\Users\Jotinha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-19 20:33 - 2013-12-19 20:33 - 00001024 _____ C:\Users\Jotinha\Desktop\Dropbox.lnk
2013-12-19 20:33 - 2013-10-19 12:26 - 00000000 ____D C:\Users\Jotinha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-12-19 20:17 - 2013-06-09 20:50 - 00000000 ____D C:\Users\Jotinha\AppData\Roaming\IObit
2013-12-19 20:02 - 2013-05-27 07:03 - 00000000 ____D C:\Users\Jotinha\AppData\Local\Adobe
2013-12-19 19:58 - 2013-12-19 19:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\Apple Computer
2013-12-19 19:58 - 2013-12-19 19:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Apple Computer
2013-12-19 19:58 - 2013-12-19 19:57 - 00002246 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-19 19:58 - 2013-06-09 20:50 - 00000000 ____D C:\Program Files (x86)\IObit
2013-12-19 19:57 - 2013-12-19 19:57 - 00002394 _____ C:\windows\System32\Tasks\ASC7U_SkipUac_SISTEMA
2013-12-19 19:57 - 2013-12-19 19:57 - 00001165 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-19 19:57 - 2013-11-01 12:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\IObit
2013-12-19 19:57 - 2013-11-01 12:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\IObit
2013-12-19 19:57 - 2013-10-22 13:20 - 00000000 ____D C:\ProgramData\IObit
2013-12-13 23:17 - 2012-07-26 06:12 - 00000000 ____D C:\windows\rescache
2013-12-13 22:07 - 2013-01-04 15:33 - 00762816 _____ C:\windows\system32\prfh0416.dat
2013-12-13 22:07 - 2013-01-04 15:33 - 00154608 _____ C:\windows\system32\prfc0416.dat
2013-12-13 22:07 - 2012-07-26 05:28 - 01765682 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-13 21:58 - 2012-07-26 06:12 - 00000000 ____D C:\windows\system32\SecureBootUpdates
2013-12-13 21:58 - 2012-07-26 03:38 - 00000000 ____D C:\windows\system32\oobe
2013-12-13 16:28 - 2013-06-15 22:07 - 00004062 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-13 16:28 - 2013-06-15 22:07 - 00003826 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-13 15:46 - 2013-08-05 21:38 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2013-12-07 11:17 - 2013-12-07 11:17 - 00720082 _____ C:\Users\Jotinha\AppData\Roaming\unins000.exe
2013-12-07 11:17 - 2013-08-05 21:38 - 00041884 _____ C:\Users\Jotinha\AppData\Roaming\unins000.dat
2013-12-05 17:29 - 2013-06-15 22:08 - 00002193 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-04 12:22 - 2013-08-06 22:31 - 00000000 ____D C:\Users\Jotinha\Documents\INFORMATICA
2013-12-04 03:12 - 2013-12-04 03:12 - 00001472 _____ C:\Users\Jotinha\Desktop\Malwarebytes' Anti-Malware - Atalho.lnk
2013-12-04 02:42 - 2013-12-04 02:42 - 00388608 _____ (Trend Micro Inc.) C:\Users\Jotinha\Desktop\HijackThis.exe
2013-12-04 00:45 - 2013-06-30 03:52 - 00000000 ____D C:\Users\Jotinha\AppData\Local\CrashDumps
2013-12-04 00:41 - 2013-06-09 23:59 - 00000000 ____D C:\Users\Jotinha\Documents\CcLeaner
2013-12-04 00:33 - 2013-12-03 17:45 - 00000000 ____D C:\Program Files (x86)\Notificatoin
2013-12-03 22:53 - 2013-12-13 22:03 - 00694240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-03 22:53 - 2013-12-13 22:03 - 00078304 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-03 18:46 - 2013-10-10 07:28 - 00000000 ____D C:\Users\Jotinha\Downloads\INFORMATICA
2013-12-03 15:38 - 2013-10-26 00:54 - 00000000 ____D C:\Program Files (x86)\Raxco
2013-12-01 17:54 - 2013-12-01 17:54 - 00000918 _____ C:\Users\Jotinha\Downloads\extrato.txt
2013-12-01 12:10 - 2013-07-09 20:40 - 00000000 ____D C:\Users\Jotinha\Documents\BB
2013-12-01 06:57 - 2013-12-01 06:57 - 00000549 _____ C:\Users\Jotinha\Documents\Adicionar itens ao sendto.txt
2013-11-29 11:20 - 2013-10-29 23:07 - 00000132 _____ C:\Users\Jotinha\AppData\Roaming\Preferências do Formato PNG CC da Adobe
2013-11-29 07:12 - 2013-01-03 19:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-29 07:11 - 2013-05-27 07:00 - 00000000 ____D C:\Users\Jotinha\AppData\Local\VirtualStore

Files to move or delete:
====================
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe


Some content of TEMP:
====================
C:\Users\Jotinha\AppData\Local\Temp\7za.exe
C:\Users\Jotinha\AppData\Local\Temp\hijackthis.exe
C:\Users\Jotinha\AppData\Local\Temp\NirCmd.exe
C:\Users\Jotinha\AppData\Local\Temp\PEVZ.EXE
C:\Users\Jotinha\AppData\Local\Temp\Quarantine.exe
C:\Users\Jotinha\AppData\Local\Temp\remove.exe
C:\Users\Jotinha\AppData\Local\Temp\sed.exe
C:\Users\Jotinha\AppData\Local\Temp\shortcut.exe
C:\Users\Jotinha\AppData\Local\Temp\swreg.exe
C:\Users\Jotinha\AppData\Local\Temp\swxcacls.exe
C:\Users\Jotinha\AppData\Local\Temp\wget.exe
C:\Users\Jotinha\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 01:58

==================== End Of Log ============================
NoteSamsung\i7/NVIDIA®GeForce®GT630M\8GBDDR3/+2GBdedic.6cél\1TBint+1TBext/BluRay\15.6"/Win 8.1\NetVirt/10Mb
jot@
jot@ Super Participante Registrado
475 Mensagens 16 Curtidas
#11 Por jot@
30/12/2013 - 00:16
Wings disse:
veja.png Baixe o arquivo fixlist.txt e salve-o no Desktop

*Feche o seu navegador

*Execute o FRST, clique [Fix] e cole o relatório Fixlog.txt criado no Desktop

Informe se foi resolvido
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-12-2013 01
Ran by Jotinha at 2013-12-30 00:13:10 Run:1
Running from C:\Users\Jotinha\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchinfinitas.com/?affilt=4&id={d9d7e82b-a5b0-4b69-ac68-26336aaecd8e}
SearchScopes: HKCU - {8C85EB3E-5C53-11E3-BEAC-C4850899074F} URL = http://searchinfinitas.com/?affilt=4&q={searchTerms}&id={D9D7E82B-A5B0-4B69-AC68-26336AAECD8E}
CHR DefaultSearchKeyword: searchinfinitas.com
CHR DefaultSearchURL: http://searchinfinitas.com/?affilt=4&q={searchTerms}&id={D9D7E82B-A5B0-4B69-AC68-26336AAECD8E}
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
C:\Users\Jotinha\AppData\Local\Temp\*.exe

*****************

HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8C85EB3E-5C53-11E3-BEAC-C4850899074F} => Key deleted successfully.
HKCR\CLSID\{8C85EB3E-5C53-11E3-BEAC-C4850899074F} => Key not found.
CHR DefaultSearchKeyword: searchinfinitas.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://searchinfinitas.com/?affilt=4&q={searchTerms}&id={D9D7E82B-A5B0-4B69-AC68-26336AAECD8E} ==> The Chrome "Settings" can be used to fix the entry.
HKCU\SOFTWARE\Policies\Google => Key deleted successfully.
C:\ProgramData\MakeMarkerFile.exe => Moved successfully.
C:\Users\EasySurvey\EasySurvey.exe => Moved successfully.
C:\Users\Jotinha\AppData\Local\Temp\*.exe => Moved successfully.

==== End of Fixlog ====

A praga continua no IE.
NoteSamsung\i7/NVIDIA®GeForce®GT630M\8GBDDR3/+2GBdedic.6cél\1TBint+1TBext/BluRay\15.6"/Win 8.1\NetVirt/10Mb
jot@
jot@ Super Participante Registrado
475 Mensagens 16 Curtidas
#13 Por jot@
30/12/2013 - 00:45
Wings disse:
veja.png Extraia do Zoek.zip o arquivo Zoek.com

*Clique com o botão direito do mouse no Zoek e selecione Imagem

*Cole as linhas em marrom no espaço do Zoek

autoclean;
emptyalltemp;

*Feche o seu navegador e clique [Run Script]

*Aguarde o término

*Caso a reinicialização do PC seja solicitada, clique [OK]

*Cole o relatório apresentado
Negativo Wings não tem opção de abrir como Adm e já testei em outros programas eles tem
NoteSamsung\i7/NVIDIA®GeForce®GT630M\8GBDDR3/+2GBdedic.6cél\1TBint+1TBext/BluRay\15.6"/Win 8.1\NetVirt/10Mb
© 1999-2024 Hardware.com.br. Todos os direitos reservados.
Imagem do Modal