Fórum SecSecurity

Implementando Limpeza e Seguranca em seu computador!

Palavras chave

Últimos assuntos

» ResetBrowser ( ... de Nicolas Coolman )
Ter Maio 31, 2016 5:58 am por joram

» herdProtectScan ( ... by herdprotect.com )
Seg Mar 07, 2016 10:58 pm por joram

» Emsisoft Emergency Kit ( ... by Emsisoft.com )
Dom Fev 28, 2016 5:40 am por joram

» Dr.WEB Link Checker ( ... by Doctor Web.Ltd )
Qui Fev 11, 2016 9:51 am por joram

» Computador com erros no navegador
Sab Ago 29, 2015 8:04 pm por joram

» Justiça determina que PSafe retire alertas desleais
Qua Ago 19, 2015 6:58 am por joram

» Google vai fazer buscas offline internas no desktop do seu PC
Ter Ago 18, 2015 8:19 am por joram

» Baidu lança buscador no Brasil!
Seg Ago 17, 2015 12:25 pm por joram

» Kaspersky é acusada de inventar vírus!
Sex Ago 14, 2015 3:32 pm por joram

Dezembro 2016

SegTerQuaQuiSexSabDom
   1234
567891011
12131415161718
19202122232425
262728293031 

Calendário Calendário

Parceiros

Fórum grátis

Os membros mais marcados


    Maquina travando muito, lento, log para analise

    Compartilhe

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 3:19 pm

    Log para analise [Você precisa estar registrado e conectado para ver este link.]


     Esse pc estava quase um mês sem antivírus, rodei algumas ferramentas, conforme mostra abaixo:



    Malwarebytes Anti-Malware 1.75.0.1300
    [Você precisa estar registrado e conectado para ver este link.]

    Versão da Base de Dados:  v2013.07.09.06

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 8.0.6001.18702
    Administrador :: JORGE [administrador]

    09/07/2013 15:28:31
    mbam-log-2013-07-09 (15-28-31).txt

    Tipo de Verificação:  Verificação Completa  (C:\|)
    Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos  | Heurística/Extra | Heurística/Shuriken | PUP | PUM
    Opções de verificação desativadas: P2P
    Objetos escaneados:  290666
    Tempo decorrido: 32 minuto(s), 15 segundo(s)

    Processos de Memória Detectados: 0
    (Não foram detectados ítens maliciosos)

    Módulos de Memória Detectados: 0
    (Não foram detectados ítens maliciosos)

    Chaves de Registro Detectadas: 4
    HKCR\CLSID\{2F684A91-5019-D641-2C39-1D87E1178791} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F684A91-5019-D641-2C39-1D87E1178791} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    HKCR\CLSID\{C6E69486-E769-3DD3-B479-E3F0521297DC} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C6E69486-E769-3DD3-B479-E3F0521297DC} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.

    Valores de Registro Detectadas: 0
    (Não foram detectados ítens maliciosos)

    Itens de Dados no Registro Detectadas: 0
    (Não foram detectados ítens maliciosos)

    Pastas Detectadas: 0
    (Não foram detectados ítens maliciosos)

    Arquivos Detectados: 3
    C:\Documents and Settings\All Users\Dados de aplicativos\Search--NewwTab\51648897b4b0a.dll (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Documents and Settings\All Users\Dados de aplicativos\Browse2saavee\516488262105c.dll (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Documents and Settings\All Users\Dados de aplicativos\Browse2save\51647fd81ef3c.dll (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.

    (fim)


    # AdwCleaner v2.304 - Relatório criado em 09/07/2013 às 16:05:45
    # Atualizado em 03/07/2013 por Xplode
    # Sistema Operacional : Microsoft Windows XP Service Pack 3 (32 bits)
    # Usuário : Administrador - JORGE
    # Modo de Boot : Normal
    # Executado de : C:\Documents and Settings\Administrador\Meus documentos\Downloads\adwcleaner.exe
    # Opção [Remover]


    ***** [Serviços] *****

    Encerrado & Removido : SProtection

    ***** [Arquivos/Pastas] *****

    Arquivo Removido : C:\Arquivos de programas\Mozilla Firefox\.autoreg
    Arquivo Removido : C:\Arquivos de programas\Mozilla Firefox\defaults\pref\all-iminent.js
    Arquivo Removido : C:\Arquivos de programas\Mozilla Firefox\searchplugins\StartWeb.xml
    Arquivo Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\searchplugins\WebSearch.xml
    Pasta Removido : C:\Arquivos de programas\Arquivos comuns\Umbrella
    Pasta Removido : C:\Arquivos de programas\Iminent
    Pasta Removido : C:\Arquivos de programas\IMinent toolbar
    Pasta Removido : C:\Arquivos de programas\WebSearch
    Pasta Removido : C:\Documents and Settings\Administrador\Dados de aplicativos\Iminent
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Browse2saavee
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Browse2save
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Iminent
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\InstallMate
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Search--NewwTab
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\SoftSafe
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Iminent
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\kx_yiag2sj@u-wbuio.org
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\taz2-j@mokvzopjks-.co.uk
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\wkgr@uauy.co.uk
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Toolbar4
    Removido Durante o reboot : C:\Documents and Settings\All Users\Dados de aplicativos\BetterSoft

    ***** [Registro] *****

    Chave Removida : HKCU\Software\Iminent
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
    Chave Removida : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
    Chave Removida : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandle.1
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler.1
    Chave Removida : HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
    Chave Removida : HKLM\Software\Classes\Installer\Features\ACFD5B980E184AE4A8A0F404781ADD00
    Chave Removida : HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
    Chave Removida : HKLM\Software\Classes\Installer\Products\ACFD5B980E184AE4A8A0F404781ADD00
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
    Chave Removida : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
    Chave Removida : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbTask
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar.1
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620.3
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620.1
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
    Chave Removida : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
    Chave Removida : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
    Chave Removida : HKLM\Software\Iminent
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0B4750D705E2564409328D661F3A08E1
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26E983F1377593143A37E3BA1C65CB74
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3C036A97566BFD147A3318BA9E8EA65E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CC84F27D09408149894EC0F9A7C017F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BDFB2601A205D344828E68FC902CAE9
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5AF25BBA9EECCDB41923C3FE08497C67
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D010CDB0C7815A48A7F780C5F8AACA7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AFEEBDA8013CAA74C8052DC06F9F22D8
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CC063FFF6402E614191D191F0DE5C5B4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F18FD125C322BC84286AD21D8B685F2F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1C8F66181D6DDD488BB6F772F71324A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F71371A90E93D605C8B0A71F163F625C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\ACFD5B980E184AE4A8A0F404781ADD00
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{89B5DFCA-81E0-4EA4-8A0A-4F4087A1DD00}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OptimizerPro
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
    Chave Removida : HKLM\Software\SP Global
    Chave Removida : HKLM\Software\SProtector
    Chave Removida : HKLM\Software\Umbrella
    Dados Removida : HKLM\..\Windows [AppInit_DLLs] = c:\arquiv~1\browse~1\sprote~1.dll
    Dados Removida : HKLM\..\Windows [AppInit_DLLs] = c:\arquiv~1\websea~1\sprote~1.dll
    Valor Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
    Valor Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
    Valor Removida : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [webbooster@iminent.com]
    Valor Removida : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Arquivos de programas\Iminent\Iminent.exe]
    Valor Removida : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Arquivos de programas\Iminent\Iminent.Messengers.exe]

    ***** [Navegadores] *****

    -\\ Internet Explorer v8.0.6001.18702

    Substituído : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = [Você precisa estar registrado e conectado para ver este link.] --> [Você precisa estar registrado e conectado para ver este link.]

    -\\ Mozilla Firefox v3.6.28 (pt-BR)

    Arquivo : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\prefs.js

    Removida : user_pref("aol_toolbar.default.homepage.check", false);
    Removida : user_pref("aol_toolbar.default.search.check", false);
    Removida : user_pref("browser.search.defaultenginename", "WebSearch");
    Removida : user_pref("browser.search.defaultenginename,S", "WebSearch");
    Removida : user_pref("browser.search.defaulturl", "hxxp://websearch.pu-results.info/?pid=708&r=2013/04/09&hid=4[...]
    Removida : user_pref("browser.search.order.1", "WebSearch");
    Removida : user_pref("browser.search.order.1,S", "WebSearch");
    Removida : user_pref("browser.search.selectedEngine,S", "WebSearch");
    Removida : user_pref("extensions.51647fd81ee53.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
    Removida : user_pref("extensions.5164882620f91.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
    Removida : user_pref("extensions.BabylonToolbar.prtkDS", 0);
    Removida : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
    Removida : user_pref("keyword.URL", "hxxp://websearch.pu-results.info/?pid=708&r=2013/04/09&hid=4277336183&lg=E[...]
    Removida : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
    Removida : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
    Removida : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
    Removida : user_pref("sweetim.toolbar.previous.keyword.URL", "");
    Removida : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
    Removida : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
    Removida : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
    Removida : user_pref("sweetim.toolbar.searchguard.enable", "");

    Arquivo : C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default\prefs.js

    [OK] Arquivo está limpo.

    -\\ Google Chrome v28.0.1500.63

    Arquivo : C:\Documents and Settings\Jorge Lins\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Preferences

    [OK] Arquivo está limpo.

    Arquivo : C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Preferences

    [OK] Arquivo está limpo.

    *************************

    AdwCleaner[S1].txt - [41150 octets] - [09/07/2013 16:05:45]

    ########## EOF - C:\AdwCleaner[S1].txt - [41211 octets] ##########


    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 5.0.2 (07.09.2013:1)
    OS: Microsoft Windows XP x86
    Ran by Administrador on 09/07/2013 at 16:09:15,29
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services

    Successfully stopped: [Service] readingfanatic_6xservice 
    Successfully deleted: [Service] readingfanatic_6xservice 



    ~~~ Registry Values

    Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\readingfanatic search scope monitor
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



    ~~~ Registry Keys

    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{fe8a5a30-7831-4eb2-a9e7-8402c384c841}



    ~~~ Files



    ~~~ Folders

    Successfully deleted: [Folder] "C:\Arquivos de programas\readingfanatic_6x"





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 09/07/2013 at 16:12:21,68
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 3:43 pm

     Continuação:

    ComboFix 13-07-09.01 - Administrador 09/07/2013  16:37:23.1.4 - x86
    Microsoft Windows XP Professional  5.1.2600.3.1252.55.1046.18.3325.2739 [GMT -3:00]
    Executando de: c:\documents and settings\Administrador\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    .
    .
    (((((((((((((((((((((((((((((((((((((   Outras Exclusões   )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\Jorge Lins\MSJCE.dll
    c:\windows\system\chron32.dll
    c:\windows\system\libeay32.dll
    c:\windows\system\ssleay32.dll
    .
    .
    ((((((((((((((((   Arquivos/Ficheiros criados de 2013-06-09 to 2013-07-09  ))))))))))))))))))))))))))))
    .
    .
    2013-07-09 19:15 . 2013-07-09 19:15 512 ----a-w- C:\PhysicalDisk0_MBR.bin
    2013-07-09 19:14 . 2013-07-09 19:15 -------- d-----w- C:\ZHP
    2013-07-09 19:14 . 2013-07-09 19:15 -------- d-----w- c:\arquivos de programas\ZHPDiag
    2013-07-09 19:09 . 2013-07-09 19:09 -------- d-----w- c:\windows\ERUNT
    2013-07-09 17:44 . 2013-07-09 17:44 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\Malwarebytes
    2013-07-09 17:44 . 2013-07-09 17:44 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Malwarebytes
    2013-07-09 17:44 . 2013-07-09 17:44 -------- d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware
    2013-07-09 17:44 . 2013-04-04 17:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
    2013-07-09 17:36 . 2013-07-09 17:36 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
    2013-07-09 17:36 . 2013-05-09 08:59 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
    2013-07-09 17:36 . 2013-05-09 08:59 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2013-07-09 17:29 . 2013-07-09 17:29 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\AVAST Software
    2013-07-09 17:28 . 2013-07-09 17:28 -------- d-----w- c:\documents and settings\Administrador\Configurações locais\Dados de aplicativos\Sun
    2013-07-09 17:27 . 2013-07-09 17:27 -------- d-----w- c:\documents and settings\Administrador\Configurações locais\Dados de aplicativos\Google
    2013-07-09 17:27 . 2013-07-09 17:27 -------- d-----w- c:\arquivos de programas\Arquivos comuns\Java
    2013-07-09 17:27 . 2013-07-09 17:27 144896 ----a-w- c:\windows\system32\javacpl.cpl
    2013-07-09 17:27 . 2013-07-09 17:27 867240 ----a-w- c:\windows\system32\npDeployJava1.dll
    2013-07-09 17:27 . 2013-07-09 17:27 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-07-09 17:25 . 2013-07-09 17:25 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
    2013-07-09 17:24 . 2013-07-09 17:25 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\HpUpdate
    2013-07-03 15:04 . 2013-06-12 04:18 7068072 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Microsoft\Windows Defender\Definition Updates\{3DF91806-9BD0-403F-8FAE-0F6F4511F73E}\mpengine.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((   Relatório Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-07-09 17:36 . 2011-06-20 19:14 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2013-07-09 17:36 . 2011-06-20 18:21 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2013-07-09 17:27 . 2011-06-20 18:32 789416 -c--a-w- c:\windows\system32\deployJava1.dll
    2013-06-12 04:18 . 2011-06-20 19:06 7068072 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
    2013-05-09 08:59 . 2011-06-20 18:21 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2013-05-09 08:59 . 2011-06-20 18:21 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
    2013-05-09 08:59 . 2011-06-20 18:21 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2013-05-09 08:58 . 2011-06-20 19:14 41664 ----a-w- c:\windows\avastSS.scr
    2013-05-09 08:58 . 2011-06-20 18:21 229648 ----a-w- c:\windows\system32\aswBoot.exe
    2013-05-07 22:26 . 2006-03-02 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
    2013-05-07 22:26 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
    2013-05-07 22:26 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
    2013-05-07 21:53 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
    2013-05-03 05:38 . 2006-03-02 12:00 2153984 ----a-w- c:\windows\system32\ntoskrnl.exe
    2013-05-03 05:38 . 2004-08-04 00:40 2032640 ----a-w- c:\windows\system32\ntkrnlpa.exe
    2013-05-02 05:06 . 2011-06-20 19:06 238872 ------w- c:\windows\system32\MpSigStub.exe
    2013-04-12 14:01 . 2006-03-02 12:00 1876480 ----a-w- c:\windows\system32\win32k.sys
    .
    .
    ((((((((((((((((((((((((((   Pontos de Carregamento do Registro   )))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* entradas vazias e legítimas por padrão não são apresentadas. 
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2013-05-09 08:58 121968 ----a-w- c:\arquivos de programas\Alwil Software\Avast5\ashShell.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="c:\arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" [2013-03-12 253816]
    "avast"="c:\arquivos de programas\Alwil Software\Avast5\avastUI.exe" [2013-05-09 4858968]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
    @="Service"
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^Administrador^Menu Iniciar^Programas^Inicializar^Servieca.vbs]
    path=c:\documents and settings\Administrador\Menu Iniciar\Programas\Inicializar\Servieca.vbs
    backup=c:\windows\pss\Servieca.vbsStartup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^HP Digital Imaging Monitor.lnk]
    path=c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\HP Digital Imaging Monitor.lnk
    backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Inicialização rápida do HP Image Zone.lnk]
    path=c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\Inicialização rápida do HP Image Zone.lnk
    backup=c:\windows\pss\Inicialização rápida do HP Image Zone.lnkCommon Startup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    2007-05-11 06:06 40048 ----a-w- c:\arquivos de programas\Adobe\Reader 8.0\Reader\reader_sl.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
    2008-01-16 01:10 69632 ------r- c:\windows\Alcmtr.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CertificateRegistration]
    2010-07-20 16:02 151552 ----a-w- c:\windows\system32\aetcrss1.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    2008-04-13 22:20 15360 ----a-w- c:\windows\system32\ctfmon.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
    2004-05-12 18:18 241664 ----a-w- c:\arquivos de programas\HP\hpcoretech\hpcmpmgr.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
    2009-11-18 19:13 54576 ----a-w- c:\arquivos de programas\HP\HP Software Update\hpwuschd2.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
    2011-01-07 23:11 1797488 ----a-w- c:\arquivos de programas\Microsoft IntelliPoint\ipoint.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\itype]
    2011-01-07 23:18 1778552 ----a-w- c:\arquivos de programas\Microsoft IntelliType Pro\itype.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    2008-10-07 05:33 13574144 ----a-w- c:\windows\system32\nvcpl.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    2008-10-07 05:33 86016 ----a-w- c:\windows\system32\nvmctray.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    2008-10-07 05:33 1630208 ----a-w- c:\windows\system32\nwiz.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
    2006-07-30 14:00 98304 ----a-r- c:\arquivos de programas\Hewlett-Packard\OrderReminder\OrderReminder.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
    2008-01-16 01:10 16384512 ------r- c:\windows\RTHDCPL.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
    2006-11-03 22:20 866584 ----a-w- c:\arquivos de programas\Windows Defender\MSASCui.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center]
    "AntiVirusOverride"=dword:00000001
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hposid01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqusgm.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqusgh.exe"=
    "c:\\Arquivos de programas\\HP\\HP Software Update\\hpwucli.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"=
    .
    R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [09/07/2013 14:36 49376]
    R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [09/07/2013 14:36 175176]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [20/06/2011 16:14 770344]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20/06/2011 15:21 369584]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20/06/2011 15:21 29816]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [09/07/2013 14:36 66336]
    R2 OrolixDeviceMonitor;Orolix Device Monitor;c:\arquivos de programas\TIM Communicator\module\devicemon.exe [20/04/2010 08:05 27040]
    R2 WinDefend;Windows Defender;c:\arquivos de programas\Windows Defender\MsMpEng.exe [03/11/2006 19:19 13592]
    R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [22/05/2012 07:10 44416]
    S3 cxbu0wdm;OMNIKEY 3x21;c:\windows\system32\drivers\cxbu0wdm.sys [25/01/2010 14:56 115712]
    S3 GemCCID;GemCCID;c:\windows\system32\drivers\GemCCID.sys [10/08/2009 12:07 89600]
    S3 jrdusbser;Olicard Modem Interface Device for Legacy Serial Communication;c:\windows\system32\drivers\jrdusbser.sys [17/09/2010 12:44 105344]
    S3 Olicard155net;Olicard155 USB-NDIS miniport;c:\windows\system32\drivers\Olicard155Usbnet.sys [17/09/2010 12:44 117760]
    .
    --- =Outros Serviços/Drivers Na Memória ---
    .
    *NewlyCreated* - WS2IFSL
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    HPZ12 REG_MULTI_SZ   Pml Driver HPZ12 Net Driver HPZ12
    HPService REG_MULTI_SZ   HPSLPSVC
    hpdevmgmt REG_MULTI_SZ   hpqcxs08 hpqddsvc
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\aetsprov]
    2010-08-01 01:55 81920 ----a-w- c:\windows\system32\aetsprov.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
    2013-06-28 14:20 1173456 ----a-w- c:\arquivos de programas\Google\Chrome\Application\28.0.1500.63\Installer\chrmstp.exe
    .
    Conteúdo da pasta 'Tarefas Agendadas'
    .
    2013-07-09 c:\windows\Tasks\avast! Emergency Update.job
    - c:\arquivos de programas\Alwil Software\Avast5\AvastEmUpdate.exe [2013-07-09 08:58]
    .
    2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2013-05-02 20:14]
    .
    2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2013-05-02 20:14]
    .
    2012-05-22 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
    - c:\arquivos de programas\Microsoft IntelliPoint\ipoint.exe [2011-01-07 23:11]
    .
    2012-05-22 c:\windows\Tasks\Microsoft_Hardware_Launch_IType_exe.job
    - c:\arquivos de programas\Microsoft IntelliType Pro\itype.exe [2011-01-07 23:18]
    .
    2013-07-09 c:\windows\Tasks\MP Scheduled Scan.job
    - c:\arquivos de programas\Windows Defender\MpCmdRun.exe [2006-11-03 22:20]
    .
    2013-07-09 c:\windows\Tasks\User_Feed_Synchronization-{0049F7F1-AF62-497D-95A5-6D40B2643C50}.job
    - c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]
    .
    2013-07-09 c:\windows\Tasks\User_Feed_Synchronization-{065C6AC6-A006-4C10-B530-4DC82657C972}.job
    - c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]
    .
    .
    ------- Scan Suplementar -------
    .
    uStart Page = [Você precisa estar registrado e conectado para ver este link.]
    mStart Page = [Você precisa estar registrado e conectado para ver este link.]
    TCP: DhcpNameServer = 10.4.65.16
    FF - ProfilePath - c:\documents and settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default\
    .
    - - - - ORFÃOS REMOVIDOS - - - -
    .
    MSConfigStartUp-ReadingFanatic Search Scope Monitor - c:\arquiv~1\READIN~2\bar\1.bin\6xsrchmn.exe
    MSConfigStartUp-ReadingFanatic_6x Browser Plugin Loader - c:\arquiv~1\READIN~2\bar\1.bin\6xbrmon.exe
    MSConfigStartUp-Servieca - c:\docume~1\ADMINI~1\CONFIG~1\Temp\Servieca.vbs
    AddRemove-SP_bbe535ed - c:\arquivos de programas\WebSearch\uninstall.exe
    AddRemove-{8A652C39-580B-37BA-870A-6FD9D09BBC1E} - c:\docume~1\ALLUSE~1\DADOSD~1\INSTAL~1\{0C16C~1\Setup.exe
    AddRemove-{EB44C884-0D01-D1E3-5E6E-2BC640317324} - c:\docume~1\ALLUSE~1\DADOSD~1\INSTAL~1\{D4C39~1\Setup.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [Você precisa estar registrado e conectado para ver este link.]
    Rootkit scan 2013-07-09 16:41
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    Procurando processos ocultos ... 
    .
    Procurando entradas auto inicializáveis ocultas ... 
    .
    Procurando ficheiros/arquivos ocultos ... 
    .
    Varredura completada com sucesso
    arquivos/ficheiros ocultos: 0
    .
    **************************************************************************
    .
    --------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
    .
    [HKEY_USERS\S-1-5-21-1004336348-838170752-725345543-500\Software\Microsoft\Internet Explorer\User Preferences]
    @Denied: (2) (Administrator)
    "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
       d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,51,ad,d9,7f,01,51,3d,48,90,29,af,\
    "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
       d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,51,ad,d9,7f,01,51,3d,48,90,29,af,\
    .
    Tempo para conclusão: 2013-07-09  16:42:17
    ComboFix-quarantined-files.txt  2013-07-09 19:42
    .
    Pré-execução: 16 pasta(s) 288.906.711.040 bytes disponíveis
    Pós execução: 19 pasta(s) 289.102.516.224 bytes disponíveis
    .
    - - End Of File - - B8516B7C4F454D6DB2A2216A3C1F7B4D
    239FC8B1C26D5286165A956F5A98D8D7

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 608
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Ter Jul 09, 2013 3:55 pm

    Boa Tarde! Edvan

    |- Baixe: < [Você precisa estar registrado e conectado para ver este link.] > ( ... by Smeenk )

    |- Ou aqui! < [Você precisa estar registrado e conectado para ver este link.] >

    |- Salve-o no desktop!
    |- Desabilite seu antivírus!
    |- Para Windows 7,execute zoek.exe como administrador.

    startupall; 
    autoclean; 
    filesrcm; 
    emptyalltemp;
     

    |- Copie e cole estas informações,em vermelho,no campo da ferramenta.
    |- Clique "Run Script". <- Aguarde!

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Aceite e/ou confirme o reboot!

    zoek.hta failed by unknown error.
    Restart computer, and try again.
    |- Ps: Ao obter algum erro,reinicie o PC e execute,novamente,a ferramenta.
    |- Poste o relatório,que estará em C:\zoek-results.txt << 

    -/-

    |- Feche programas/pastas que estejam abertas.
    |- Feche,também,o navegador!
    |- Para Windows Vista,desabilite a [Você precisa estar registrado e conectado para ver este link.].

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Dê um duplo clique em ZHPFix.
    |- Selecione e copie estas informações,que estão em vermelho,para o "Bloco de Notas".
    #####

    O2 - BHO: (no name) - {2d948797-8fe3-4508-9b6f-4bf349a9ea34} Orphean Key
    O2 - BHO: (no name) - {f149b372-5830-4d88-b8f6-2853d12c1af5} Orphean Key
    O2 - BHO: (no name) - {0347C33E-8762-4905-BF09-768834316C61} Orphean Key     
    O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} Orphean Key
    O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Orphean Key     
    O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} Orphean Key     
    O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} Orphean Key     
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} Orphean Key
    O2 - BHO: (no name) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} Orphean Key     
    O3 - Toolbar: (no name) - [HKLM]{b36151d1-7770-4480-87e4-f89fb54e173d} . (...) --  (.not file.) 
    O3 - Toolbar: (no name) - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (...) --  (.not file.)     
    O53 - SMSR:HKLM\...\startupreg\ReadingFanatic Search Scope Monitor  [Key] . (...) -- C:\ARQUIV~1\READIN~2\bar\1.bin\6xsrchmn.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\ReadingFanatic_6x Browser Plugin Loader  [Key] . (...) -- C:\ARQUIV~1\READIN~2\bar\1.bin\6xbrmon.exe (.not file.)

    [HKCU\Software\ReadingFanatic_6x] 
    [HKLM\Software\ReadingFanatic_6x] 

    proxyfix
    emptyflash
    firewallraz
    sysrestore

    #####
    |- Estando com o Bloco de Notas aberto,acione os atalhos: "Ctrl+A" -> "Ctrl+C"
    |- Minimize o Bloco de Notas.

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Clique no menu,"Paste ClipBoard".
    |- Clique "GO" -> Oui.

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Ps: Temos,àcima,sequência de imagens para maior exclarecimento.
    |- Poste o relatório: C:\ZHP\ZHPFix[R1].txt

    A+

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 4:11 pm

    Zoek.exe Version 4.0.0.3 Updated 05-July-2013
    Tool run by Administrador on 09/07/2013 at 16:59:34,46.
    Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
    Running in: Normal Mode Internet Access Detected

    ==== System Restore Info ======================

    Failed to create System Restore Point

    ==== Deleting CLSID Registry Keys ======================


    ==== Deleting CLSID Registry Values ======================


    ==== Deleting Services ======================


    ==== FireFox Fix ======================

    ProfilePath: C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default

    user.js not found
    ---- Lines iminent removed from prefs.js ----


    ---- Lines iminent modified from prefs.js ----


    ---- Lines imbooster removed from prefs.js ----


    ---- Lines imbooster modified from prefs.js ----


    ---- FireFox user.js and prefs.js backups ---- 

    prefs_072013_1702_.backup

    ProfilePath: C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default

    user.js not found
    ---- Lines iminent removed from prefs.js ----

    user_pref("browser.startup.homepage", "http://start.iminent.com/?appId=EA606341-68CB-4361-AC52-F33A918C9D3A");

    ---- Lines iminent modified from prefs.js ----

    user_pref("extensions.enabledItems", "jqs@sun.com:1.0,{20a82645-c095-46ed-80e3-08825760534b}:1.1,kx_yiag2sj@u-wbuio.org:3.8,taz2-j@mokvzopjks-.co.uk:1.0,wkgr@uauy.co.uk:3.8,{C9B68337-E93A-44EA-94DC-CB300EC06444}:5.30.4,webbooster@iminent.com:6.13.4.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28");

    ---- Lines imbooster removed from prefs.js ----

    user_pref("id_imbooster4web_v6.cache.tbs_include_xml_006938", "13/11/28/5/113");
    user_pref("id_imbooster4web_v6.firstlaunch", "0");
    user_pref("id_imbooster4web_v6.guid", "%7BB64AA930-3E2C-48E1-22B1-1914A859574B%7D");
    user_pref("id_imbooster4web_v6.stored_historysearch", "////ufrnet");
    user_pref("id_imbooster4web_v6.userId", "%12");
    user_pref("id_imbooster4web_v6.Var1", "0");
    user_pref("id_imbooster4web_v6.Var10", "0");
    user_pref("id_imbooster4web_v6.Var2", "0");
    user_pref("id_imbooster4web_v6.Var3", "0");
    user_pref("id_imbooster4web_v6.Var4", "0");
    user_pref("id_imbooster4web_v6.Var5", "0");
    user_pref("id_imbooster4web_v6.Var6", "0");
    user_pref("id_imbooster4web_v6.Var7", "0");
    user_pref("id_imbooster4web_v6.Var8", "0");
    user_pref("id_imbooster4web_v6.Var9", "0");
    user_pref("id_imbooster4web_v6_installed_version", "1.0.1018.0");

    ---- Lines imbooster modified from prefs.js ----


    ---- FireFox user.js and prefs.js backups ---- 

    prefs_072013_1702_.backup

    ==== Deleting Files \ Folders ======================

    "C:\Arquivos de programas\Iminent\webbooster@iminent.com" not found 
    "C:\Documents and Settings\Administrador\Dados de aplicativos\desktop.ini" deleted
    "C:\WINDOWS\002702_.tmp" deleted
    "C:\WINDOWS\SET25.tmp" deleted
    "C:\WINDOWS\SET3.tmp" deleted
    "C:\WINDOWS\SET4.tmp" deleted
    "C:\WINDOWS\SET8.tmp" deleted
    "C:\Arquivos de programas\BrowseToSave" deleted

    ==== Files Recently Created / Modified ======================

    ====== C:\WINDOWS ====
    2013-07-09 19:22:12 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\WINDOWS\PEV.exe
    2013-07-09 19:22:12 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\WINDOWS\grep.exe
    2013-07-09 19:22:12 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\WINDOWS\zip.exe
    2013-07-09 19:22:12 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\WINDOWS\SWSC.exe
    2013-07-09 19:22:12 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\WINDOWS\MBR.exe
    ====== C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp ====
    ====== C:\WINDOWS\system32 =====
    2013-07-09 17:27:41 1D9B3568CFDB55316985A053D6D96030 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
    ====== C:\WINDOWS\system32\drivers =====
    2013-07-09 17:44:21 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
    2013-07-09 17:36:16 FAF091AA45A6A6CF3CF94FE065950956 175 ----a-w- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
    2013-07-09 17:36:16 3FFBEE694566CADB0A64D8A1ACD7DBCE 175 ----a-w- C:\WINDOWS\System32\drivers\aswSP.sys.sum
    2013-07-09 17:36:16 22EA82FFE8CA4965C1994F24C35DC202 175 ----a-w- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
    2013-07-09 17:36:09 8CFAA2B965773A653F48F1207A9CB9C4 175176 ----a-w- C:\WINDOWS\System32\drivers\aswVmm.sys
    2013-07-09 17:36:08 B680134BA1813B78B47FDD1DFF223CA5 49376 ----a-w- C:\WINDOWS\System32\drivers\aswRvrt.sys
    2013-07-09 17:36:08 1F7094D4268D46F718C51286DC189791 66336 ----a-w- C:\WINDOWS\System32\drivers\aswMonFlt.sys
    ====== C:\WINDOWS\Tasks ======
    2013-07-09 17:29:24 04B8B287E3275647405F0FC147342369 382 ---ha-w- C:\WINDOWS\Tasks\avast! Emergency Update.job
    ====== C:\WINDOWS\Temp ======
    ======= C:\Arquivos de programas =====
    2013-07-09 19:47:59 -------- d-----w- C:\Arquivos de programas\TeamViewer
    2013-07-09 19:14:01 -------- d-----w- C:\Arquivos de programas\ZHPDiag
    ======= C: =====
    2013-07-09 19:23:33 FA579938B0733B87066546AFE951082C 211 ----a-w- C:\Boot.bak
    2013-07-09 19:23:31 C51A881398F29071239741AE16D07C1C 261856 --sha-r- C:\cmldr
    2013-07-09 19:15:04 8DD391A79B3EF494A18C7DF96EFFFAC6 512 ----a-w- C:\PhysicalDisk0_MBR.bin
    2013-07-09 19:05:45 53234F0B6753B36691698418F84BC889 41281 ----a-w- C:\AdwCleaner[S1].txt
    ====== C:\Documents and Settings\Administrador\Dados de aplicativos ======
    2013-07-09 19:48:04 -------- d-----w- C:\Documents and Settings\All Users\Menu Iniciar\Programas\TeamViewer 8
    2013-07-09 19:46:16 -------- d-----w- C:\Documents and Settings\Administrador\Dados de aplicativos\HPAppData
    2013-07-09 17:29:25 -------- d-----w- C:\Documents and Settings\All Users\Menu Iniciar\Programas\avast! Free Antivirus
    2013-07-09 17:28:12 -------- d-----w- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Sun
    2013-07-09 17:27:53 -------- d-----w- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google
    2013-07-09 17:24:58 -------- d-----w- C:\Documents and Settings\Administrador\Dados de aplicativos\HpUpdate
    ====== C:\Documents and Settings\Administrador ======
    2013-07-09 19:14:01 AE326A97F634217CAC29739D376DF934 344187 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHP_uninstall.exe
    2013-07-09 17:43:14 E897110EE5E67FABB83B154DF9C68D6A 794216 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHPDiag_silent.exe
    2013-07-09 17:25:26 -------- d-sh--w- C:\Documents and Settings\LocalService\IETldCache
    2013-07-09 17:25:20 C49D9245586816869F2D05037544D131 102315992 ----a-w- C:\Documents and Settings\Administrador\Desktop\avast_free_antivirus_setup.exe

    ====== C: exe-files ==
    2013-07-09 19:48:00 A34FC9FDEA5D54BC8AB70A1B50223F82 195936 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\tv_w32.exe
    2013-07-09 19:48:00 A2B4F5412C204B823C2D20FDA2CBA693 232800 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\tv_x64.exe
    2013-07-09 19:48:00 86CEB79CEF30BB40CB4819B3BD6AC4FA 506464 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\uninstall.exe
    2013-07-09 19:48:00 617CC6CCBB12234AF5C357DCF656E4ED 4317536 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\TeamViewer_Desktop.exe
    2013-07-09 19:48:00 402794A75A899E296AB3EDEC4ECCB9A8 4153184 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\TeamViewer_Service.exe
    2013-07-09 19:47:59 A0E89D070F76E587837C3DDABF476E26 11596128 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\TeamViewer.exe
    2013-07-09 19:47:32 DC397FEDFAFBA0AE526199A032A68F89 5485128 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\TeamViewer_Setup_pt.exe
    2013-07-09 19:45:13 FE1200C71152EC5DABD6D344BE3E107C 69632 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\MoveEx.exe
    2013-07-09 19:45:06 92BD80F82FE8A28385B7D9D3F215E8B3 73728 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\pv.exe
    2013-07-09 19:45:06 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\unzip.exe
    2013-07-09 19:45:06 6D2C398E03397C9D089EDC0F00AB3FCB 61440 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\download.exe
    2013-07-09 19:45:06 609F46A341FEDEAEEC18ABF9FB7C9647 49152 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\md5.exe
    2013-07-09 19:44:53 10E074589D8F16165386604E409B0931 178597 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\bankerfix.exe
    2013-07-09 19:23:31 F0C08E06A2A3EF0618E3990DE36BAB21 616960 ----a-w- C:\cmdcons\autochk.exe
    2013-07-09 19:23:31 A317FC1D2F892651DEC970B9CCCD6D92 608768 ----a-w- C:\cmdcons\autofmt.exe
    2013-07-09 19:22:12 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\WINDOWS\PEV.exe
    2013-07-09 19:22:12 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\WINDOWS\grep.exe
    2013-07-09 19:22:12 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\WINDOWS\zip.exe
    2013-07-09 19:22:12 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\WINDOWS\SWSC.exe
    2013-07-09 19:22:12 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\WINDOWS\MBR.exe
    2013-07-09 19:14:01 F3A37421DBD1AAA36558C97572C91C5A 147456 ----a-w- C:\Arquivos de programas\ZHPDiag\catchme.exe
    2013-07-09 19:14:01 E100F7F1AA506F91A3C64366EE290E33 555944 ----a-w- C:\Arquivos de programas\ZHPDiag\setacl64.exe
    2013-07-09 19:14:01 CB2D120A4B72422A8141192831B1F500 80384 ----a-w- C:\Arquivos de programas\ZHPDiag\mbrcheck.exe
    2013-07-09 19:14:01 C3D16F308C98CB3BDC315D996D7D89AD 706512 ----a-w- C:\Arquivos de programas\ZHPDiag\unins000.exe
    2013-07-09 19:14:01 AE326A97F634217CAC29739D376DF934 344187 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHP_uninstall.exe
    2013-07-09 19:14:01 9DAA7218961710008D7385B01BD3F386 89088 ----a-w- C:\Arquivos de programas\ZHPDiag\mbr.exe
    2013-07-09 19:14:01 8747E33E978E91C7888364E95F53D977 370235 ----a-w- C:\Arquivos de programas\ZHPDiag\ZHPDiags.exe
    2013-07-09 19:14:01 79C7BC4A7642D908A1527A0EB90138C9 452008 ----a-w- C:\Arquivos de programas\ZHPDiag\setacl32.exe
    2013-07-09 19:14:01 74C3DFCC1C6BF8B0BD977EF6F4185208 2709504 ----a-w- C:\Arquivos de programas\ZHPDiag\ZHPFix.exe
    2013-07-09 19:14:01 6B8AF3A2A3D9059008B55C444461CA00 61952 ----a-w- C:\Arquivos de programas\ZHPDiag\Lads.exe
    2013-07-09 19:14:01 5DAF7081A4BB112FA3F1915819330A3E 61440 ----a-w- C:\Arquivos de programas\ZHPDiag\pv.exe
    2013-07-09 19:14:01 5BBF2A0351E336646022D09009560CEF 143360 ----a-w- C:\Arquivos de programas\ZHPDiag\FileInfos.exe
    2013-07-09 19:14:01 56873D899C0707AA017AA2D74EC190AE 3770368 ----a-w- C:\Arquivos de programas\ZHPDiag\ZHPDiag.exe
    2013-07-09 19:14:01 53CDBB093B0AEE9FD6CF1CBD25A95077 290304 ----a-w- C:\Arquivos de programas\ZHPDiag\subinacl.exe
    2013-07-09 19:14:01 417C1BE0BF4D7C505D60D2CEFCDF2347 231048 ----a-w- C:\Arquivos de programas\ZHPDiag\sigcheck.exe
    2013-07-09 17:44:04 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\mbam-setup-1.75.0.1300.exe
    2013-07-09 17:43:20 10EDAF50993F4FFF59DA5BF920CAB3B2 552389 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\JRT.exe
    2013-07-09 17:43:14 E897110EE5E67FABB83B154DF9C68D6A 794216 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHPDiag_silent.exe
    2013-07-09 17:41:33 1078C8BD8C62CF4DEE6FE1058C3D56A7 650027 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\adwcleaner.exe
    2013-07-09 17:25:20 C49D9245586816869F2D05037544D131 102315992 ----a-w- C:\Documents and Settings\Administrador\Desktop\avast_free_antivirus_setup.exe
    2013-07-08 11:36:36 7C0BC15FCA923493D4A0383C3F1D4FE8 5332840 ----a-w- C:\Documents and Settings\Administrador\Configurações locais\temp\TeamViewer\Version8\TeamViewer_.exe
    === C: other files ==
    2013-07-09 19:45:13 E346B33499EAE9FE9B76B442F1BA429F 924 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\postreboot.bat
    2013-07-09 19:45:13 CDFACFCDEA61725D3A0590C319777FA1 100 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\remocao\userinit.vbs
    2013-07-09 19:45:13 BBBEF792776C2ACA43AC540CA843EB65 12135 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\scan.vbs
    2013-07-09 19:45:13 BAB5D14097EB91F448D3AAC2C7F690B4 8248 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\BankerFix.vbs
    2013-07-09 19:45:13 A7070F6B8587878FA50CD6E244AEC2B3 2430 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\wmi.vbs
    2013-07-09 19:45:13 8D848A7958FE59030FBDCB3EF4BD0C58 10172 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\reg.vbs
    2013-07-09 19:45:13 7EE11B4AB0E6B60D4B72DB8C430C16D1 824 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\strings.vbs
    2013-07-09 19:45:13 7B974806E411F1393459D457EC60AB98 970 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\arquiva-relatorio.vbs
    2013-07-09 19:45:13 6E5DBE2E06F0979528BA1A36CF6D436A 58 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\remocao\driver.vbs
    2013-07-09 19:45:13 68D80AD37936BA7118E79ADD1C884BA2 1273 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\postreboot.vbs
    2013-07-09 19:45:13 5E000FAD430B0FF41A9CFA1D959F7362 97 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\remocao\shell.vbs
    2013-07-09 19:45:13 166D917F0906DD405A02650868089F33 5167 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\banker.bat
    2013-07-09 19:45:13 09A0AFC0F56EC44CA5B443094E7265FE 95 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\lang.vbs
    2013-07-09 19:45:06 88A3B5AD9D57D8A86016B5F869BE418F 6432 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\update.vbs
    2013-07-09 19:45:06 68FB04B526023E0F46EECFEF43BBE1F3 3771 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\Iniciar-BankerFix.vbs
    2013-07-09 17:44:21 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
    2013-07-09 17:36:09 8CFAA2B965773A653F48F1207A9CB9C4 175176 ----a-w- C:\WINDOWS\system32\drivers\aswVmm.sys
    2013-07-09 17:36:08 B680134BA1813B78B47FDD1DFF223CA5 49376 ----a-w- C:\WINDOWS\system32\drivers\aswRvrt.sys
    2013-07-09 17:36:08 1F7094D4268D46F718C51286DC189791 66336 ----a-w- C:\WINDOWS\system32\drivers\aswMonFlt.sys
    2013-07-03 14:33:56 1C547FD5C61D2B57329D4E4BC5630A91 700364 ----a-w- C:\Documents and Settings\Jorge Lins\Configurações locais\Temporary Internet Files\Content.IE5\2G0YS500\Atum%20gigante%20de%20470%20kg%20causa%20rebuli%E7o%20entre%20chefs%20japoneses%20em%20S%E3o%20Paulo[1].zip

    ==== Startup Registry Enabled ======================

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

    [HKEY_USERS\S-1-5-21-1004336348-838170752-725345543-500\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe"
    "avast"="C:\Arquivos de programas\Alwil Software\Avast5\avastUI.exe /nogui"
    "NvCplDaemon"="RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup"

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

    ==== Startup Registry Disabled ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"=""
    "hkey"="HKLM"
    "command"=""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Reader_sl"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Alcmtr]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ALCMTR"
    "hkey"="HKLM"
    "command"="ALCMTR.EXE"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CertificateRegistration]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="aetcrss1"
    "hkey"="HKLM"
    "command"="aetcrss1.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CTFMON.EXE]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ctfmon"
    "hkey"="HKCU"
    "command"="C:\\WINDOWS\\system32\\ctfmon.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Component Manager]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="hpcmpmgr"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\HP\\hpcoretech\\hpcmpmgr.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="HPWuSchd2"
    "hkey"="HKLM"
    "command"="C:\\Arquivos de programas\\HP\\HP Software Update\\HPWuSchd2.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IntelliPoint]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ipoint"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Microsoft IntelliPoint\\ipoint.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\itype]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="itype"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Microsoft IntelliType Pro\\itype.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="NvCpl"
    "hkey"="HKLM"
    "command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="NvMcTray"
    "hkey"="HKLM"
    "command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\nwiz]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="nwiz"
    "hkey"="HKLM"
    "command"="nwiz.exe /install"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OrderReminder]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="OrderReminder"
    "hkey"="HKLM"
    "command"="C:\\Arquivos de programas\\Hewlett-Packard\\OrderReminder\\OrderReminder.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDCPL]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="RTHDCPL"
    "hkey"="HKLM"
    "command"="RTHDCPL.EXE"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Defender]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="MSASCui"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Windows Defender\\MSASCui.exe\" -hide"


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^Administrador^Menu Iniciar^Programas^Inicializar^Servieca.vbs]
    "path"="C:\\Documents and Settings\\Administrador\\Menu Iniciar\\Programas\\Inicializar\\Servieca.vbs"
    "backup"="C:\\WINDOWS\\pss\\Servieca.vbsStartup"
    "command"="C:\\Documents and Settings\\Administrador\\Menu Iniciar\\Programas\\Inicializar\\Servieca.vbs"
    "item"="Servieca"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^HP Digital Imaging Monitor.lnk]
    "path"="C:\\Documents and Settings\\All Users\\Menu Iniciar\\Programas\\Inicializar\\HP Digital Imaging Monitor.lnk"
    "backup"="C:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup"
    "command"="C:\\ARQUIV~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
    "item"="HP Digital Imaging Monitor"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Inicialização rápida do HP Image Zone.lnk]
    "path"="C:\\Documents and Settings\\All Users\\Menu Iniciar\\Programas\\Inicializar\\Inicialização rápida do HP Image Zone.lnk"
    "backup"="C:\\WINDOWS\\pss\\Inicialização rápida do HP Image Zone.lnkCommon Startup"
    "command"="C:\\ARQUIV~1\\HP\\DIGITA~1\\bin\\hpqthb08.exe -s"
    "item"="Inicialização rápida do HP Image Zone"


    ==== Startup Folders ======================

    2013-07-02 12:36:35 14584 ---ha-w- C:\Documents and Settings\Jorge Lins\Menu Iniciar\Programas\Inicializar\Servieca.vbs

    ==== Task Scheduler Jobs ======================

    C:\WINDOWS\tasks\avast\Undetermined Task.exe []
    C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Arquivos de programas\Google\Update\GoogleUpdate.exe [02/05/2013 17:14]
    C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Arquivos de programas\Google\Update\GoogleUpdate.exe [02/05/2013 17:14]
    C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job --a------ C:\Arquivos de programas\Microsoft IntelliPoint\ipoint.exe [07/01/2011 20:11]
    C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IType_exe.job --a------ C:\Arquivos de programas\Microsoft IntelliType Pro\itype.exe [07/01/2011 20:18]
    C:\WINDOWS\tasks\MP Scheduled Scan.job --ah----- [Undetermined Task]
    C:\WINDOWS\tasks\User_Feed_Synchronization-{0049F7F1-AF62-497D-95A5-6D40B2643C50}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08/03/2009 04:31]
    C:\WINDOWS\tasks\User_Feed_Synchronization-{065C6AC6-A006-4C10-B530-4DC82657C972}.job --ah----- [Undetermined Task]

    ==== Firefox Extensions ======================

    ProfilePath: C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default
    - Undetermined - C:\Arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
    - Java Quick Starter - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ff
    - Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

    ProfilePath: C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default
    - Java Quick Starter - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ff
    - Undetermined - C:\Arquivos de programas\Iminent\webbooster@iminent.com
    - Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

    ==== Firefox Plugins ======================

    Profilepath: C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default
    CF4ABE599858E10EEB911E16FBCFD87D - C:\Arquivos de programas\Windows Media Player\npdrmv2.dll - Microsoft® DRM
    02A4A41FAC9BF96155B3E8068D1DF4B6 - C:\Arquivos de programas\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
    76E34EA1089E92709C5725407B565DA1 - C:\Arquivos de programas\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
    AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
    1040BD9BF3DDAB7CDA2346F8375480A2 - C:\Arquivos de programas\Java\jre6\bin\new_plugin\npjp2.dll - Java(TM) Platform SE 6 U26
    21A67095EDC11A528F5434D28BB0EF3C - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash
    5EB6F21D95E728C61BCFC89F899D6BB0 - C:\Arquivos de programas\Java\jre6\bin\new_plugin\npdeployJava1.dll - Java Deployment Toolkit 6.0.260.3
    3E167740C661271B960C47812FFF9639 - C:\Arquivos de programas\Mozilla Firefox\plugins\npnul32.dll - Mozilla Default Plug-in
    04AF8BC83A89D9B71F7E0BCAF9FDD768 - C:\Arquivos de programas\Adobe\Reader 8.0\Reader\browser\nppdf32.dll - Adobe Acrobat


    ==== Chrome Look ======================

    Docs - Administrador - Default\Extensions\aohghmighlieiainnegkcijnfilokake
    avast Online Security - Administrador - Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
    Docs - Jorge Lins - Default\Extensions\aohghmighlieiainnegkcijnfilokake

    ==== Set IE to Default ======================

    Old Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://globo.com/"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"

    New Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://globo.com/"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

    ==== All HKCU SearchScopes ======================

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
    "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
    {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
    {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

    ==== Empty IE Cache ======================

    C:\Documents and Settings\Jorge Lins\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
    C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Documents and Settings\Administrador\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
    C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

    ==== Empty FireFox Cache ======================

    C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default\Cache emptied successfully
    C:\Documents and Settings\Jorge Lins\Configurações locais\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\Cache emptied successfully

    ==== Empty Chrome Cache ======================

    C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache emptied successfully
    C:\Documents and Settings\Jorge Lins\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\WINDOWS\Temp successfully emptied
    C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\RECYCLER successfully emptied

    ==== Deleting Files / Folders ======================

    "C:\Documents and Settings\Administrador\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" deleted
    "C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" not deleted

    ==== EOF on 09/07/2013 at 17:08:36,25 ======================



    Rapport de ZHPFix 1.3.05 par Nicolas Coolman, Update du 09/10/2012
    Fichier d'export Registre : 
    Run by Administrador at 09/07/2013 17:10:39
    Windows XP Professional Service Pack 3 (Build 2600)
    Web site : [Você precisa estar registrado e conectado para ver este link.]



    ========== Registry Key ==========
    NOT FOUND Key: CLSID BHO: {2d948797-8fe3-4508-9b6f-4bf349a9ea34}
    NOT FOUND Key: CLSID BHO: {f149b372-5830-4d88-b8f6-2853d12c1af5}
    DELETED Key: CLSID BHO: {0347C33E-8762-4905-BF09-768834316C61}
    DELETED Key: CLSID BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
    DELETED Key: CLSID BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
    DELETED Key: CLSID BHO: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
    DELETED Key: CLSID BHO: {9030D464-4C02-4ABF-8ECC-5164760863C6}
    DELETED Key: CLSID BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9}
    DELETED Key: CLSID BHO: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}
    NOT FOUND Key:  StartupReg: ReadingFanatic Search Scope Monitor
    NOT FOUND Key:  StartupReg: ReadingFanatic_6x Browser Plugin Loader
    DELETED Key: HKCU\Software\ReadingFanatic_6x
    DELETED Key: HKLM\Software\ReadingFanatic_6x

    ========== Registry Value ==========
    NOT FOUND Toolbar: {b36151d1-7770-4480-87e4-f89fb54e173d}
    DELETED Toolbar: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
    ProxyFix : Proxy killed successfully
    DELETED ProxyServer Value
    DELETED ProxyEnable Value
    DELETED EnableHttp1_1 Value
    DELETED ProxyHttp1.1 Value
    DELETED ProxyOverride Value
    DELETED FirewallRaz (SP) : %windir%\system32\sessmgr.exe
    DELETED FirewallRaz (SP) : %windir%\Network Diagnostic\xpnetdiag.exe
    DELETED FirewallRaz (DP) : %windir%\system32\sessmgr.exe
    DELETED FirewallRaz (DP) : %windir%\Network Diagnostic\xpnetdiag.exe
    No Value in Firewall Exception Register Key (FirewallRaz)

    ========== Repertory ==========
    DELETED Flash Cookies:

    ========== File ==========
    NOT FOUND File: c:\arquiv~1\readin~2\bar\1.bin\6xsrchmn.exe
    NOT FOUND File: c:\arquiv~1\readin~2\bar\1.bin\6xbrmon.exe
    DELETED Flash Cookies:

    ========== Restoration ==========
    Restore System Point created succefully


    ========== Summary ==========
    13 : Registry Key
    13 : Registry Value
    1 : Repertory
    3 : File
    1 : Restoration


    End of clean in 00mn 05s

    ========== Report File ==========
    C:\ZHP\ZHPFix[R1].txt - 09/07/2013 17:10:39 [2236]

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 608
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Ter Jul 09, 2013 4:24 pm

    Boa Tarde! Edvan

    |- Abra,novamente,a ferramenta zoek,que será direcionada ao diagnóstico.

    Installed Programs
    HijackThis Log
    Silent Runners


    |- Clique "Options" e marque as opções que estão em verde.
    |- Clique "Run Script". <- Aguarde!

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Aceite e/ou confirme o reboot!

    zoek.hta failed by unknown error.
    Restart computer, and try again.
    |- Ps: Ao obter algum erro,reinicie o PC e execute,novamente,a ferramenta.
    |- Poste o relatório,que estará em C:\zoek-results.txt << 

    A+

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 4:33 pm

    Só apareceu isso aqui amigo, não deu o alerta para reboot!.


    Zoek.exe Version 4.0.0.3 Updated 05-July-2013
    Tool run by Administrador on 09/07/2013 at 17:31:24,82.
    Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
    Running in: Normal Mode Internet Access Detected

    ==== EOF on 09/07/2013 at 17:31:45,40 ======================

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 9:44 pm

    OBS: Tentei editar mais nao conseguir, é o seguinte:

    Isso tudo começou após plugar pendrives infectados nessa maquina, inclusive os 3 pendrives estão com virus, pois deixa todas as pastas como atalhos, tudo que vc cria dentro do pendriver fica como atalho. o que vc aconselha amigo?

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 608
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Qua Jul 10, 2013 8:53 am

    Bom Dia! Edvan

    |- Ok! Vamos tentar limpar seus pendrives.

    -/-

    |- Baixe: < [Você precisa estar registrado e conectado para ver este link.] > ( ...de C_XX & El Desaparecido )

    [Você precisa estar registrado e conectado para ver este link.]

    |- Salve-o no desktop!
    |- Siga com sua instalação.
    |- Desmarque: "Desativar Autorun/AutoPlay automaticamente" -> OK
    |- Aperte a tecla "Shift" e conecte seu pendrive ao computador!
    |- Execute o arquivo UsbFix.exe,com um duplo clique.

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Escolha a opção "Suppression".
    |- Aguarde a conclusão e poste o relatório. ( C:\UsbFix.txt )

     < [Você precisa estar registrado e conectado para ver este link.] >

    |- Para limpar o pendrive,siga estas orientações que estão em mgasparin.com.
    |- Desabilite a autoinicialização no seu XP,ou aperte a tecla Shift ao inserir o pendrive e execute os comandos ali propostos.

    -/-

    |- Baixe: < [Você precisa estar registrado e conectado para ver este link.] >

    |- Salve-o em sua unidade pendrive e execute-o com duplo clique.
    |- À seguir,poste novo log da ferramenta UsbFix,na opção Recherche.

    A+

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Qua Jul 10, 2013 9:02 am

    Amigo, como os pendrives nao estão comigo, prefiro executar esses procedimentos na minha maquina quando estiver de posse dos pendrives.

    Mais algum procedimento nesse pc?

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 608
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Qua Jul 10, 2013 9:34 am

    Edvan escreveu:Amigo, como os pendrives nao estão comigo, prefiro executar esses procedimentos na minha maquina quando estiver de posse dos pendrives.

    Mais algum procedimento nesse pc?
     Ok! Edvan

    |- Baixe: |[Você precisa estar registrado e conectado para ver este link.]| ( ... de Xplode )

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Estando na página,clique na seta verde para o download
    |- Salve-a em um local conveniente! ( desktop! )
    |- Feche aplicativos que estejam abertos.

    [Você precisa estar registrado e conectado para ver este link.]

    |- Execute-a!
    |- Com as duas checkbox marcadas! 
    |- Clique "Run".
    |- Ps: Caso queira,pode utilizar os softwares JetClean + JetBoost,para otimizar o PC.
    |- Tudo Ok?

    Abs!

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Qua Jul 10, 2013 10:10 am

    tudo ok meu amigo, vou instalar <> Jetclean + JetBoost

    # DelFix v10.3 - Logfile created 10/07/2013 at 11:08:56
    # Updated 08/06/2013 by Xplode
    # Username : Administrador - JORGE
    # Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

    ~ Removing disinfection tools ...

    Deleted : C:\Qoobox
    Deleted : C:\ZHP
    Deleted : C:\Arquivos de programas\ZHPDiag
    Deleted : C:\AdwCleaner[S1].txt
    Deleted : C:\ComboFix.txt
    Deleted : C:\PhysicalDisk0_MBR.bin
    Deleted : C:\zoek-results.log
    Deleted : C:\Documents and Settings\Administrador\Desktop\AdwCleaner[S1].txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\ComboFix.exe
    Deleted : C:\Documents and Settings\Administrador\Desktop\combofix.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\JRT.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\MBRCheck.lnk
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPDiag.lnk
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPDiag.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPDiag_silent.exe
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPFix.lnk
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPFixReport.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHP_uninstall.exe
    Deleted : C:\Documents and Settings\Administrador\Desktop\zoek-results.log
    Deleted : C:\Documents and Settings\Administrador\Desktop\zoek.exe
    Deleted : C:\Documents and Settings\Administrador\Meus documentos\Downloads\adwcleaner.exe
    Deleted : C:\Documents and Settings\Administrador\Meus documentos\Downloads\JRT.exe
    Deleted : C:\WINDOWS\grep.exe
    Deleted : C:\WINDOWS\PEV.exe
    Deleted : C:\WINDOWS\NIRCMD.exe
    Deleted : C:\WINDOWS\MBR.exe
    Deleted : C:\WINDOWS\SED.exe
    Deleted : C:\WINDOWS\SWREG.exe
    Deleted : C:\WINDOWS\SWSC.exe
    Deleted : C:\WINDOWS\SWXCACLS.exe
    Deleted : C:\WINDOWS\Zip.exe
    Deleted : HKLM\SOFTWARE\AdwCleaner
    Deleted : HKLM\SOFTWARE\Swearware
    Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe

    ~ Cleaning system restore ...

    Deleted : RP #399 [Ponto de verificação do sistema | 04/15/2013 10]
    Deleted : RP #400 [Software Distribution Service 3.0 | 04/15/2013 20]
    Deleted : RP #401 [Ponto de verificação do sistema | 04/18/2013 11]
    Deleted : RP #402 [Software Distribution Service 3.0 | 04/18/2013 20]
    Deleted : RP #403 [Software Distribution Service 3.0 | 04/19/2013 21]
    Deleted : RP #404 [Ponto de verificação do sistema | 04/22/2013 14]
    Deleted : RP #405 [Software Distribution Service 3.0 | 04/25/2013 17]
    Deleted : RP #406 [Ponto de verificação do sistema | 04/26/2013 17]
    Deleted : RP #407 [Ponto de verificação do sistema | 04/29/2013 13]
    Deleted : RP #408 [Software Distribution Service 3.0 | 04/29/2013 20]
    Deleted : RP #409 [Software Distribution Service 3.0 | 04/30/2013 18]
    Deleted : RP #410 [Ponto de verificação do sistema | 05/02/2013 13]
    Deleted : RP #411 [Ponto de verificação do sistema | 05/03/2013 14]
    Deleted : RP #412 [Software Distribution Service 3.0 | 05/03/2013 21]
    Deleted : RP #413 [Ponto de verificação do sistema | 05/06/2013 12]
    Deleted : RP #414 [Ponto de verificação do sistema | 05/07/2013 14]
    Deleted : RP #415 [Software Distribution Service 3.0 | 05/07/2013 20]
    Deleted : RP #416 [Ponto de verificação do sistema | 05/09/2013 11]
    Deleted : RP #417 [Ponto de verificação do sistema | 05/10/2013 12]
    Deleted : RP #418 [Software Distribution Service 3.0 | 05/10/2013 18]
    Deleted : RP #419 [Ponto de verificação do sistema | 05/13/2013 11]
    Deleted : RP #420 [Ponto de verificação do sistema | 05/14/2013 18]
    Deleted : RP #421 [Software Distribution Service 3.0 | 05/15/2013 18]
    Deleted : RP #422 [Ponto de verificação do sistema | 05/16/2013 18]
    Deleted : RP #423 [Software Distribution Service 3.0 | 05/16/2013 20]
    Deleted : RP #424 [Ponto de verificação do sistema | 05/20/2013 11]
    Deleted : RP #425 [Software Distribution Service 3.0 | 05/20/2013 20]
    Deleted : RP #426 [Software Distribution Service 3.0 | 05/21/2013 20]
    Deleted : RP #427 [Ponto de verificação do sistema | 05/23/2013 12]
    Deleted : RP #428 [Software Distribution Service 3.0 | 05/23/2013 20]
    Deleted : RP #429 [Software Distribution Service 3.0 | 05/24/2013 18]
    Deleted : RP #430 [Ponto de verificação do sistema | 05/27/2013 10]
    Deleted : RP #431 [Ponto de verificação do sistema | 05/28/2013 13]
    Deleted : RP #432 [Software Distribution Service 3.0 | 05/28/2013 17]
    Deleted : RP #433 [Ponto de verificação do sistema | 05/29/2013 18]
    Deleted : RP #434 [Ponto de verificação do sistema | 05/31/2013 11]
    Deleted : RP #435 [Software Distribution Service 3.0 | 05/31/2013 19]
    Deleted : RP #436 [Ponto de verificação do sistema | 06/03/2013 11]
    Deleted : RP #437 [Ponto de verificação do sistema | 06/04/2013 14]
    Deleted : RP #438 [Software Distribution Service 3.0 | 06/04/2013 20]
    Deleted : RP #439 [Ponto de verificação do sistema | 06/12/2013 11]
    Deleted : RP #440 [Ponto de verificação do sistema | 06/13/2013 13]
    Deleted : RP #441 [Software Distribution Service 3.0 | 06/13/2013 14]
    Deleted : RP #442 [Ponto de verificação do sistema | 06/14/2013 14]
    Deleted : RP #443 [Software Distribution Service 3.0 | 06/14/2013 21]
    Deleted : RP #444 [Ponto de verificação do sistema | 06/17/2013 12]
    Deleted : RP #445 [Ponto de verificação do sistema | 06/18/2013 13]
    Deleted : RP #446 [Software Distribution Service 3.0 | 06/18/2013 21]
    Deleted : RP #447 [Ponto de verificação do sistema | 06/20/2013 10]
    Deleted : RP #448 [Ponto de verificação do sistema | 06/21/2013 13]
    Deleted : RP #449 [Software Distribution Service 3.0 | 06/21/2013 20]
    Deleted : RP #450 [Ponto de verificação do sistema | 06/25/2013 11]
    Deleted : RP #451 [Software Distribution Service 3.0 | 06/25/2013 21]
    Deleted : RP #452 [Ponto de verificação do sistema | 06/27/2013 12]
    Deleted : RP #453 [Ponto de verificação do sistema | 06/28/2013 14]
    Deleted : RP #454 [Software Distribution Service 3.0 | 06/28/2013 18]
    Deleted : RP #455 [Ponto de verificação do sistema | 07/01/2013 11]
    Deleted : RP #456 [Ponto de verificação do sistema | 07/02/2013 12]
    Deleted : RP #457 [Ponto de verificação do sistema | 07/03/2013 13]
    Deleted : RP #458 [Software Distribution Service 3.0 | 07/03/2013 15]
    Deleted : RP #459 [Removed Java(TM) 6 Update 20 | 07/09/2013 17]
    Deleted : RP #460 [Instalado Java 7 Update 25 | 07/09/2013 17]
    Deleted : RP #461 [Configuração do(a) avast! Free Antivirus | 07/09/2013 17]
    Deleted : RP #462 [P | 07/09/2013 20]

    New restore point created !

    ########## - EOF - ##########

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 608
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Qua Jul 10, 2013 10:18 am

    CASO RESOLVIDO!

    Necessitando novo auxílio para este computador,basta abrir "Novo Tópico" e relatar o problema.

    Conteúdo patrocinado

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Conteúdo patrocinado Hoje à(s) 8:34 am


      Data/hora atual: Sab Dez 03, 2016 8:34 am