Fórum SecSecurity

Implementando Limpeza e Seguranca em seu computador!

Palavras chave

Últimos assuntos

» 9-Lab Malware Removal Tool ( ... by 9-lab.com )
Sab Dez 31, 2016 4:24 am por joram

» SFCFix ( ... de niemiro )
Sab Dez 24, 2016 9:29 am por joram

» ResetBrowser ( ... de Nicolas Coolman )
Ter Maio 31, 2016 5:58 am por joram

» herdProtectScan ( ... by herdprotect.com )
Seg Mar 07, 2016 10:58 pm por joram

» Emsisoft Emergency Kit ( ... by Emsisoft.com )
Dom Fev 28, 2016 5:40 am por joram

» Dr.WEB Link Checker ( ... by Doctor Web.Ltd )
Qui Fev 11, 2016 9:51 am por joram

» Computador com erros no navegador
Sab Ago 29, 2015 8:04 pm por joram

» Justiça determina que PSafe retire alertas desleais
Qua Ago 19, 2015 6:58 am por joram

» Google vai fazer buscas offline internas no desktop do seu PC
Ter Ago 18, 2015 8:19 am por joram

Janeiro 2017

SegTerQuaQuiSexSabDom
      1
2345678
9101112131415
16171819202122
23242526272829
3031     

Calendário Calendário

Parceiros

Fórum grátis

Os membros mais marcados


    Maquina travando muito, lento, log para analise

    Compartilhe

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 3:19 pm

    Log para analise [Você precisa estar registrado e conectado para ver este link.]


     Esse pc estava quase um mês sem antivírus, rodei algumas ferramentas, conforme mostra abaixo:



    Malwarebytes Anti-Malware 1.75.0.1300
    [Você precisa estar registrado e conectado para ver este link.]

    Versão da Base de Dados:  v2013.07.09.06

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 8.0.6001.18702
    Administrador :: JORGE [administrador]

    09/07/2013 15:28:31
    mbam-log-2013-07-09 (15-28-31).txt

    Tipo de Verificação:  Verificação Completa  (C:\|)
    Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos  | Heurística/Extra | Heurística/Shuriken | PUP | PUM
    Opções de verificação desativadas: P2P
    Objetos escaneados:  290666
    Tempo decorrido: 32 minuto(s), 15 segundo(s)

    Processos de Memória Detectados: 0
    (Não foram detectados ítens maliciosos)

    Módulos de Memória Detectados: 0
    (Não foram detectados ítens maliciosos)

    Chaves de Registro Detectadas: 4
    HKCR\CLSID\{2F684A91-5019-D641-2C39-1D87E1178791} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F684A91-5019-D641-2C39-1D87E1178791} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    HKCR\CLSID\{C6E69486-E769-3DD3-B479-E3F0521297DC} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C6E69486-E769-3DD3-B479-E3F0521297DC} (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.

    Valores de Registro Detectadas: 0
    (Não foram detectados ítens maliciosos)

    Itens de Dados no Registro Detectadas: 0
    (Não foram detectados ítens maliciosos)

    Pastas Detectadas: 0
    (Não foram detectados ítens maliciosos)

    Arquivos Detectados: 3
    C:\Documents and Settings\All Users\Dados de aplicativos\Search--NewwTab\51648897b4b0a.dll (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Documents and Settings\All Users\Dados de aplicativos\Browse2saavee\516488262105c.dll (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.
    C:\Documents and Settings\All Users\Dados de aplicativos\Browse2save\51647fd81ef3c.dll (PUP.Adware.MultiPlug) -> Enviado para a Quarentena e deletado com sucesso.

    (fim)


    # AdwCleaner v2.304 - Relatório criado em 09/07/2013 às 16:05:45
    # Atualizado em 03/07/2013 por Xplode
    # Sistema Operacional : Microsoft Windows XP Service Pack 3 (32 bits)
    # Usuário : Administrador - JORGE
    # Modo de Boot : Normal
    # Executado de : C:\Documents and Settings\Administrador\Meus documentos\Downloads\adwcleaner.exe
    # Opção [Remover]


    ***** [Serviços] *****

    Encerrado & Removido : SProtection

    ***** [Arquivos/Pastas] *****

    Arquivo Removido : C:\Arquivos de programas\Mozilla Firefox\.autoreg
    Arquivo Removido : C:\Arquivos de programas\Mozilla Firefox\defaults\pref\all-iminent.js
    Arquivo Removido : C:\Arquivos de programas\Mozilla Firefox\searchplugins\StartWeb.xml
    Arquivo Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\searchplugins\WebSearch.xml
    Pasta Removido : C:\Arquivos de programas\Arquivos comuns\Umbrella
    Pasta Removido : C:\Arquivos de programas\Iminent
    Pasta Removido : C:\Arquivos de programas\IMinent toolbar
    Pasta Removido : C:\Arquivos de programas\WebSearch
    Pasta Removido : C:\Documents and Settings\Administrador\Dados de aplicativos\Iminent
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Browse2saavee
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Browse2save
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Iminent
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\InstallMate
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\Search--NewwTab
    Pasta Removido : C:\Documents and Settings\All Users\Dados de aplicativos\SoftSafe
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Iminent
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\kx_yiag2sj@u-wbuio.org
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\taz2-j@mokvzopjks-.co.uk
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\extensions\wkgr@uauy.co.uk
    Pasta Removido : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Toolbar4
    Removido Durante o reboot : C:\Documents and Settings\All Users\Dados de aplicativos\BetterSoft

    ***** [Registro] *****

    Chave Removida : HKCU\Software\Iminent
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
    Chave Removida : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
    Chave Removida : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
    Chave Removida : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
    Chave Removida : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
    Chave Removida : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandle.1
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
    Chave Removida : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler.1
    Chave Removida : HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
    Chave Removida : HKLM\Software\Classes\Installer\Features\ACFD5B980E184AE4A8A0F404781ADD00
    Chave Removida : HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
    Chave Removida : HKLM\Software\Classes\Installer\Products\ACFD5B980E184AE4A8A0F404781ADD00
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
    Chave Removida : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
    Chave Removida : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
    Chave Removida : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbTask
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
    Chave Removida : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar.1
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620
    Chave Removida : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620.3
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620
    Chave Removida : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620.1
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
    Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
    Chave Removida : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
    Chave Removida : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
    Chave Removida : HKLM\Software\Iminent
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0B4750D705E2564409328D661F3A08E1
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26E983F1377593143A37E3BA1C65CB74
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3C036A97566BFD147A3318BA9E8EA65E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CC84F27D09408149894EC0F9A7C017F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BDFB2601A205D344828E68FC902CAE9
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5AF25BBA9EECCDB41923C3FE08497C67
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D010CDB0C7815A48A7F780C5F8AACA7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AFEEBDA8013CAA74C8052DC06F9F22D8
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CC063FFF6402E614191D191F0DE5C5B4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F18FD125C322BC84286AD21D8B685F2F
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1C8F66181D6DDD488BB6F772F71324A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F71371A90E93D605C8B0A71F163F625C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C
    Chave Removida : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\ACFD5B980E184AE4A8A0F404781ADD00
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{89B5DFCA-81E0-4EA4-8A0A-4F4087A1DD00}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OptimizerPro
    Chave Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
    Chave Removida : HKLM\Software\SP Global
    Chave Removida : HKLM\Software\SProtector
    Chave Removida : HKLM\Software\Umbrella
    Dados Removida : HKLM\..\Windows [AppInit_DLLs] = c:\arquiv~1\browse~1\sprote~1.dll
    Dados Removida : HKLM\..\Windows [AppInit_DLLs] = c:\arquiv~1\websea~1\sprote~1.dll
    Valor Removida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
    Valor Removida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
    Valor Removida : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [webbooster@iminent.com]
    Valor Removida : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Arquivos de programas\Iminent\Iminent.exe]
    Valor Removida : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Arquivos de programas\Iminent\Iminent.Messengers.exe]

    ***** [Navegadores] *****

    -\\ Internet Explorer v8.0.6001.18702

    Substituído : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = [Você precisa estar registrado e conectado para ver este link.] --> [Você precisa estar registrado e conectado para ver este link.]

    -\\ Mozilla Firefox v3.6.28 (pt-BR)

    Arquivo : C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\prefs.js

    Removida : user_pref("aol_toolbar.default.homepage.check", false);
    Removida : user_pref("aol_toolbar.default.search.check", false);
    Removida : user_pref("browser.search.defaultenginename", "WebSearch");
    Removida : user_pref("browser.search.defaultenginename,S", "WebSearch");
    Removida : user_pref("browser.search.defaulturl", "hxxp://websearch.pu-results.info/?pid=708&r=2013/04/09&hid=4[...]
    Removida : user_pref("browser.search.order.1", "WebSearch");
    Removida : user_pref("browser.search.order.1,S", "WebSearch");
    Removida : user_pref("browser.search.selectedEngine,S", "WebSearch");
    Removida : user_pref("extensions.51647fd81ee53.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
    Removida : user_pref("extensions.5164882620f91.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
    Removida : user_pref("extensions.BabylonToolbar.prtkDS", 0);
    Removida : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
    Removida : user_pref("keyword.URL", "hxxp://websearch.pu-results.info/?pid=708&r=2013/04/09&hid=4277336183&lg=E[...]
    Removida : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
    Removida : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
    Removida : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
    Removida : user_pref("sweetim.toolbar.previous.keyword.URL", "");
    Removida : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
    Removida : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
    Removida : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
    Removida : user_pref("sweetim.toolbar.searchguard.enable", "");

    Arquivo : C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default\prefs.js

    [OK] Arquivo está limpo.

    -\\ Google Chrome v28.0.1500.63

    Arquivo : C:\Documents and Settings\Jorge Lins\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Preferences

    [OK] Arquivo está limpo.

    Arquivo : C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Preferences

    [OK] Arquivo está limpo.

    *************************

    AdwCleaner[S1].txt - [41150 octets] - [09/07/2013 16:05:45]

    ########## EOF - C:\AdwCleaner[S1].txt - [41211 octets] ##########


    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 5.0.2 (07.09.2013:1)
    OS: Microsoft Windows XP x86
    Ran by Administrador on 09/07/2013 at 16:09:15,29
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services

    Successfully stopped: [Service] readingfanatic_6xservice 
    Successfully deleted: [Service] readingfanatic_6xservice 



    ~~~ Registry Values

    Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\readingfanatic search scope monitor
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



    ~~~ Registry Keys

    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{fe8a5a30-7831-4eb2-a9e7-8402c384c841}



    ~~~ Files



    ~~~ Folders

    Successfully deleted: [Folder] "C:\Arquivos de programas\readingfanatic_6x"





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 09/07/2013 at 16:12:21,68
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 3:43 pm

     Continuação:

    ComboFix 13-07-09.01 - Administrador 09/07/2013  16:37:23.1.4 - x86
    Microsoft Windows XP Professional  5.1.2600.3.1252.55.1046.18.3325.2739 [GMT -3:00]
    Executando de: c:\documents and settings\Administrador\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    .
    .
    (((((((((((((((((((((((((((((((((((((   Outras Exclusões   )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\Jorge Lins\MSJCE.dll
    c:\windows\system\chron32.dll
    c:\windows\system\libeay32.dll
    c:\windows\system\ssleay32.dll
    .
    .
    ((((((((((((((((   Arquivos/Ficheiros criados de 2013-06-09 to 2013-07-09  ))))))))))))))))))))))))))))
    .
    .
    2013-07-09 19:15 . 2013-07-09 19:15 512 ----a-w- C:\PhysicalDisk0_MBR.bin
    2013-07-09 19:14 . 2013-07-09 19:15 -------- d-----w- C:\ZHP
    2013-07-09 19:14 . 2013-07-09 19:15 -------- d-----w- c:\arquivos de programas\ZHPDiag
    2013-07-09 19:09 . 2013-07-09 19:09 -------- d-----w- c:\windows\ERUNT
    2013-07-09 17:44 . 2013-07-09 17:44 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\Malwarebytes
    2013-07-09 17:44 . 2013-07-09 17:44 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Malwarebytes
    2013-07-09 17:44 . 2013-07-09 17:44 -------- d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware
    2013-07-09 17:44 . 2013-04-04 17:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
    2013-07-09 17:36 . 2013-07-09 17:36 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
    2013-07-09 17:36 . 2013-05-09 08:59 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
    2013-07-09 17:36 . 2013-05-09 08:59 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2013-07-09 17:29 . 2013-07-09 17:29 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\AVAST Software
    2013-07-09 17:28 . 2013-07-09 17:28 -------- d-----w- c:\documents and settings\Administrador\Configurações locais\Dados de aplicativos\Sun
    2013-07-09 17:27 . 2013-07-09 17:27 -------- d-----w- c:\documents and settings\Administrador\Configurações locais\Dados de aplicativos\Google
    2013-07-09 17:27 . 2013-07-09 17:27 -------- d-----w- c:\arquivos de programas\Arquivos comuns\Java
    2013-07-09 17:27 . 2013-07-09 17:27 144896 ----a-w- c:\windows\system32\javacpl.cpl
    2013-07-09 17:27 . 2013-07-09 17:27 867240 ----a-w- c:\windows\system32\npDeployJava1.dll
    2013-07-09 17:27 . 2013-07-09 17:27 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-07-09 17:25 . 2013-07-09 17:25 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
    2013-07-09 17:24 . 2013-07-09 17:25 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\HpUpdate
    2013-07-03 15:04 . 2013-06-12 04:18 7068072 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Microsoft\Windows Defender\Definition Updates\{3DF91806-9BD0-403F-8FAE-0F6F4511F73E}\mpengine.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((   Relatório Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-07-09 17:36 . 2011-06-20 19:14 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2013-07-09 17:36 . 2011-06-20 18:21 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2013-07-09 17:27 . 2011-06-20 18:32 789416 -c--a-w- c:\windows\system32\deployJava1.dll
    2013-06-12 04:18 . 2011-06-20 19:06 7068072 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
    2013-05-09 08:59 . 2011-06-20 18:21 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2013-05-09 08:59 . 2011-06-20 18:21 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
    2013-05-09 08:59 . 2011-06-20 18:21 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2013-05-09 08:58 . 2011-06-20 19:14 41664 ----a-w- c:\windows\avastSS.scr
    2013-05-09 08:58 . 2011-06-20 18:21 229648 ----a-w- c:\windows\system32\aswBoot.exe
    2013-05-07 22:26 . 2006-03-02 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
    2013-05-07 22:26 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
    2013-05-07 22:26 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
    2013-05-07 21:53 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
    2013-05-03 05:38 . 2006-03-02 12:00 2153984 ----a-w- c:\windows\system32\ntoskrnl.exe
    2013-05-03 05:38 . 2004-08-04 00:40 2032640 ----a-w- c:\windows\system32\ntkrnlpa.exe
    2013-05-02 05:06 . 2011-06-20 19:06 238872 ------w- c:\windows\system32\MpSigStub.exe
    2013-04-12 14:01 . 2006-03-02 12:00 1876480 ----a-w- c:\windows\system32\win32k.sys
    .
    .
    ((((((((((((((((((((((((((   Pontos de Carregamento do Registro   )))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* entradas vazias e legítimas por padrão não são apresentadas. 
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2013-05-09 08:58 121968 ----a-w- c:\arquivos de programas\Alwil Software\Avast5\ashShell.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="c:\arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" [2013-03-12 253816]
    "avast"="c:\arquivos de programas\Alwil Software\Avast5\avastUI.exe" [2013-05-09 4858968]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
    @="Service"
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^Administrador^Menu Iniciar^Programas^Inicializar^Servieca.vbs]
    path=c:\documents and settings\Administrador\Menu Iniciar\Programas\Inicializar\Servieca.vbs
    backup=c:\windows\pss\Servieca.vbsStartup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^HP Digital Imaging Monitor.lnk]
    path=c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\HP Digital Imaging Monitor.lnk
    backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Inicialização rápida do HP Image Zone.lnk]
    path=c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\Inicialização rápida do HP Image Zone.lnk
    backup=c:\windows\pss\Inicialização rápida do HP Image Zone.lnkCommon Startup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    2007-05-11 06:06 40048 ----a-w- c:\arquivos de programas\Adobe\Reader 8.0\Reader\reader_sl.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
    2008-01-16 01:10 69632 ------r- c:\windows\Alcmtr.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CertificateRegistration]
    2010-07-20 16:02 151552 ----a-w- c:\windows\system32\aetcrss1.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    2008-04-13 22:20 15360 ----a-w- c:\windows\system32\ctfmon.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
    2004-05-12 18:18 241664 ----a-w- c:\arquivos de programas\HP\hpcoretech\hpcmpmgr.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
    2009-11-18 19:13 54576 ----a-w- c:\arquivos de programas\HP\HP Software Update\hpwuschd2.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
    2011-01-07 23:11 1797488 ----a-w- c:\arquivos de programas\Microsoft IntelliPoint\ipoint.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\itype]
    2011-01-07 23:18 1778552 ----a-w- c:\arquivos de programas\Microsoft IntelliType Pro\itype.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    2008-10-07 05:33 13574144 ----a-w- c:\windows\system32\nvcpl.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    2008-10-07 05:33 86016 ----a-w- c:\windows\system32\nvmctray.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    2008-10-07 05:33 1630208 ----a-w- c:\windows\system32\nwiz.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
    2006-07-30 14:00 98304 ----a-r- c:\arquivos de programas\Hewlett-Packard\OrderReminder\OrderReminder.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
    2008-01-16 01:10 16384512 ------r- c:\windows\RTHDCPL.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
    2006-11-03 22:20 866584 ----a-w- c:\arquivos de programas\Windows Defender\MSASCui.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center]
    "AntiVirusOverride"=dword:00000001
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hposid01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqusgm.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqusgh.exe"=
    "c:\\Arquivos de programas\\HP\\HP Software Update\\hpwucli.exe"=
    "c:\\Arquivos de programas\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"=
    .
    R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [09/07/2013 14:36 49376]
    R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [09/07/2013 14:36 175176]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [20/06/2011 16:14 770344]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20/06/2011 15:21 369584]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20/06/2011 15:21 29816]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [09/07/2013 14:36 66336]
    R2 OrolixDeviceMonitor;Orolix Device Monitor;c:\arquivos de programas\TIM Communicator\module\devicemon.exe [20/04/2010 08:05 27040]
    R2 WinDefend;Windows Defender;c:\arquivos de programas\Windows Defender\MsMpEng.exe [03/11/2006 19:19 13592]
    R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [22/05/2012 07:10 44416]
    S3 cxbu0wdm;OMNIKEY 3x21;c:\windows\system32\drivers\cxbu0wdm.sys [25/01/2010 14:56 115712]
    S3 GemCCID;GemCCID;c:\windows\system32\drivers\GemCCID.sys [10/08/2009 12:07 89600]
    S3 jrdusbser;Olicard Modem Interface Device for Legacy Serial Communication;c:\windows\system32\drivers\jrdusbser.sys [17/09/2010 12:44 105344]
    S3 Olicard155net;Olicard155 USB-NDIS miniport;c:\windows\system32\drivers\Olicard155Usbnet.sys [17/09/2010 12:44 117760]
    .
    --- =Outros Serviços/Drivers Na Memória ---
    .
    *NewlyCreated* - WS2IFSL
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    HPZ12 REG_MULTI_SZ   Pml Driver HPZ12 Net Driver HPZ12
    HPService REG_MULTI_SZ   HPSLPSVC
    hpdevmgmt REG_MULTI_SZ   hpqcxs08 hpqddsvc
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\aetsprov]
    2010-08-01 01:55 81920 ----a-w- c:\windows\system32\aetsprov.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
    2013-06-28 14:20 1173456 ----a-w- c:\arquivos de programas\Google\Chrome\Application\28.0.1500.63\Installer\chrmstp.exe
    .
    Conteúdo da pasta 'Tarefas Agendadas'
    .
    2013-07-09 c:\windows\Tasks\avast! Emergency Update.job
    - c:\arquivos de programas\Alwil Software\Avast5\AvastEmUpdate.exe [2013-07-09 08:58]
    .
    2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2013-05-02 20:14]
    .
    2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2013-05-02 20:14]
    .
    2012-05-22 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
    - c:\arquivos de programas\Microsoft IntelliPoint\ipoint.exe [2011-01-07 23:11]
    .
    2012-05-22 c:\windows\Tasks\Microsoft_Hardware_Launch_IType_exe.job
    - c:\arquivos de programas\Microsoft IntelliType Pro\itype.exe [2011-01-07 23:18]
    .
    2013-07-09 c:\windows\Tasks\MP Scheduled Scan.job
    - c:\arquivos de programas\Windows Defender\MpCmdRun.exe [2006-11-03 22:20]
    .
    2013-07-09 c:\windows\Tasks\User_Feed_Synchronization-{0049F7F1-AF62-497D-95A5-6D40B2643C50}.job
    - c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]
    .
    2013-07-09 c:\windows\Tasks\User_Feed_Synchronization-{065C6AC6-A006-4C10-B530-4DC82657C972}.job
    - c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]
    .
    .
    ------- Scan Suplementar -------
    .
    uStart Page = [Você precisa estar registrado e conectado para ver este link.]
    mStart Page = [Você precisa estar registrado e conectado para ver este link.]
    TCP: DhcpNameServer = 10.4.65.16
    FF - ProfilePath - c:\documents and settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default\
    .
    - - - - ORFÃOS REMOVIDOS - - - -
    .
    MSConfigStartUp-ReadingFanatic Search Scope Monitor - c:\arquiv~1\READIN~2\bar\1.bin\6xsrchmn.exe
    MSConfigStartUp-ReadingFanatic_6x Browser Plugin Loader - c:\arquiv~1\READIN~2\bar\1.bin\6xbrmon.exe
    MSConfigStartUp-Servieca - c:\docume~1\ADMINI~1\CONFIG~1\Temp\Servieca.vbs
    AddRemove-SP_bbe535ed - c:\arquivos de programas\WebSearch\uninstall.exe
    AddRemove-{8A652C39-580B-37BA-870A-6FD9D09BBC1E} - c:\docume~1\ALLUSE~1\DADOSD~1\INSTAL~1\{0C16C~1\Setup.exe
    AddRemove-{EB44C884-0D01-D1E3-5E6E-2BC640317324} - c:\docume~1\ALLUSE~1\DADOSD~1\INSTAL~1\{D4C39~1\Setup.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [Você precisa estar registrado e conectado para ver este link.]
    Rootkit scan 2013-07-09 16:41
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    Procurando processos ocultos ... 
    .
    Procurando entradas auto inicializáveis ocultas ... 
    .
    Procurando ficheiros/arquivos ocultos ... 
    .
    Varredura completada com sucesso
    arquivos/ficheiros ocultos: 0
    .
    **************************************************************************
    .
    --------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
    .
    [HKEY_USERS\S-1-5-21-1004336348-838170752-725345543-500\Software\Microsoft\Internet Explorer\User Preferences]
    @Denied: (2) (Administrator)
    "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
       d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,51,ad,d9,7f,01,51,3d,48,90,29,af,\
    "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
       d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,51,ad,d9,7f,01,51,3d,48,90,29,af,\
    .
    Tempo para conclusão: 2013-07-09  16:42:17
    ComboFix-quarantined-files.txt  2013-07-09 19:42
    .
    Pré-execução: 16 pasta(s) 288.906.711.040 bytes disponíveis
    Pós execução: 19 pasta(s) 289.102.516.224 bytes disponíveis
    .
    - - End Of File - - B8516B7C4F454D6DB2A2216A3C1F7B4D
    239FC8B1C26D5286165A956F5A98D8D7

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 610
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Ter Jul 09, 2013 3:55 pm

    Boa Tarde! Edvan

    |- Baixe: < [Você precisa estar registrado e conectado para ver este link.] > ( ... by Smeenk )

    |- Ou aqui! < [Você precisa estar registrado e conectado para ver este link.] >

    |- Salve-o no desktop!
    |- Desabilite seu antivírus!
    |- Para Windows 7,execute zoek.exe como administrador.

    startupall; 
    autoclean; 
    filesrcm; 
    emptyalltemp;
     

    |- Copie e cole estas informações,em vermelho,no campo da ferramenta.
    |- Clique "Run Script". <- Aguarde!

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Aceite e/ou confirme o reboot!

    zoek.hta failed by unknown error.
    Restart computer, and try again.
    |- Ps: Ao obter algum erro,reinicie o PC e execute,novamente,a ferramenta.
    |- Poste o relatório,que estará em C:\zoek-results.txt << 

    -/-

    |- Feche programas/pastas que estejam abertas.
    |- Feche,também,o navegador!
    |- Para Windows Vista,desabilite a [Você precisa estar registrado e conectado para ver este link.].

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Dê um duplo clique em ZHPFix.
    |- Selecione e copie estas informações,que estão em vermelho,para o "Bloco de Notas".
    #####

    O2 - BHO: (no name) - {2d948797-8fe3-4508-9b6f-4bf349a9ea34} Orphean Key
    O2 - BHO: (no name) - {f149b372-5830-4d88-b8f6-2853d12c1af5} Orphean Key
    O2 - BHO: (no name) - {0347C33E-8762-4905-BF09-768834316C61} Orphean Key     
    O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} Orphean Key
    O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Orphean Key     
    O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} Orphean Key     
    O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} Orphean Key     
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} Orphean Key
    O2 - BHO: (no name) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} Orphean Key     
    O3 - Toolbar: (no name) - [HKLM]{b36151d1-7770-4480-87e4-f89fb54e173d} . (...) --  (.not file.) 
    O3 - Toolbar: (no name) - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (...) --  (.not file.)     
    O53 - SMSR:HKLM\...\startupreg\ReadingFanatic Search Scope Monitor  [Key] . (...) -- C:\ARQUIV~1\READIN~2\bar\1.bin\6xsrchmn.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\ReadingFanatic_6x Browser Plugin Loader  [Key] . (...) -- C:\ARQUIV~1\READIN~2\bar\1.bin\6xbrmon.exe (.not file.)

    [HKCU\Software\ReadingFanatic_6x] 
    [HKLM\Software\ReadingFanatic_6x] 

    proxyfix
    emptyflash
    firewallraz
    sysrestore

    #####
    |- Estando com o Bloco de Notas aberto,acione os atalhos: "Ctrl+A" -> "Ctrl+C"
    |- Minimize o Bloco de Notas.

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Clique no menu,"Paste ClipBoard".
    |- Clique "GO" -> Oui.

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Ps: Temos,àcima,sequência de imagens para maior exclarecimento.
    |- Poste o relatório: C:\ZHP\ZHPFix[R1].txt

    A+

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 4:11 pm

    Zoek.exe Version 4.0.0.3 Updated 05-July-2013
    Tool run by Administrador on 09/07/2013 at 16:59:34,46.
    Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
    Running in: Normal Mode Internet Access Detected

    ==== System Restore Info ======================

    Failed to create System Restore Point

    ==== Deleting CLSID Registry Keys ======================


    ==== Deleting CLSID Registry Values ======================


    ==== Deleting Services ======================


    ==== FireFox Fix ======================

    ProfilePath: C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default

    user.js not found
    ---- Lines iminent removed from prefs.js ----


    ---- Lines iminent modified from prefs.js ----


    ---- Lines imbooster removed from prefs.js ----


    ---- Lines imbooster modified from prefs.js ----


    ---- FireFox user.js and prefs.js backups ---- 

    prefs_072013_1702_.backup

    ProfilePath: C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default

    user.js not found
    ---- Lines iminent removed from prefs.js ----

    user_pref("browser.startup.homepage", "http://start.iminent.com/?appId=EA606341-68CB-4361-AC52-F33A918C9D3A");

    ---- Lines iminent modified from prefs.js ----

    user_pref("extensions.enabledItems", "jqs@sun.com:1.0,{20a82645-c095-46ed-80e3-08825760534b}:1.1,kx_yiag2sj@u-wbuio.org:3.8,taz2-j@mokvzopjks-.co.uk:1.0,wkgr@uauy.co.uk:3.8,{C9B68337-E93A-44EA-94DC-CB300EC06444}:5.30.4,webbooster@iminent.com:6.13.4.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28");

    ---- Lines imbooster removed from prefs.js ----

    user_pref("id_imbooster4web_v6.cache.tbs_include_xml_006938", "13/11/28/5/113");
    user_pref("id_imbooster4web_v6.firstlaunch", "0");
    user_pref("id_imbooster4web_v6.guid", "%7BB64AA930-3E2C-48E1-22B1-1914A859574B%7D");
    user_pref("id_imbooster4web_v6.stored_historysearch", "////ufrnet");
    user_pref("id_imbooster4web_v6.userId", "%12");
    user_pref("id_imbooster4web_v6.Var1", "0");
    user_pref("id_imbooster4web_v6.Var10", "0");
    user_pref("id_imbooster4web_v6.Var2", "0");
    user_pref("id_imbooster4web_v6.Var3", "0");
    user_pref("id_imbooster4web_v6.Var4", "0");
    user_pref("id_imbooster4web_v6.Var5", "0");
    user_pref("id_imbooster4web_v6.Var6", "0");
    user_pref("id_imbooster4web_v6.Var7", "0");
    user_pref("id_imbooster4web_v6.Var8", "0");
    user_pref("id_imbooster4web_v6.Var9", "0");
    user_pref("id_imbooster4web_v6_installed_version", "1.0.1018.0");

    ---- Lines imbooster modified from prefs.js ----


    ---- FireFox user.js and prefs.js backups ---- 

    prefs_072013_1702_.backup

    ==== Deleting Files \ Folders ======================

    "C:\Arquivos de programas\Iminent\webbooster@iminent.com" not found 
    "C:\Documents and Settings\Administrador\Dados de aplicativos\desktop.ini" deleted
    "C:\WINDOWS\002702_.tmp" deleted
    "C:\WINDOWS\SET25.tmp" deleted
    "C:\WINDOWS\SET3.tmp" deleted
    "C:\WINDOWS\SET4.tmp" deleted
    "C:\WINDOWS\SET8.tmp" deleted
    "C:\Arquivos de programas\BrowseToSave" deleted

    ==== Files Recently Created / Modified ======================

    ====== C:\WINDOWS ====
    2013-07-09 19:22:12 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\WINDOWS\PEV.exe
    2013-07-09 19:22:12 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\WINDOWS\grep.exe
    2013-07-09 19:22:12 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\WINDOWS\zip.exe
    2013-07-09 19:22:12 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\WINDOWS\SWSC.exe
    2013-07-09 19:22:12 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\WINDOWS\MBR.exe
    ====== C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp ====
    ====== C:\WINDOWS\system32 =====
    2013-07-09 17:27:41 1D9B3568CFDB55316985A053D6D96030 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
    ====== C:\WINDOWS\system32\drivers =====
    2013-07-09 17:44:21 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
    2013-07-09 17:36:16 FAF091AA45A6A6CF3CF94FE065950956 175 ----a-w- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
    2013-07-09 17:36:16 3FFBEE694566CADB0A64D8A1ACD7DBCE 175 ----a-w- C:\WINDOWS\System32\drivers\aswSP.sys.sum
    2013-07-09 17:36:16 22EA82FFE8CA4965C1994F24C35DC202 175 ----a-w- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
    2013-07-09 17:36:09 8CFAA2B965773A653F48F1207A9CB9C4 175176 ----a-w- C:\WINDOWS\System32\drivers\aswVmm.sys
    2013-07-09 17:36:08 B680134BA1813B78B47FDD1DFF223CA5 49376 ----a-w- C:\WINDOWS\System32\drivers\aswRvrt.sys
    2013-07-09 17:36:08 1F7094D4268D46F718C51286DC189791 66336 ----a-w- C:\WINDOWS\System32\drivers\aswMonFlt.sys
    ====== C:\WINDOWS\Tasks ======
    2013-07-09 17:29:24 04B8B287E3275647405F0FC147342369 382 ---ha-w- C:\WINDOWS\Tasks\avast! Emergency Update.job
    ====== C:\WINDOWS\Temp ======
    ======= C:\Arquivos de programas =====
    2013-07-09 19:47:59 -------- d-----w- C:\Arquivos de programas\TeamViewer
    2013-07-09 19:14:01 -------- d-----w- C:\Arquivos de programas\ZHPDiag
    ======= C: =====
    2013-07-09 19:23:33 FA579938B0733B87066546AFE951082C 211 ----a-w- C:\Boot.bak
    2013-07-09 19:23:31 C51A881398F29071239741AE16D07C1C 261856 --sha-r- C:\cmldr
    2013-07-09 19:15:04 8DD391A79B3EF494A18C7DF96EFFFAC6 512 ----a-w- C:\PhysicalDisk0_MBR.bin
    2013-07-09 19:05:45 53234F0B6753B36691698418F84BC889 41281 ----a-w- C:\AdwCleaner[S1].txt
    ====== C:\Documents and Settings\Administrador\Dados de aplicativos ======
    2013-07-09 19:48:04 -------- d-----w- C:\Documents and Settings\All Users\Menu Iniciar\Programas\TeamViewer 8
    2013-07-09 19:46:16 -------- d-----w- C:\Documents and Settings\Administrador\Dados de aplicativos\HPAppData
    2013-07-09 17:29:25 -------- d-----w- C:\Documents and Settings\All Users\Menu Iniciar\Programas\avast! Free Antivirus
    2013-07-09 17:28:12 -------- d-----w- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Sun
    2013-07-09 17:27:53 -------- d-----w- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google
    2013-07-09 17:24:58 -------- d-----w- C:\Documents and Settings\Administrador\Dados de aplicativos\HpUpdate
    ====== C:\Documents and Settings\Administrador ======
    2013-07-09 19:14:01 AE326A97F634217CAC29739D376DF934 344187 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHP_uninstall.exe
    2013-07-09 17:43:14 E897110EE5E67FABB83B154DF9C68D6A 794216 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHPDiag_silent.exe
    2013-07-09 17:25:26 -------- d-sh--w- C:\Documents and Settings\LocalService\IETldCache
    2013-07-09 17:25:20 C49D9245586816869F2D05037544D131 102315992 ----a-w- C:\Documents and Settings\Administrador\Desktop\avast_free_antivirus_setup.exe

    ====== C: exe-files ==
    2013-07-09 19:48:00 A34FC9FDEA5D54BC8AB70A1B50223F82 195936 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\tv_w32.exe
    2013-07-09 19:48:00 A2B4F5412C204B823C2D20FDA2CBA693 232800 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\tv_x64.exe
    2013-07-09 19:48:00 86CEB79CEF30BB40CB4819B3BD6AC4FA 506464 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\uninstall.exe
    2013-07-09 19:48:00 617CC6CCBB12234AF5C357DCF656E4ED 4317536 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\TeamViewer_Desktop.exe
    2013-07-09 19:48:00 402794A75A899E296AB3EDEC4ECCB9A8 4153184 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\TeamViewer_Service.exe
    2013-07-09 19:47:59 A0E89D070F76E587837C3DDABF476E26 11596128 ----a-w- C:\Arquivos de programas\TeamViewer\Version8\TeamViewer.exe
    2013-07-09 19:47:32 DC397FEDFAFBA0AE526199A032A68F89 5485128 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\TeamViewer_Setup_pt.exe
    2013-07-09 19:45:13 FE1200C71152EC5DABD6D344BE3E107C 69632 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\MoveEx.exe
    2013-07-09 19:45:06 92BD80F82FE8A28385B7D9D3F215E8B3 73728 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\pv.exe
    2013-07-09 19:45:06 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\unzip.exe
    2013-07-09 19:45:06 6D2C398E03397C9D089EDC0F00AB3FCB 61440 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\download.exe
    2013-07-09 19:45:06 609F46A341FEDEAEEC18ABF9FB7C9647 49152 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\exec\md5.exe
    2013-07-09 19:44:53 10E074589D8F16165386604E409B0931 178597 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\bankerfix.exe
    2013-07-09 19:23:31 F0C08E06A2A3EF0618E3990DE36BAB21 616960 ----a-w- C:\cmdcons\autochk.exe
    2013-07-09 19:23:31 A317FC1D2F892651DEC970B9CCCD6D92 608768 ----a-w- C:\cmdcons\autofmt.exe
    2013-07-09 19:22:12 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\WINDOWS\PEV.exe
    2013-07-09 19:22:12 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\WINDOWS\grep.exe
    2013-07-09 19:22:12 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\WINDOWS\zip.exe
    2013-07-09 19:22:12 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\WINDOWS\SWSC.exe
    2013-07-09 19:22:12 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\WINDOWS\MBR.exe
    2013-07-09 19:14:01 F3A37421DBD1AAA36558C97572C91C5A 147456 ----a-w- C:\Arquivos de programas\ZHPDiag\catchme.exe
    2013-07-09 19:14:01 E100F7F1AA506F91A3C64366EE290E33 555944 ----a-w- C:\Arquivos de programas\ZHPDiag\setacl64.exe
    2013-07-09 19:14:01 CB2D120A4B72422A8141192831B1F500 80384 ----a-w- C:\Arquivos de programas\ZHPDiag\mbrcheck.exe
    2013-07-09 19:14:01 C3D16F308C98CB3BDC315D996D7D89AD 706512 ----a-w- C:\Arquivos de programas\ZHPDiag\unins000.exe
    2013-07-09 19:14:01 AE326A97F634217CAC29739D376DF934 344187 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHP_uninstall.exe
    2013-07-09 19:14:01 9DAA7218961710008D7385B01BD3F386 89088 ----a-w- C:\Arquivos de programas\ZHPDiag\mbr.exe
    2013-07-09 19:14:01 8747E33E978E91C7888364E95F53D977 370235 ----a-w- C:\Arquivos de programas\ZHPDiag\ZHPDiags.exe
    2013-07-09 19:14:01 79C7BC4A7642D908A1527A0EB90138C9 452008 ----a-w- C:\Arquivos de programas\ZHPDiag\setacl32.exe
    2013-07-09 19:14:01 74C3DFCC1C6BF8B0BD977EF6F4185208 2709504 ----a-w- C:\Arquivos de programas\ZHPDiag\ZHPFix.exe
    2013-07-09 19:14:01 6B8AF3A2A3D9059008B55C444461CA00 61952 ----a-w- C:\Arquivos de programas\ZHPDiag\Lads.exe
    2013-07-09 19:14:01 5DAF7081A4BB112FA3F1915819330A3E 61440 ----a-w- C:\Arquivos de programas\ZHPDiag\pv.exe
    2013-07-09 19:14:01 5BBF2A0351E336646022D09009560CEF 143360 ----a-w- C:\Arquivos de programas\ZHPDiag\FileInfos.exe
    2013-07-09 19:14:01 56873D899C0707AA017AA2D74EC190AE 3770368 ----a-w- C:\Arquivos de programas\ZHPDiag\ZHPDiag.exe
    2013-07-09 19:14:01 53CDBB093B0AEE9FD6CF1CBD25A95077 290304 ----a-w- C:\Arquivos de programas\ZHPDiag\subinacl.exe
    2013-07-09 19:14:01 417C1BE0BF4D7C505D60D2CEFCDF2347 231048 ----a-w- C:\Arquivos de programas\ZHPDiag\sigcheck.exe
    2013-07-09 17:44:04 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\mbam-setup-1.75.0.1300.exe
    2013-07-09 17:43:20 10EDAF50993F4FFF59DA5BF920CAB3B2 552389 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\JRT.exe
    2013-07-09 17:43:14 E897110EE5E67FABB83B154DF9C68D6A 794216 ----a-w- C:\Documents and Settings\Administrador\Desktop\ZHPDiag_silent.exe
    2013-07-09 17:41:33 1078C8BD8C62CF4DEE6FE1058C3D56A7 650027 ----a-w- C:\Documents and Settings\Administrador\Meus documentos\Downloads\adwcleaner.exe
    2013-07-09 17:25:20 C49D9245586816869F2D05037544D131 102315992 ----a-w- C:\Documents and Settings\Administrador\Desktop\avast_free_antivirus_setup.exe
    2013-07-08 11:36:36 7C0BC15FCA923493D4A0383C3F1D4FE8 5332840 ----a-w- C:\Documents and Settings\Administrador\Configurações locais\temp\TeamViewer\Version8\TeamViewer_.exe
    === C: other files ==
    2013-07-09 19:45:13 E346B33499EAE9FE9B76B442F1BA429F 924 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\postreboot.bat
    2013-07-09 19:45:13 CDFACFCDEA61725D3A0590C319777FA1 100 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\remocao\userinit.vbs
    2013-07-09 19:45:13 BBBEF792776C2ACA43AC540CA843EB65 12135 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\scan.vbs
    2013-07-09 19:45:13 BAB5D14097EB91F448D3AAC2C7F690B4 8248 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\BankerFix.vbs
    2013-07-09 19:45:13 A7070F6B8587878FA50CD6E244AEC2B3 2430 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\wmi.vbs
    2013-07-09 19:45:13 8D848A7958FE59030FBDCB3EF4BD0C58 10172 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\reg.vbs
    2013-07-09 19:45:13 7EE11B4AB0E6B60D4B72DB8C430C16D1 824 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\strings.vbs
    2013-07-09 19:45:13 7B974806E411F1393459D457EC60AB98 970 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\arquiva-relatorio.vbs
    2013-07-09 19:45:13 6E5DBE2E06F0979528BA1A36CF6D436A 58 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\remocao\driver.vbs
    2013-07-09 19:45:13 68D80AD37936BA7118E79ADD1C884BA2 1273 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\postreboot.vbs
    2013-07-09 19:45:13 5E000FAD430B0FF41A9CFA1D959F7362 97 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\remocao\shell.vbs
    2013-07-09 19:45:13 166D917F0906DD405A02650868089F33 5167 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\banker.bat
    2013-07-09 19:45:13 09A0AFC0F56EC44CA5B443094E7265FE 95 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\func\lang.vbs
    2013-07-09 19:45:06 88A3B5AD9D57D8A86016B5F869BE418F 6432 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\rotinas\update.vbs
    2013-07-09 19:45:06 68FB04B526023E0F46EECFEF43BBE1F3 3771 ----a-w- C:\RECYCLER\S-1-5-21-1004336348-838170752-725345543-500\Dc1\Iniciar-BankerFix.vbs
    2013-07-09 17:44:21 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
    2013-07-09 17:36:09 8CFAA2B965773A653F48F1207A9CB9C4 175176 ----a-w- C:\WINDOWS\system32\drivers\aswVmm.sys
    2013-07-09 17:36:08 B680134BA1813B78B47FDD1DFF223CA5 49376 ----a-w- C:\WINDOWS\system32\drivers\aswRvrt.sys
    2013-07-09 17:36:08 1F7094D4268D46F718C51286DC189791 66336 ----a-w- C:\WINDOWS\system32\drivers\aswMonFlt.sys
    2013-07-03 14:33:56 1C547FD5C61D2B57329D4E4BC5630A91 700364 ----a-w- C:\Documents and Settings\Jorge Lins\Configurações locais\Temporary Internet Files\Content.IE5\2G0YS500\Atum%20gigante%20de%20470%20kg%20causa%20rebuli%E7o%20entre%20chefs%20japoneses%20em%20S%E3o%20Paulo[1].zip

    ==== Startup Registry Enabled ======================

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

    [HKEY_USERS\S-1-5-21-1004336348-838170752-725345543-500\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe"
    "avast"="C:\Arquivos de programas\Alwil Software\Avast5\avastUI.exe /nogui"
    "NvCplDaemon"="RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup"

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

    ==== Startup Registry Disabled ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"=""
    "hkey"="HKLM"
    "command"=""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Reader_sl"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Alcmtr]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ALCMTR"
    "hkey"="HKLM"
    "command"="ALCMTR.EXE"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CertificateRegistration]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="aetcrss1"
    "hkey"="HKLM"
    "command"="aetcrss1.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CTFMON.EXE]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ctfmon"
    "hkey"="HKCU"
    "command"="C:\\WINDOWS\\system32\\ctfmon.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Component Manager]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="hpcmpmgr"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\HP\\hpcoretech\\hpcmpmgr.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="HPWuSchd2"
    "hkey"="HKLM"
    "command"="C:\\Arquivos de programas\\HP\\HP Software Update\\HPWuSchd2.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IntelliPoint]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ipoint"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Microsoft IntelliPoint\\ipoint.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\itype]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="itype"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Microsoft IntelliType Pro\\itype.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="NvCpl"
    "hkey"="HKLM"
    "command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="NvMcTray"
    "hkey"="HKLM"
    "command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\nwiz]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="nwiz"
    "hkey"="HKLM"
    "command"="nwiz.exe /install"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OrderReminder]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="OrderReminder"
    "hkey"="HKLM"
    "command"="C:\\Arquivos de programas\\Hewlett-Packard\\OrderReminder\\OrderReminder.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDCPL]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="RTHDCPL"
    "hkey"="HKLM"
    "command"="RTHDCPL.EXE"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Defender]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="MSASCui"
    "hkey"="HKLM"
    "command"="\"C:\\Arquivos de programas\\Windows Defender\\MSASCui.exe\" -hide"


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^Administrador^Menu Iniciar^Programas^Inicializar^Servieca.vbs]
    "path"="C:\\Documents and Settings\\Administrador\\Menu Iniciar\\Programas\\Inicializar\\Servieca.vbs"
    "backup"="C:\\WINDOWS\\pss\\Servieca.vbsStartup"
    "command"="C:\\Documents and Settings\\Administrador\\Menu Iniciar\\Programas\\Inicializar\\Servieca.vbs"
    "item"="Servieca"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^HP Digital Imaging Monitor.lnk]
    "path"="C:\\Documents and Settings\\All Users\\Menu Iniciar\\Programas\\Inicializar\\HP Digital Imaging Monitor.lnk"
    "backup"="C:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup"
    "command"="C:\\ARQUIV~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
    "item"="HP Digital Imaging Monitor"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Inicialização rápida do HP Image Zone.lnk]
    "path"="C:\\Documents and Settings\\All Users\\Menu Iniciar\\Programas\\Inicializar\\Inicialização rápida do HP Image Zone.lnk"
    "backup"="C:\\WINDOWS\\pss\\Inicialização rápida do HP Image Zone.lnkCommon Startup"
    "command"="C:\\ARQUIV~1\\HP\\DIGITA~1\\bin\\hpqthb08.exe -s"
    "item"="Inicialização rápida do HP Image Zone"


    ==== Startup Folders ======================

    2013-07-02 12:36:35 14584 ---ha-w- C:\Documents and Settings\Jorge Lins\Menu Iniciar\Programas\Inicializar\Servieca.vbs

    ==== Task Scheduler Jobs ======================

    C:\WINDOWS\tasks\avast\Undetermined Task.exe []
    C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Arquivos de programas\Google\Update\GoogleUpdate.exe [02/05/2013 17:14]
    C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Arquivos de programas\Google\Update\GoogleUpdate.exe [02/05/2013 17:14]
    C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job --a------ C:\Arquivos de programas\Microsoft IntelliPoint\ipoint.exe [07/01/2011 20:11]
    C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IType_exe.job --a------ C:\Arquivos de programas\Microsoft IntelliType Pro\itype.exe [07/01/2011 20:18]
    C:\WINDOWS\tasks\MP Scheduled Scan.job --ah----- [Undetermined Task]
    C:\WINDOWS\tasks\User_Feed_Synchronization-{0049F7F1-AF62-497D-95A5-6D40B2643C50}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08/03/2009 04:31]
    C:\WINDOWS\tasks\User_Feed_Synchronization-{065C6AC6-A006-4C10-B530-4DC82657C972}.job --ah----- [Undetermined Task]

    ==== Firefox Extensions ======================

    ProfilePath: C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default
    - Undetermined - C:\Arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
    - Java Quick Starter - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ff
    - Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

    ProfilePath: C:\Documents and Settings\Jorge Lins\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default
    - Java Quick Starter - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ff
    - Undetermined - C:\Arquivos de programas\Iminent\webbooster@iminent.com
    - Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

    ==== Firefox Plugins ======================

    Profilepath: C:\Documents and Settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default
    CF4ABE599858E10EEB911E16FBCFD87D - C:\Arquivos de programas\Windows Media Player\npdrmv2.dll - Microsoft® DRM
    02A4A41FAC9BF96155B3E8068D1DF4B6 - C:\Arquivos de programas\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
    76E34EA1089E92709C5725407B565DA1 - C:\Arquivos de programas\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
    AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
    1040BD9BF3DDAB7CDA2346F8375480A2 - C:\Arquivos de programas\Java\jre6\bin\new_plugin\npjp2.dll - Java(TM) Platform SE 6 U26
    21A67095EDC11A528F5434D28BB0EF3C - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash
    5EB6F21D95E728C61BCFC89F899D6BB0 - C:\Arquivos de programas\Java\jre6\bin\new_plugin\npdeployJava1.dll - Java Deployment Toolkit 6.0.260.3
    3E167740C661271B960C47812FFF9639 - C:\Arquivos de programas\Mozilla Firefox\plugins\npnul32.dll - Mozilla Default Plug-in
    04AF8BC83A89D9B71F7E0BCAF9FDD768 - C:\Arquivos de programas\Adobe\Reader 8.0\Reader\browser\nppdf32.dll - Adobe Acrobat


    ==== Chrome Look ======================

    Docs - Administrador - Default\Extensions\aohghmighlieiainnegkcijnfilokake
    avast Online Security - Administrador - Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
    Docs - Jorge Lins - Default\Extensions\aohghmighlieiainnegkcijnfilokake

    ==== Set IE to Default ======================

    Old Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://globo.com/"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"

    New Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://globo.com/"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

    ==== All HKCU SearchScopes ======================

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
    "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
    {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
    {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

    ==== Empty IE Cache ======================

    C:\Documents and Settings\Jorge Lins\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
    C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Documents and Settings\Administrador\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
    C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

    ==== Empty FireFox Cache ======================

    C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Mozilla\Firefox\Profiles\81esf88u.default\Cache emptied successfully
    C:\Documents and Settings\Jorge Lins\Configurações locais\Dados de aplicativos\Mozilla\Firefox\Profiles\d5tip0o7.default\Cache emptied successfully

    ==== Empty Chrome Cache ======================

    C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache emptied successfully
    C:\Documents and Settings\Jorge Lins\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\WINDOWS\Temp successfully emptied
    C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\RECYCLER successfully emptied

    ==== Deleting Files / Folders ======================

    "C:\Documents and Settings\Administrador\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" deleted
    "C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" not deleted

    ==== EOF on 09/07/2013 at 17:08:36,25 ======================



    Rapport de ZHPFix 1.3.05 par Nicolas Coolman, Update du 09/10/2012
    Fichier d'export Registre : 
    Run by Administrador at 09/07/2013 17:10:39
    Windows XP Professional Service Pack 3 (Build 2600)
    Web site : [Você precisa estar registrado e conectado para ver este link.]



    ========== Registry Key ==========
    NOT FOUND Key: CLSID BHO: {2d948797-8fe3-4508-9b6f-4bf349a9ea34}
    NOT FOUND Key: CLSID BHO: {f149b372-5830-4d88-b8f6-2853d12c1af5}
    DELETED Key: CLSID BHO: {0347C33E-8762-4905-BF09-768834316C61}
    DELETED Key: CLSID BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
    DELETED Key: CLSID BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
    DELETED Key: CLSID BHO: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
    DELETED Key: CLSID BHO: {9030D464-4C02-4ABF-8ECC-5164760863C6}
    DELETED Key: CLSID BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9}
    DELETED Key: CLSID BHO: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}
    NOT FOUND Key:  StartupReg: ReadingFanatic Search Scope Monitor
    NOT FOUND Key:  StartupReg: ReadingFanatic_6x Browser Plugin Loader
    DELETED Key: HKCU\Software\ReadingFanatic_6x
    DELETED Key: HKLM\Software\ReadingFanatic_6x

    ========== Registry Value ==========
    NOT FOUND Toolbar: {b36151d1-7770-4480-87e4-f89fb54e173d}
    DELETED Toolbar: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
    ProxyFix : Proxy killed successfully
    DELETED ProxyServer Value
    DELETED ProxyEnable Value
    DELETED EnableHttp1_1 Value
    DELETED ProxyHttp1.1 Value
    DELETED ProxyOverride Value
    DELETED FirewallRaz (SP) : %windir%\system32\sessmgr.exe
    DELETED FirewallRaz (SP) : %windir%\Network Diagnostic\xpnetdiag.exe
    DELETED FirewallRaz (DP) : %windir%\system32\sessmgr.exe
    DELETED FirewallRaz (DP) : %windir%\Network Diagnostic\xpnetdiag.exe
    No Value in Firewall Exception Register Key (FirewallRaz)

    ========== Repertory ==========
    DELETED Flash Cookies:

    ========== File ==========
    NOT FOUND File: c:\arquiv~1\readin~2\bar\1.bin\6xsrchmn.exe
    NOT FOUND File: c:\arquiv~1\readin~2\bar\1.bin\6xbrmon.exe
    DELETED Flash Cookies:

    ========== Restoration ==========
    Restore System Point created succefully


    ========== Summary ==========
    13 : Registry Key
    13 : Registry Value
    1 : Repertory
    3 : File
    1 : Restoration


    End of clean in 00mn 05s

    ========== Report File ==========
    C:\ZHP\ZHPFix[R1].txt - 09/07/2013 17:10:39 [2236]

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 610
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Ter Jul 09, 2013 4:24 pm

    Boa Tarde! Edvan

    |- Abra,novamente,a ferramenta zoek,que será direcionada ao diagnóstico.

    Installed Programs
    HijackThis Log
    Silent Runners


    |- Clique "Options" e marque as opções que estão em verde.
    |- Clique "Run Script". <- Aguarde!

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Aceite e/ou confirme o reboot!

    zoek.hta failed by unknown error.
    Restart computer, and try again.
    |- Ps: Ao obter algum erro,reinicie o PC e execute,novamente,a ferramenta.
    |- Poste o relatório,que estará em C:\zoek-results.txt << 

    A+

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 4:33 pm

    Só apareceu isso aqui amigo, não deu o alerta para reboot!.


    Zoek.exe Version 4.0.0.3 Updated 05-July-2013
    Tool run by Administrador on 09/07/2013 at 17:31:24,82.
    Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
    Running in: Normal Mode Internet Access Detected

    ==== EOF on 09/07/2013 at 17:31:45,40 ======================

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Ter Jul 09, 2013 9:44 pm

    OBS: Tentei editar mais nao conseguir, é o seguinte:

    Isso tudo começou após plugar pendrives infectados nessa maquina, inclusive os 3 pendrives estão com virus, pois deixa todas as pastas como atalhos, tudo que vc cria dentro do pendriver fica como atalho. o que vc aconselha amigo?

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 610
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Qua Jul 10, 2013 8:53 am

    Bom Dia! Edvan

    |- Ok! Vamos tentar limpar seus pendrives.

    -/-

    |- Baixe: < [Você precisa estar registrado e conectado para ver este link.] > ( ...de C_XX & El Desaparecido )

    [Você precisa estar registrado e conectado para ver este link.]

    |- Salve-o no desktop!
    |- Siga com sua instalação.
    |- Desmarque: "Desativar Autorun/AutoPlay automaticamente" -> OK
    |- Aperte a tecla "Shift" e conecte seu pendrive ao computador!
    |- Execute o arquivo UsbFix.exe,com um duplo clique.

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Escolha a opção "Suppression".
    |- Aguarde a conclusão e poste o relatório. ( C:\UsbFix.txt )

     < [Você precisa estar registrado e conectado para ver este link.] >

    |- Para limpar o pendrive,siga estas orientações que estão em mgasparin.com.
    |- Desabilite a autoinicialização no seu XP,ou aperte a tecla Shift ao inserir o pendrive e execute os comandos ali propostos.

    -/-

    |- Baixe: < [Você precisa estar registrado e conectado para ver este link.] >

    |- Salve-o em sua unidade pendrive e execute-o com duplo clique.
    |- À seguir,poste novo log da ferramenta UsbFix,na opção Recherche.

    A+

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Qua Jul 10, 2013 9:02 am

    Amigo, como os pendrives nao estão comigo, prefiro executar esses procedimentos na minha maquina quando estiver de posse dos pendrives.

    Mais algum procedimento nesse pc?

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 610
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Qua Jul 10, 2013 9:34 am

    Edvan escreveu:Amigo, como os pendrives nao estão comigo, prefiro executar esses procedimentos na minha maquina quando estiver de posse dos pendrives.

    Mais algum procedimento nesse pc?
     Ok! Edvan

    |- Baixe: |[Você precisa estar registrado e conectado para ver este link.]| ( ... de Xplode )

    [Você precisa estar registrado e conectado para ver esta imagem.]

    |- Estando na página,clique na seta verde para o download
    |- Salve-a em um local conveniente! ( desktop! )
    |- Feche aplicativos que estejam abertos.

    [Você precisa estar registrado e conectado para ver este link.]

    |- Execute-a!
    |- Com as duas checkbox marcadas! 
    |- Clique "Run".
    |- Ps: Caso queira,pode utilizar os softwares JetClean + JetBoost,para otimizar o PC.
    |- Tudo Ok?

    Abs!

    Edvan
    Membro
    Membro

    Mensagens : 428
    Data de inscrição : 14/02/2013
    Idade : 36
    Localização : Natal/RN

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Edvan em Qua Jul 10, 2013 10:10 am

    tudo ok meu amigo, vou instalar <> Jetclean + JetBoost

    # DelFix v10.3 - Logfile created 10/07/2013 at 11:08:56
    # Updated 08/06/2013 by Xplode
    # Username : Administrador - JORGE
    # Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

    ~ Removing disinfection tools ...

    Deleted : C:\Qoobox
    Deleted : C:\ZHP
    Deleted : C:\Arquivos de programas\ZHPDiag
    Deleted : C:\AdwCleaner[S1].txt
    Deleted : C:\ComboFix.txt
    Deleted : C:\PhysicalDisk0_MBR.bin
    Deleted : C:\zoek-results.log
    Deleted : C:\Documents and Settings\Administrador\Desktop\AdwCleaner[S1].txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\ComboFix.exe
    Deleted : C:\Documents and Settings\Administrador\Desktop\combofix.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\JRT.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\MBRCheck.lnk
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPDiag.lnk
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPDiag.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPDiag_silent.exe
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPFix.lnk
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHPFixReport.txt
    Deleted : C:\Documents and Settings\Administrador\Desktop\ZHP_uninstall.exe
    Deleted : C:\Documents and Settings\Administrador\Desktop\zoek-results.log
    Deleted : C:\Documents and Settings\Administrador\Desktop\zoek.exe
    Deleted : C:\Documents and Settings\Administrador\Meus documentos\Downloads\adwcleaner.exe
    Deleted : C:\Documents and Settings\Administrador\Meus documentos\Downloads\JRT.exe
    Deleted : C:\WINDOWS\grep.exe
    Deleted : C:\WINDOWS\PEV.exe
    Deleted : C:\WINDOWS\NIRCMD.exe
    Deleted : C:\WINDOWS\MBR.exe
    Deleted : C:\WINDOWS\SED.exe
    Deleted : C:\WINDOWS\SWREG.exe
    Deleted : C:\WINDOWS\SWSC.exe
    Deleted : C:\WINDOWS\SWXCACLS.exe
    Deleted : C:\WINDOWS\Zip.exe
    Deleted : HKLM\SOFTWARE\AdwCleaner
    Deleted : HKLM\SOFTWARE\Swearware
    Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe

    ~ Cleaning system restore ...

    Deleted : RP #399 [Ponto de verificação do sistema | 04/15/2013 10]
    Deleted : RP #400 [Software Distribution Service 3.0 | 04/15/2013 20]
    Deleted : RP #401 [Ponto de verificação do sistema | 04/18/2013 11]
    Deleted : RP #402 [Software Distribution Service 3.0 | 04/18/2013 20]
    Deleted : RP #403 [Software Distribution Service 3.0 | 04/19/2013 21]
    Deleted : RP #404 [Ponto de verificação do sistema | 04/22/2013 14]
    Deleted : RP #405 [Software Distribution Service 3.0 | 04/25/2013 17]
    Deleted : RP #406 [Ponto de verificação do sistema | 04/26/2013 17]
    Deleted : RP #407 [Ponto de verificação do sistema | 04/29/2013 13]
    Deleted : RP #408 [Software Distribution Service 3.0 | 04/29/2013 20]
    Deleted : RP #409 [Software Distribution Service 3.0 | 04/30/2013 18]
    Deleted : RP #410 [Ponto de verificação do sistema | 05/02/2013 13]
    Deleted : RP #411 [Ponto de verificação do sistema | 05/03/2013 14]
    Deleted : RP #412 [Software Distribution Service 3.0 | 05/03/2013 21]
    Deleted : RP #413 [Ponto de verificação do sistema | 05/06/2013 12]
    Deleted : RP #414 [Ponto de verificação do sistema | 05/07/2013 14]
    Deleted : RP #415 [Software Distribution Service 3.0 | 05/07/2013 20]
    Deleted : RP #416 [Ponto de verificação do sistema | 05/09/2013 11]
    Deleted : RP #417 [Ponto de verificação do sistema | 05/10/2013 12]
    Deleted : RP #418 [Software Distribution Service 3.0 | 05/10/2013 18]
    Deleted : RP #419 [Ponto de verificação do sistema | 05/13/2013 11]
    Deleted : RP #420 [Ponto de verificação do sistema | 05/14/2013 18]
    Deleted : RP #421 [Software Distribution Service 3.0 | 05/15/2013 18]
    Deleted : RP #422 [Ponto de verificação do sistema | 05/16/2013 18]
    Deleted : RP #423 [Software Distribution Service 3.0 | 05/16/2013 20]
    Deleted : RP #424 [Ponto de verificação do sistema | 05/20/2013 11]
    Deleted : RP #425 [Software Distribution Service 3.0 | 05/20/2013 20]
    Deleted : RP #426 [Software Distribution Service 3.0 | 05/21/2013 20]
    Deleted : RP #427 [Ponto de verificação do sistema | 05/23/2013 12]
    Deleted : RP #428 [Software Distribution Service 3.0 | 05/23/2013 20]
    Deleted : RP #429 [Software Distribution Service 3.0 | 05/24/2013 18]
    Deleted : RP #430 [Ponto de verificação do sistema | 05/27/2013 10]
    Deleted : RP #431 [Ponto de verificação do sistema | 05/28/2013 13]
    Deleted : RP #432 [Software Distribution Service 3.0 | 05/28/2013 17]
    Deleted : RP #433 [Ponto de verificação do sistema | 05/29/2013 18]
    Deleted : RP #434 [Ponto de verificação do sistema | 05/31/2013 11]
    Deleted : RP #435 [Software Distribution Service 3.0 | 05/31/2013 19]
    Deleted : RP #436 [Ponto de verificação do sistema | 06/03/2013 11]
    Deleted : RP #437 [Ponto de verificação do sistema | 06/04/2013 14]
    Deleted : RP #438 [Software Distribution Service 3.0 | 06/04/2013 20]
    Deleted : RP #439 [Ponto de verificação do sistema | 06/12/2013 11]
    Deleted : RP #440 [Ponto de verificação do sistema | 06/13/2013 13]
    Deleted : RP #441 [Software Distribution Service 3.0 | 06/13/2013 14]
    Deleted : RP #442 [Ponto de verificação do sistema | 06/14/2013 14]
    Deleted : RP #443 [Software Distribution Service 3.0 | 06/14/2013 21]
    Deleted : RP #444 [Ponto de verificação do sistema | 06/17/2013 12]
    Deleted : RP #445 [Ponto de verificação do sistema | 06/18/2013 13]
    Deleted : RP #446 [Software Distribution Service 3.0 | 06/18/2013 21]
    Deleted : RP #447 [Ponto de verificação do sistema | 06/20/2013 10]
    Deleted : RP #448 [Ponto de verificação do sistema | 06/21/2013 13]
    Deleted : RP #449 [Software Distribution Service 3.0 | 06/21/2013 20]
    Deleted : RP #450 [Ponto de verificação do sistema | 06/25/2013 11]
    Deleted : RP #451 [Software Distribution Service 3.0 | 06/25/2013 21]
    Deleted : RP #452 [Ponto de verificação do sistema | 06/27/2013 12]
    Deleted : RP #453 [Ponto de verificação do sistema | 06/28/2013 14]
    Deleted : RP #454 [Software Distribution Service 3.0 | 06/28/2013 18]
    Deleted : RP #455 [Ponto de verificação do sistema | 07/01/2013 11]
    Deleted : RP #456 [Ponto de verificação do sistema | 07/02/2013 12]
    Deleted : RP #457 [Ponto de verificação do sistema | 07/03/2013 13]
    Deleted : RP #458 [Software Distribution Service 3.0 | 07/03/2013 15]
    Deleted : RP #459 [Removed Java(TM) 6 Update 20 | 07/09/2013 17]
    Deleted : RP #460 [Instalado Java 7 Update 25 | 07/09/2013 17]
    Deleted : RP #461 [Configuração do(a) avast! Free Antivirus | 07/09/2013 17]
    Deleted : RP #462 [P | 07/09/2013 20]

    New restore point created !

    ########## - EOF - ##########

    joram
    Administrador Fundador
    Administrador Fundador

    Mensagens : 610
    Data de inscrição : 14/08/2012
    Idade : 63
    Localização : Rio de Janeiro

    Re: Maquina travando muito, lento, log para analise

    Mensagem por joram em Qua Jul 10, 2013 10:18 am

    CASO RESOLVIDO!

    Necessitando novo auxílio para este computador,basta abrir "Novo Tópico" e relatar o problema.

    Conteúdo patrocinado

    Re: Maquina travando muito, lento, log para analise

    Mensagem por Conteúdo patrocinado Hoje à(s) 6:34 pm


      Data/hora atual: Sab Jan 21, 2017 6:34 pm