Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by f000847 on 31/03/2014 at 9:39:10,73.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\f000847\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
31/03/2014 09:39:44 Zoek.exe System Restore Point Created Succesfully.
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
ProfilePath: C:\Documents and Settings\ADMINI~1\Dados de aplicativos\Mozilla\Firefox\Profiles\itaqxty1.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_032014_0948_.backup
ProfilePath: C:\Documents and Settings\f000847\Dados de aplicativos\Mozilla\Firefox\Profiles\vc3ld4n3.default
user.js not found
---- Lines extensions.PuIf removed from prefs.js ----
user_pref("extensions.PuIf.epoch", "1393088572");
user_pref("extensions.PuIf.url", "http://foreveryshare.ru/sync2/?q=hfZ9oemNAyOMCyVUojaMg708BNmGWj8ckShGheDUojw9rdsErHwFrHw9rGhIC7n0rjnErTsFrjCErTwEtNh
---- Lines extensions.VEpR_BK removed from prefs.js ----
user_pref("extensions.VEpR_BK.epoch", "1393088573");
---- Lines extensions.ixGQRvge removed from prefs.js ----
user_pref("extensions.ixGQRvge.epoch", "1393088573");
---- FireFox user.js and prefs.js backups ----
prefs_032014_0948_.backup
ProfilePath: C:\Documents and Settings\Fun0131\Dados de aplicativos\Mozilla\Firefox\Profiles\z4e8s4wm.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_032014_0948_.backup
==== Deleting Files \ Folders ======================
C:\DOCUME~1\ALLUSE~1\DADOSD~1\dejenbobgpppnmkdkijoleekdgelcjce deleted
C:\Documents and Settings\f000847\AppData\LocalLow\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted
C:\Documents and Settings\f000847\AppData\LocalLow\{28FD2F3F-23EE-D637-B5DD-195805B2109B} deleted
C:\Documents and Settings\f000847\AppData\LocalLow\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted
C:\WINDOWS\system32\config\systemprofile\AppData\LocalLow\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted
C:\WINDOWS\system32\config\systemprofile\AppData\LocalLow\{28FD2F3F-23EE-D637-B5DD-195805B2109B} deleted
C:\WINDOWS\system32\config\systemprofile\AppData\LocalLow\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\Browser faster deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\Smooth Browsing deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\ecfd0d729d583545 deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\RReimoveAddsTuibee deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\BBestSuavveForYOuu deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\RObooSSaveer deleted
C:\Arquivos de programas\Assistant.dll deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\InstallMate deleted
C:\DOCUME~1\ALLUSE~1\DADOSD~1\SummerSoft deleted
C:\Documents and Settings\ADMINI~1\Dados de aplicativos\Mozilla\Firefox\Profiles\itaqxty1.default\extensions\staged deleted
C:\Documents and Settings\Fun0131\Dados de aplicativos\Mozilla\Firefox\Profiles\z4e8s4wm.default\extensions\staged deleted
C:\Documents and Settings\f000847\Meus documentos\Downloads\Edital (Retificado em 12_02_2014).exe deleted
"C:\DOCUME~1\ALLUSE~1\DADOSD~1\eckjkcpakmgdjpidnjcecpnggfnhbbga\eckjkcpakmgdjpidnjcecpnggfnhbbga.crx" deleted
"C:\DOCUME~1\ALLUSE~1\DADOSD~1\eckjkcpakmgdjpidnjcecpnggfnhbbga\update.xml" deleted
"C:\DOCUME~1\ALLUSE~1\DADOSD~1\eckjkcpakmgdjpidnjcecpnggfnhbbga" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Arquivos de programas\Alwil Software\Avast5\WebRep\FF" [19/02/2014 09:50]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{87F8774F-B485-47E2-A755-A40A8A5E886C}"="C:\Documents and Settings\f000847\Configurações locais\Dados de aplicativos\GAS Tecnologia\GBBD\bb\xpi" [28/03/2014 08:43]
==== Firefox Extensions ======================
ProfilePath: C:\Documents and Settings\f000847\Dados de aplicativos\Mozilla\Firefox\Profiles\vc3ld4n3.default
- avast Online Security - C:\Arquivos de programas\Alwil Software\Avast5\WebRep\FF
ProfilePath: C:\Documents and Settings\Fun0131\Dados de aplicativos\Mozilla\Firefox\Profiles\z4e8s4wm.default
- Modulo de Seguranca - Banco do Brasil - %ProfilePath%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}
==== Firefox Plugins ======================
Profilepath: C:\Documents and Settings\f000847\Dados de aplicativos\Mozilla\Firefox\Profiles\vc3ld4n3.default
95812430959AE88CDD0301AB3A71913B - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll - Shockwave Flash
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Arquivos de programas\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U51
9B10927CFD0F7AD39E40C0E34005B1AD - C:\Arquivos de programas\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.510.13
3220B1254AEF7A191187EC03F51B3D61 - C:\Arquivos de programas\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
B2576571746839180833E048AC2CCA5C - C:\Arquivos de programas\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
C36444D7301A8C881FC7296B092609C7 - C:\Arquivos de programas\Google\Update\1.3.22.3\npGoogleUpdate3.dll - Google Update
36A0F250C766D27BFE5A953C1A65B696 - C:\Arquivos de programas\Microsoft Silverlight\5.0.61118.0\npctrl.dll - Silverlight Plug-In
CF4ABE599858E10EEB911E16FBCFD87D - C:\Arquivos de programas\Windows Media Player\npdrmv2.dll - Microsoft® DRM
76E34EA1089E92709C5725407B565DA1 - C:\Arquivos de programas\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
02A4A41FAC9BF96155B3E8068D1DF4B6 - C:\Arquivos de programas\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
64CE864482A941C006AC430640DE4DB3 - C:\Arquivos de programas\Microsoft Silverlight\5.0.61118.0\npctrlui.dll - Microsoft® Silverlight
==== Chrome Look ======================
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
pgacfjdigcddmmncljpflgcfpfahebkh - C:\Documents and Settings\f000847\Configurações locais\Dados de aplicativos\GAS Tecnologia\GBBD\bb\sf.crx[28/03/2014 08:43]
Google Docs - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
RReimoveAddsTuibee - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\eckjkcpakmgdjpidnjcecpnggfnhbbga
Google Wallet - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
GBBD Banco do Brasil - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\pgacfjdigcddmmncljpflgcfpfahebkh
Gmail - f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
BBestSuavveForYOuu - LocalService\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\eojojepdmegboaojhhamiinmcnpkbbgp
Google Wallet - LocalService\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
==== Chrome Fix ======================
C:\Documents and Settings\LocalService\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\eojojepdmegboaojhhamiinmcnpkbbgp deleted successfully
C:\Documents and Settings\f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\eckjkcpakmgdjpidnjcecpnggfnhbbga deleted successfully
C:\Documents and Settings\f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eckjkcpakmgdjpidnjcecpnggfnhbbga_0.localstorage deleted successfully
C:\Documents and Settings\f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eckjkcpakmgdjpidnjcecpnggfnhbbga_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2586132527-314635491-3328972525-21082\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted successfully
HKEY_USERS\S-1-5-21-2586132527-314635491-3328972525-21082\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted successfully
HKEY_USERS\S-1-5-21-2586132527-314635491-3328972525-21082\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted successfully
HKEY_USERS\S-1-5-21-2586132527-314635491-3328972525-21082\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA446CC-64D3-EC17-EA74-BF7EB35D8EA9} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D26C6041-5CCB-68C6-2F86-84B20F02F7B3} deleted successfully
==== Deleting CLSID Registry Values ======================
==== shortcuts on Users Desktops ======================
C:\Documents and Settings\f000847\Desktop\Atalho para AdmFinanceiro 11.lnk - X:\AdmFinanceiro 11
C:\Documents and Settings\f000847\Desktop\Atalho para AdmFinanceiro 12.lnk - X:\AdmFinanceiro 12
C:\Documents and Settings\f000847\Desktop\Atalho para AdmFinanceiro 14.lnk - X:\AdmFinanceiro 14
C:\Documents and Settings\f000847\Desktop\Atalho para AdmFinanceiro13.lnk - X:\AdmFinanceiro 13
C:\Documents and Settings\f000847\Desktop\Atalho para contas em 'atlas server - Controlador de Dominio (atlas)' (Y).lnk - Y:\
C:\Documents and Settings\f000847\Desktop\Atalho para Empréstimos FOPAG.lnk - X:\AdmFinanceiro 12\Empréstimos FOPAG
C:\Documents and Settings\f000847\Desktop\Atalho para Ofícios GEFIN - 2014.lnk - X:\AdmFinanceiro 14\Ofícios GEFIN - 2014
C:\Documents and Settings\f000847\Desktop\Calculadora.lnk - C:\WINDOWS\system32\calc.exe
C:\Documents and Settings\f000847\Desktop\Google Chrome.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\f000847\Desktop\Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\f000847\Desktop\SIGAP.lnk - C:\sigap\Funpec.exe
C:\Documents and Settings\f000847\Desktop\Thunderbird Portable.lnk - C:\Documents and Settings\f000847\EMAIL_NÃO_APAGUE_Thunderbird Portable\ThunderbirdPortable.exe
C:\Documents and Settings\f000847\Desktop\FERRAMENTA CONTRAL MALWARES\ZHPDiag.lnk - C:\Arquivos de programas\ZHPDiag\ZHPhep.exe
C:\Documents and Settings\f000847\Desktop\FERRAMENTA CONTRAL MALWARES\ZHPFix.lnk - C:\Arquivos de programas\ZHPDiag\ZHPFix\ZHPhep.exe
C:\Documents and Settings\Fun0131\Desktop\Atalho para Funpec.lnk - C:\sigap\Funpec.exe
C:\Documents and Settings\Fun0131\Desktop\Auslogics Disk Defrag.lnk - C:\Arquivos de programas\Auslogics\Auslogics Disk Defrag\DiskDefrag.exe
==== shortcuts on All Users Desktop ======================
C:\Documents and Settings\All Users\Desktop\avast Free Antivirus.lnk -
C:\Documents and Settings\All Users\Desktop\CCleaner.lnk - C:\Arquivos de programas\CCleaner\CCleaner.exe
C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk - C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk - C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk - C:\Arquivos de programas\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe -ScParameter=8
C:\Documents and Settings\All Users\Desktop\Skype.lnk - C:\WINDOWS\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
==== shortcuts in All Users Start Menu ======================
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office\Microsoft Office Excel 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Skype\Skype.lnk - C:\Arquivos de programas\Skype\Phone\Skype.exe
==== shortcuts in Quick Launch ======================
C:\Documents and Settings\f000847\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Arquivos de programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\f000847\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk - C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\Documents and Settings\f000847\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk - C:\Arquivos de programas\Windows Media Player\wmplayer.exe /prefetch:1
C:\Documents and Settings\f003140\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Iniciar o Navegador Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\Fun0131\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Iniciar o navegador Internet Explorer.lnk - C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\Fun0131\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk - C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Fun0131\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk - C:\Arquivos de programas\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe -ScParameter=8
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\3da12540-2095-410e-b129-25f122332d88 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\d753765a-a90e-4eb7-b896-aae5c3fe2bcf deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome\ExtensionInstallForcelist deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{b1462358} deleted successfully
==== HijackThis Entries ======================
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Arquivos de programas\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\ARQUIVOS DE PROGRAMAS\GBPLUGIN\gbieh.dll
O2 - BHO: G-Buster Browser Defense CEF - {C41A1C0E-EA6C-11D4-B1B8-444553540003} - C:\Arquivos de programas\GbPlugin\gbiehCef.dll
O2 - BHO: G-Buster Browser Defense Bnb - {C41A1C0E-EA6C-11D4-B1B8-444553540014} - C:\Arquivos de programas\GbPlugin\gbiehBnb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Arquivos de programas\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Arquivos de programas\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Arquivos de programas\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp
O15 - Trusted Zone:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]O15 - Trusted Zone: www14.bancobrasil.com.br
O15 - Trusted Zone: www2.bancobrasil.com.br
O15 - Trusted Zone:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]O15 - Trusted Zone: imagem.caixa.gov.br
O15 - Trusted Zone: internetbanking.caixa.gov.br
O15 - Trusted Zone:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\arquiv~1\assist~1.dll
O20 - Winlogon Notify: GbPluginBb - C:\Arquivos de programas\GbPlugin\gbieh.dll
O20 - Winlogon Notify: GbPluginBnb - C:\Arquivos de programas\GbPlugin\gbiehBnb.dll
O20 - Winlogon Notify: GbPluginCef - C:\Arquivos de programas\GbPlugin\gbiehCef.dll
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Acronis Serviço Scheduler2 (AcrSch2Svc) - Acronis - C:\Arquivos de programas\Arquivos comuns\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Serviço de Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Arquivos de programas\Arquivos comuns\Acronis\CDP\afcdpsrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Arquivos de programas\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Gbp Service (GbpSv) - GAS Tecnologia - C:\ARQUIV~1\GbPlugin\GbpSv.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Arquivos de programas\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Arquivos de programas\Skype\Updater\Updater.exe
==== Empty IE Cache ======================
C:\Documents and Settings\f000847\Meus documentos\Outros arquivos\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Configurações locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\f000847\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\NetworkService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Mozilla\Firefox\Profiles\itaqxty1.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\Documents and Settings\f000847\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Documents and Settings\LocalService\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=61 folders=27 9670840 bytes)
==== Empty Temp Folders ======================
C:\Documents and Settings\Administrador\Configurações locais\temp emptied successfully
C:\Documents and Settings\Default User\Configurações locais\temp emptied successfully
C:\Documents and Settings\f000847\Configurações locais\temp will be emptied at reboot
C:\Documents and Settings\f003140\Configurações locais\temp emptied successfully
C:\Documents and Settings\Fun0131\Configurações locais\temp emptied successfully
C:\Documents and Settings\LocalService\Configurações locais\temp emptied successfully
C:\Documents and Settings\NetworkService\Configurações locais\temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\f000847\CONFIG~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"C:\Documents and Settings\f000847\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\LocalService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\NetworkService\Configurações locais\Temporary Internet Files\Content.IE5\index.dat" deleted
==== EOF on 31/03/2014 at 10:01:28,10 ======================
Sáb Mar 23, 2024 10:28 am por joram
» KpRm ( ... by Kernel-panik )
Ter Ago 11, 2020 9:47 pm por joram
» ESET Rogue Applications Remover ( ... by Eset.com )
Sáb Ago 01, 2020 7:49 am por joram
» PW Clean 2.7 ( ... by Doutor PW )
Ter maio 15, 2018 9:27 am por joram
» CKScanner ( ... by askey127 )
Sáb maio 05, 2018 1:12 pm por joram
» AdwCleaner ( ... by XPlode )
Seg Abr 16, 2018 8:47 am por joram
» ZHPDiag ( ... de Nicolas Coolman )
Sáb Abr 14, 2018 8:56 am por joram
» Argente - Registry Cleaner ( ... by Argente Software )
Dom Nov 19, 2017 4:36 pm por joram
» ListChkdskResult ( ... by SleepyDude )
Dom Set 24, 2017 1:39 pm por joram