Este fórum foi descontinuado. LEIA AQUI e participe da Comunidade BABOO :)

Ir para conteúdo
turca

Maquina lenta, ao abrir arquivos msg: A debugger has been found running in your system

Mensagem Recomendada

 

Zoek.exe v5.0.0.0 Updated 04-May-2015

Tool run by TURCA on 05/06/2015 at 16:17:18,17.

Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\TURCA\Desktop\zoek.exe [scan all users] [script inserted] 

 

==== System Restore Info ======================

 

05/06/2015 16:18:02 Zoek.exe System Restore Point Created Successfully.

 

==== Reset Hosts File ======================

 

# Copyright © 1993-2006 Microsoft Corp. 


# This is a sample HOSTS file used by Microsoft TCP/IP for Windows. 


# This file contains the mappings of IP addresses to host names. Each 

# entry should be kept on an individual line. The IP address should 

# be placed in the first column followed by the corresponding host name. 

# The IP address and the host name should be separated by at least one 

# space. 


# Additionally, comments (such as these) may be inserted on individual 

# lines or following the machine name denoted by a '#' symbol. 


# For example: 


#      102.54.94.97     rhino.acme.com          # source server 

#       38.25.63.10     x.acme.com              # x client host 

 

# localhost name resolution is handled within DNS itself. 

127.0.0.1       localhost 

::1             localhost 

 

==== Empty Folders Check ======================

 

C:\PROGRA~2\i-ekb.ru deleted successfully

C:\PROGRA~2\Mobo deleted successfully

C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully

C:\Users\TURCA\AppData\Roaming\Mobo deleted successfully

C:\Users\TURCA\AppData\Local\CrashDumps deleted successfully

C:\Users\TURCA\AppData\Local\Mediatek deleted successfully

C:\Users\TURCA\AppData\Local\VirtualStore deleted successfully

 

==== Deleting CLSID Registry Keys ======================

 

HKEY_USERS\S-1-5-21-663725323-701994921-2557688371-1001\Software\Microsoft\Internet Explorer\SearchScopes\{E394AC80-CA53-4FF2-9EBC-657A08C179CD} deleted successfully

 

==== Deleting CLSID Registry Values ======================

 

 

==== Deleting Services ======================

 

 

==== FireFox Fix ======================

 

Deleted from C:\Users\TURCA\AppData\Roaming\Mozilla\Firefox\Profiles\7zz08324.default\prefs.js:

user_pref("browser.startup.homepage", "www.google.com.br");

user_pref("browser.search.selectedEngine", "Yahoo!");

 

Added to C:\Users\TURCA\AppData\Roaming\Mozilla\Firefox\Profiles\7zz08324.default\prefs.js:

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.newtab.url", "about:newtab");

 

ProfilePath: C:\Users\TURCA\AppData\Roaming\Mozilla\Firefox\Profiles\7zz08324.default

 

user.js not found

---- Lines browser.startup.page removed from prefs.js ----

user_pref("browser.startup.page", 3);

---- FireFox user.js and prefs.js backups ---- 

 

prefs_062015_1635_.backup

 

==== Deleting Files \ Folders ======================

 

C:\PROGRA~2\i-ekb.ru not found

C:\PROGRA~2\Mobo not found

C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found

C:\Users\TURCA\AppData\Local\Aplicativo Itau deleted

C:\Users\TURCA\.android deleted

C:\PROGRA~2\Wondershare deleted

C:\PROGRA~2\COMMON~1\Wondershare deleted

C:\.tmp deleted

C:\BROM_DLL.tmp deleted

C:\formatter.tmp deleted

C:\hwupgradewizard.tmp deleted

C:\SHBackup.tmp deleted

C:\SP_META_DLL.tmp deleted

C:\Users\TURCA\AppData\Roaming\Wondershare deleted

C:\Users\TURCA\AppData\Roaming\ProductData deleted

C:\PROGRA~3\ProductData deleted

C:\PROGRA~3\Package Cache deleted

C:\Users\TURCA\AppData\Local\Wondershare deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted

C:\windows\SysNative\tasks\060184C3-9766-46a0-B258-F4518A0B2633 deleted

C:\Windows\SysNative\config\systemprofile\Searches deleted

"C:\Users\TURCA\AppData\Roaming\Shuame\.clientid" deleted

"C:\Users\TURCA\AppData\Roaming\Shuame" deleted

 

==== Firefox Start and Search pages ======================

 

ProfilePath: C:\Users\TURCA\AppData\Roaming\Mozilla\Firefox\Profiles\7zz08324.default

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.newtab.url", "about:newtab");

 

==== Firefox Extensions Registry ======================

 

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [14/02/2015 21:38]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"{87F8774F-B485-47E2-A755-A40A8A5E8873}"="C:\Users\TURCA\AppData\Local\GAS Tecnologia\GBBD\uni\xpi" [11/04/2015 11:31]

 

==== Firefox Extensions ======================

 

ProfilePath: C:\Users\TURCA\AppData\Roaming\Mozilla\Firefox\Profiles\7zz08324.default

- Guardio - Ita 30 horas - C:\Users\TURCA\AppData\Local\GAS Tecnologia\GBBD\uni\xpi

- DownThemAll - %ProfilePath%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi

 

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi

 

==== Firefox Plugins ======================

 

Profilepath: C:\Users\TURCA\AppData\Roaming\Mozilla\Firefox\Profiles\7zz08324.default

F6419D3B99616C80C947B9D7B427348B - C:\Users\TURCA\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll - Guardião Itaú 30 horas

08ACECEB47FAF053C468D8AFE44709AD - C:\Users\TURCA\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll - Google Update

B8CFF778A75C685AAC275BFC00BB8FD8 - C:\Users\TURCA\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dll - Guardião Itaú 30 horas

 

 

==== Chromium Look ======================

 

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[14/02/2015 20:36]

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/05/2015 11:17]

 

MEGA - TURCA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod

Bookmark Manager - TURCA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik

Avast Online Security - TURCA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

GBBD Guardião - Itaú 30 horas - TURCA\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg

Chrome Hotword Shared Module - TURCA\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg

Skype Click to Call - TURCA\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

 

==== Chromium Fix ======================

 

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopping.tray.com.br_0.localstorage deleted successfully

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopping.tray.com.br_0.localstorage-journal deleted successfully

 

==== Set IE to Default ======================

 

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Old Start Page"="http://www.google.com"

 

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]


 

==== All HKCU SearchScopes ======================

 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

 

==== Reset Google Chrome ======================

 

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.bad was reset successfully

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

 

==== shortcuts on Users Desktops ======================

 

C:\Users\TURCA\Desktop\AdvanceBox.lnk - C:\AdvanceBox Turbo Flasher\AdvanceBox.exe 

C:\Users\TURCA\Desktop\Atentication.lnk - D:\Datweb\Atentication.exe 

C:\Users\TURCA\Desktop\ATFJ.lnk - C:\AdvanceBox Turbo Flasher\ATFJ.exe 

C:\Users\TURCA\Desktop\Auslogics DiskDefrag.lnk - C:\Program Files (x86)\Auslogics\DiskDefrag\DiskDefrag.exe 

C:\Users\TURCA\Desktop\AvatorBox old.lnk - C:\PROGRAMAS\AVATOR\Avatorbox_ver7.832\AvatorBox.exe 

C:\Users\TURCA\Desktop\AvatorBox.lnk - C:\PROGRAMAS\AVATOR\Avatorbox_Ver7.901\AvatorBox.exe 

C:\Users\TURCA\Desktop\BACKUP ITUNES.lnk - C:\Users\TURCA\AppData\Roaming\Apple Computer\MobileSync\Backup 

C:\Users\TURCA\Desktop\CHINES.lnk - D:\BACKUP TURCATTO\CHINESSE\CHINES.txt 

C:\Users\TURCA\Desktop\DataPro.lnk - C:\PROGRAMAS\MERAPITOOL\DataPro\DataPro.exe 

C:\Users\TURCA\Desktop\DC-Unlocker client.lnk - C:\Program Files (x86)\DC-Unlocker\dc-unlocker2client.exe 

C:\Users\TURCA\Desktop\dc_ZTE_routers.lnk - C:\PROGRAMAS\DC-UNLOCKER\dc_ZTE_routers.exe 

C:\Users\TURCA\Desktop\Disco Local (F) - Atalho.lnk - F:\ 

C:\Users\TURCA\Desktop\etc - Atalho.lnk - C:\Windows\System32\drivers\etc 

C:\Users\TURCA\Desktop\FLASH_TOOL.lnk - C:\PROGRAMAS\SP_Flash_Tool_exe_Windows_v5.1444.00.000\flash_tool.exe 

C:\Users\TURCA\Desktop\Google Chrome.lnk - C:\Users\TURCA\AppData\Local\Google\Chrome\Application\chrome.exe 

C:\Users\TURCA\Desktop\GPGeMMC.lnk - C:\PROGRAMAS\GPGeMMC\GPGeMMC.exe 

C:\Users\TURCA\Desktop\Hard Disk Low Level Format Tool.lnk - C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE 

C:\Users\TURCA\Desktop\iPhone Software Updates - Atalho.lnk - C:\Users\TURCA\AppData\Roaming\Apple Computer\iTunes\iPhone Software Updates 

C:\Users\TURCA\Desktop\Itaú.lnk -  

C:\Users\TURCA\Desktop\Jurassic UniAndroid.lnk - C:\Users\TURCA\Documents\Jurassic\Jurassic UniAndroid.exe 

C:\Users\TURCA\Desktop\LGE Tool.lnk - C:\Program Files (x86)\LGE Tool\LGETool.exe 

C:\Users\TURCA\Desktop\Local Disk (F).lnk - F:\ 

C:\Users\TURCA\Desktop\LogoMaker.lnk - C:\Program Files (x86)\Studio V5\LogoMaker\LogoMaker.exe 

C:\Users\TURCA\Desktop\MerapiTool.lnk - C:\PROGRAMAS\MERAPITOOL\MerapiTool.exe 

C:\Users\TURCA\Desktop\MV AntiSpy.lnk - F:\PROGRAMAS PC\REPARO REGISTRO\VELASCO\MV-AntiSpy_40.exe 

C:\Users\TURCA\Desktop\Octoplus LG Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_LG\OctoplusLG.exe 

C:\Users\TURCA\Desktop\Octoplus Samsung Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Samsung\OctoplusSamsung.exe 

C:\Users\TURCA\Desktop\Octoplus Suite.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Suite\OctoplusSuite.exe 

C:\Users\TURCA\Desktop\Odin3 v3.07.lnk - C:\PROGRAMAS\ODIN\Odin_v3.07\Odin3 v3.07.exe 

C:\Users\TURCA\Desktop\Odin3 v3.09.3.lnk - C:\PROGRAMAS\ODIN\Odin3_v3.09.3\Odin3 v3.09.3.exe 

C:\Users\TURCA\Desktop\Odin3 v3.10.6.lnk - C:\PROGRAMAS\ODIN\Odin3_v3.10.6\Odin3 v3.10.6.exe 

C:\Users\TURCA\Desktop\PRODUCTS.lnk - C:\Program Files (x86)\Nokia\Phoenix\Products 

C:\Users\TURCA\Desktop\PROGRAMAS.lnk - C:\PROGRAMAS 

C:\Users\TURCA\Desktop\ResearchDownload_2.9.8004.lnk - D:\BACKUP TURCATTO\CHINESSE\FLASH\SPD\ResearchDownload_2.9.8004\Bin\ResearchDownload.exe 

C:\Users\TURCA\Desktop\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 

C:\Users\TURCA\Desktop\SHOficina5.lnk - C:\SHARMAQ\SHOficina\shoficina3.exe 

C:\Users\TURCA\Desktop\SHVendas.lnk - C:\SHARMAQ\SHOficina\shvenda.exe 

C:\Users\TURCA\Desktop\SRSRoot for Android.lnk - C:\Program Files (x86)\SRSRoot\SRS-One-Click-Root.exe 

C:\Users\TURCA\Desktop\VolcanoTool 2.3.3.lnk - C:\PROGRAMAS\VOLCANO 2.3.3\VolcanoTool.exe 

C:\Users\TURCA\Desktop\VolcanoTool.lnk - C:\PROGRAMAS\VOLCANO\VolcanoTool.exe 

C:\Users\TURCA\Desktop\VolcanoUtility.lnk - C:\PROGRAMAS\VOLCANO\VolcanoUtility.exe 

C:\Users\TURCA\Desktop\WriteIMEI.lnk - D:\BACKUP TURCATTO\CHINESSE\FLASH\SPD\WRITEIMEI_R1.5.9001\WriteIMEI.exe 

C:\Users\TURCA\Desktop\XperiFirm.lnk - F:\SONY ERICSSON\FLASH\XperiFirm\XperiFirm.exe 

C:\Users\UpdatusUser\Desktop\InfinityBox BEST.lnk - C:\InfinityBox\BEST\BEST.exe 

 

==== shortcuts on All Users Desktop ======================

 

C:\Users\Public\Desktop\Activator.lnk - C:\Program Files (x86)\SPT\Activator\activator.exe 

C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe 

C:\Users\Public\Desktop\ANAT.lnk - C:\ANAT2\NAT.exe 

C:\Users\Public\Desktop\ASANSAM QCN.lnk - C:\ASANSAM2\ASANQCN.exe 

C:\Users\Public\Desktop\ASANSAM.lnk - C:\ASANSAM2\ASANSAM.exe 

C:\Users\Public\Desktop\ASF.lnk - C:\ASF3\ASF.exe 

C:\Users\Public\Desktop\Assistente Pimaco.lnk - C:\Pimaco\Pimaco.docm 

C:\Users\Public\Desktop\Avast Free antivírus.lnk - C:\Program Files (x86)\AVAST Software\Avast\AvastUI.exe 

C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe 

C:\Users\Public\Desktop\InfinityBox CM2MTK.lnk - C:\InfinityBox\CM2MTK\CM2MTK.exe 

C:\Users\Public\Desktop\InfinityBox CM2SPD.lnk - C:\InfinityBox\CM2SPD\CM2SPD.exe 

C:\Users\Public\Desktop\IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe 

C:\Users\Public\Desktop\iRoot.lnk - C:\Program Files (x86)\iRoot\Root.exe 

C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe 

C:\Users\Public\Desktop\Launch Nokia Care Suite.lnk - C:\Program Files (x86)\Nokia\Nokia Care Suite\Application Launcher\bin\ApplicationLauncher.exe 

C:\Users\Public\Desktop\LayOut 2015.lnk - C:\Program Files (x86)\SketchUp\SketchUp 2015\LayOut\LayOut.exe 

C:\Users\Public\Desktop\Lumia Software Recovery Tool.lnk - C:\Windows\Installer\{3BF5D67C-72FA-4148-926E-E01E4E79E054}\DefaultApplicationIcon.ico 

C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe 

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 

C:\Users\Public\Desktop\MV Defrag 1.9.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV Defrag 1.9\MVDEFRAG.EXE 

C:\Users\Public\Desktop\MV RegClean 6.9.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV RegClean 6.9\MVREGCLEAN.EXE 

C:\Users\Public\Desktop\MV RegCompact 1.3.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV RegCompact 1.3\MVREGCOMPACT.EXE 

C:\Users\Public\Desktop\Nokia Data Package Manager.lnk - C:\Program Files (x86)\Nokia\Nokia Care Suite\Data Package Manager\bin\DataPackageManager.exe 

C:\Users\Public\Desktop\RIFF Box JTAG Manager.lnk - C:\Program Files (x86)\RIFF Box JTAG Manager\JTAGManager.exe 

C:\Users\Public\Desktop\RSD Lite.lnk - C:\Windows\Installer\{8F4A334E-D1B5-45D1-9C1A-3D1B97327E49}\_CDFF3DEB911FF6BC88C77E.exe 

C:\Users\Public\Desktop\Samsung Kies (Lite).lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe /lite

C:\Users\Public\Desktop\Samsung Kies.lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe 

C:\Users\Public\Desktop\SDFormatter.lnk - C:\Program Files (x86)\SDA\SD Formatter\SDFormatter.exe 

C:\Users\Public\Desktop\SigmaKey.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\SigmaKey.exe 

C:\Users\Public\Desktop\SketchUp 2015.lnk - C:\Program Files (x86)\SketchUp\SketchUp 2015\SketchUp.exe 

C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe 

C:\Users\Public\Desktop\smATool.lnk - C:\Avator-Dongle\smATool\smATool.exe 

C:\Users\Public\Desktop\Sonork.lnk - C:\Program Files (x86)\Sonork\sonork.exe 

C:\Users\Public\Desktop\SPT.lnk - C:\Program Files (x86)\SPT\SPT.exe 

C:\Users\Public\Desktop\Style Builder 2015.lnk - C:\Program Files (x86)\SketchUp\SketchUp 2015\Style Builder\Style Builder.exe 

C:\Users\Public\Desktop\TeamViewer 10.lnk - C:\Program Files (x86)\TeamViewer\TeamViewer.exe 

C:\Users\Public\Desktop\VIVO Internet e TV Digital.lnk - C:\Program Files (x86)\VIVO Internet e TV Digital\Vivo 3G.exe 

C:\Users\Public\Desktop\Windows Phone Recovery Tool.lnk - C:\Windows\Installer\{C0EBDE9F-D24C-4563-B6A1-1B99929E4D6C}\DefaultApplicationIcon.ico 

C:\Users\Public\Desktop\Wondershare Dr.Fone for Android.lnk - C:\Program Files (x86)\Wondershare\Dr.Fone para Android\DrFoneAndroid.exe 

C:\Users\Public\Desktop\Zune.lnk - C:\Program Files (x86)\Zune\Zune.exe 

 

==== shortcuts in Users Start Menu ======================

 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú\Desinstalador.lnk -  

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú\Itaú.lnk -  

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool\Flashtool.lnk - C:\Flashtool\FlashTool.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool\Flashtool64.lnk - C:\Flashtool\FlashTool64.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool\Uninstall Flashtool.lnk - C:\Flashtool\uninstall.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\TURCA\AppData\Local\Google\Chrome\Application\chrome.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe -hunter

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revo Uninstaller.url 

 

==== shortcuts in All Users Start Menu ======================

 

C:\ProgramData\Microsoft\Windows\Start Menu\MV Defrag 1.9.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV Defrag 1.9\MVDEFRAG.EXE 

C:\ProgramData\Microsoft\Windows\Start Menu\MV RegCompact 1.3.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV RegCompact 1.3\MVREGCOMPACT.EXE 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1046-7B44-AB0000000001}\SC_Reader.ico 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk - C:\Program Files (x86)\TeamViewer\TeamViewer.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Bluetooth File Transfer Wizard.lnk - C:\Windows\System32\fsquirt.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP2010\Assistente Pimaco.lnk - C:\Pimaco\Pimaco.docm 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP2010\CadEtiq.lnk - C:\CadEtiq\CadEtiq.docx 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP2010\CDpply A4.lnk - C:\Template\CDpply A4.dotm 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP2010\CDpply Carta.lnk - C:\Template\CDpply Carta.dotm 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP2010\Desinstalar.lnk - C:\Windows\SysWOW64\msiexec.exe /x {1E040F6A-6DC9-4DCF-819C-FCFE720B6097}

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics\DiskDefrag\Auslogics DiskDefrag.lnk - C:\Program Files (x86)\Auslogics\DiskDefrag\DiskDefrag.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avator-Dongle\smATool.lnk - C:\Avator-Dongle\smATool\smATool.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avator-Dongle\Uninstall Avator-Dongle smATool.lnk - C:\Avator-Dongle\smATool\uninstall.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Download required drivers.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\drivers\Drivers.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\End-User License Agreement (IMEI).lnk - C:\Program Files (x86)\GsmServer\SigmaKey\IMEI.rtf 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\End-User License Agreement.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\EULA.rtf 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\SigmaKey USB Dongle Driver.lnk - C:\Windows\explorer.exe C:\Program Files (x86)\GsmServer\SigmaKey\drivers\AU9540DrvPkg V1.7.26.0_WHQL

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\SigmaKey.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\SigmaKey.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Manuals\Broadcom manual.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\brcm_man.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Manuals\MTK manual.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\mtk_man.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Manuals\Qualcomm manual.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\qcom_man.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Manuals\Supported models.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\supp_models.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Manuals\Texas Instruments manual.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\ti_man.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Manuals\Video manuals.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\video_man.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Social media\add us to your Circles and get all of our updates directly.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\GooglePlus.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Social media\Connect with other professionals, share information.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\Facebook.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Social media\Follow us on Twitter.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\Twitter.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Social media\Official forum.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\forum.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GsmServer\Sigma Key\Social media\Watch tutorials of unlock operations.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\video_man.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Low Level Format Tool\Hard Disk Low Level Format Tool on the Web.lnk - C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Low Level Format Tool\Hard Disk Low Level Format Tool.lnk - C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Low Level Format Tool\Uninstall Hard Disk Low Level Format Tool.lnk - C:\Program Files (x86)\HDDGURU LLF Tool\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfinityBox\BEST\InfinityBox BEST.lnk - C:\InfinityBox\BEST\BEST.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfinityBox\BEST\Uninstall InfinityBox BEST.lnk - C:\InfinityBox\BEST\BEST_uninstall.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfinityBox\CM2MTK\InfinityBox CM2MTK.lnk - C:\InfinityBox\CM2MTK\CM2MTK.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfinityBox\CM2MTK\Uninstall InfinityBox CM2MTK.lnk - C:\InfinityBox\CM2MTK\CM2MTK_uninstall.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Android Device USB driver\Uninstall.lnk - C:\Program Files (x86)\Intel Android Device USB driver\uninst.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel DnX USB Driver\Uninstall DnX USB Driver.lnk - C:\Program Files\Intel\xFSTK\DnXUSBDriver\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\Uninstall IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallDisplay.exe uninstall_start

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iRoot\iRoot.lnk - C:\Program Files (x86)\iRoot\Root.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iRoot\Uninstall iRoot.lnk - C:\Program Files (x86)\iRoot\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Sobre o iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.Resources\pt.lproj\About iTunes.rtf 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGETool\LGE Tool.lnk - C:\Program Files (x86)\LGE Tool\LGETool.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Desinstalar Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marcos Velasco Security\MV Defrag 1.9.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV Defrag 1.9\MVDEFRAG.EXE 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marcos Velasco Security\MV RegCompact 1.3.lnk - C:\Program Files (x86)\Marcos Velasco Security\MV RegCompact 1.3\MVREGCOMPACT.EXE 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft\Lumia Software Recovery Tool\Lumia Software Recovery Tool.lnk - C:\Windows\Installer\{3BF5D67C-72FA-4148-926E-E01E4E79E054}\DefaultApplicationIcon.ico 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft\Windows Phone Recovery Tool\Windows Phone Recovery Tool.lnk - C:\Windows\Installer\{C0EBDE9F-D24C-4563-B6A1-1B99929E4D6C}\DefaultApplicationIcon.ico 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia\Nokia Care Suite\Nokia Data Package Manager.lnk - C:\Program Files (x86)\Nokia\Nokia Care Suite\Data Package Manager\bin\DataPackageManager.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia\Nokia Care Suite 5\Launch Nokia Care Suite.lnk - C:\Program Files (x86)\Nokia\Nokia Care Suite\Application Launcher\bin\ApplicationLauncher.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia\Nokia Care Suite 5\Troubleshooting.lnk - C:\Program Files (x86)\Nokia\Troubleshooting\Troubleshooting.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia\Nokia Care Suite 5\Uninstall Nokia Care Suite.lnk - C:\Windows\System32\msiexec.exe /x{6DD01BF0-18A3-4608-BBB1-AE6C956EDCC2} 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octoplus\Octoplus LG\Desinstalar Octoplus tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_LG\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octoplus\Octoplus LG\Octoplus LG Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_LG\OctoplusLG.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octoplus\Octoplus LG\Update dongle.lnk - C:\Program Files (x86)\Octoplus\Octoplus_LG\LGUpdater.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octoplus\Octoplus Samsung\Desinstalar Octoplus Samsung Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Samsung\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octoplus\Octoplus Samsung\Octoplus Samsung Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Samsung\OctoplusSamsung.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octoplus\Octoplus Samsung\Update dongle.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Samsung\Updater.exe update

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter\SDFormatter.lnk - C:\Program Files (x86)\SDA\SD Formatter\SDFormatter.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHOficina\SHAgenda.lnk - C:\SHARMAQ\SHOficina\SHAgenda.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHOficina\SHEstoque.lnk - C:\SHARMAQ\SHOficina\shestoque.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHOficina\SHOficina na Web.lnk - C:\SHARMAQ\SHOficina\AutoBackups\SHOficina.url 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHOficina\SHOficina.lnk - C:\SHARMAQ\SHOficina\shoficina3.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHOficina\SHVendas.lnk - C:\SHARMAQ\SHOficina\shvenda.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHOficina\Uninstall SHOficina.lnk - C:\SHARMAQ\SHOficina\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPT\SPT.lnk - C:\Program Files (x86)\SPT\SPT.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPT\Uninstall  SPT.lnk - C:\Program Files (x86)\SPT\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPT\Uninstall SPT.lnk - C:\Program Files (x86)\SPT\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRSROOT\SRSRoot for Android.lnk - C:\Program Files (x86)\SRSRoot\SRS-One-Click-Root.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRSROOT\Uninstall Simlock Remote Client.lnk - C:\Program Files (x86)\SRSRoot\unins000.exe 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIVO Internet e TV Digital\Desinstalar.lnk - C:\Program Files (x86)\InstallInfo\Setup\data.exe -l0x%x -removeonly

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIVO Internet e TV Digital\VIVO Internet e TV Digital.lnk - C:\Program Files (x86)\VIVO Internet e TV Digital\Vivo 3G.exe 

 

==== shortcuts in Quick Launch ======================

 

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\dc-unlocker client.lnk - C:\Program Files (x86)\DC-Unlocker\dc-unlocker2client.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Users\TURCA\AppData\Local\Google\Chrome\Application\chrome.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Hard Disk Low Level Format Tool.lnk - C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Nokia Care Suite.lnk - C:\Program Files (x86)\Nokia\Nokia Care Suite\Application Launcher\bin\ApplicationLauncher.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\LGE Tool.lnk - C:\Program Files (x86)\LGE Tool\LGETool.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Octoplus Box Samsung software.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Samsung\OctoplusSamsung.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Octoplus Suite.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Suite\OctoplusSuite.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Octopus LG Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_LG\OctoplusLG.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies (Lite).lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe /lite

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Uninstall Programs.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AdvanceBox.lnk - C:\AdvanceBox Turbo Flasher\AdvanceBox.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AvatorBox.lnk - C:\PROGRAMAS\AVATOR\Avatorbox_Ver7.901\AvatorBox.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\DataPro - Atalho.lnk - C:\PROGRAMAS\MERAPITOOL\DataPro\DataPro.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\TURCA\AppData\Local\Google\Chrome\Application\chrome.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\InfinityBox BEST.lnk - C:\InfinityBox\BEST\BEST.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Itaú.lnk -  

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Octoplus LG Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_LG\OctoplusLG.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Octoplus Samsung Tool.lnk - C:\Program Files (x86)\Octoplus\Octoplus_Samsung\OctoplusSamsung.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\SigmaKey.lnk - C:\Program Files (x86)\GsmServer\SigmaKey\SigmaKey.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\SPT.lnk - C:\Program Files (x86)\SPT\SPT.exe 

C:\Users\TURCA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 

C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  

C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Uninstall Programs.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe 

 

==== Reset IE Proxy ======================

 

Value(s) before fix:

"ProxyEnable"=dword:00000000

 

Value(s) after fix:

"ProxyEnable"=dword:00000000

 

==== Deleting Registry Keys ======================

 

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully

 

==== Empty IE Cache ======================

 

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\TURCA\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\TURCA\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

 

==== Empty FireFox Cache ======================

 

C:\Users\TURCA\AppData\Local\Mozilla\Firefox\Profiles\7zz08324.default\cache2 emptied successfully

 

==== Empty Chrome Cache ======================

 

C:\Users\TURCA\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

 

==== Empty All Flash Cache ======================

 

Flash Cache Emptied Successfully

 

==== Empty All Java Cache ======================

 

No Java Cache Found

 

==== C:\zoek_backup content ======================

 

C:\zoek_backup (files=506 folders=118 275790983 bytes)

 

==== Empty Temp Folders ======================

 

C:\Users\Default\AppData\Local\temp emptied successfully

C:\Users\Default User\AppData\Local\temp emptied successfully

C:\Users\Public\AppData\Local\temp emptied successfully

C:\Users\TURCA\AppData\Local\Temp will be emptied at reboot

C:\Users\UpdatusUser\AppData\Local\temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

 

==== After Reboot ======================

 

==== Empty Temp Folders ======================

 

C:\Windows\Temp successfully emptied

C:\Users\TURCA\AppData\Local\Temp successfully emptied

 

==== Empty Recycle Bin ======================

 

C:\$RECYCLE.BIN successfully emptied

 

==== Deleting Files / Folders ======================

 

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

 

==== EOF on 05/06/2015 at 16:55:37,60 ======================

 

 

 

 


Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:02:18, on 05/06/2015

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.17801)

Boot mode: Normal

 

Running processes:

C:\PROGRA~2\GbPlugin\GbpSv.exe

C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe

C:\Program Files\AVAST Software\Avast\avastui.exe

C:\Program Files (x86)\Sonork\sonork.exe

C:\Users\TURCA\Desktop\HijackThis.exe

C:\Windows\SysWOW64\DllHost.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

O1 - Hosts: ::1 localhost

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: G-Buster Browser Defense Itaú Unibanco - {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [sonork] "C:\Program Files (x86)\Sonork\sonork.exe" -auto

O4 - HKCU\..\Run: [sH_AutoBackup] C:\SHARMAQ\SHOficina\SHRecovery.exe /BACKUP

O4 - HKUS\S-1-5-21-663725323-701994921-2557688371-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')

O4 - HKUS\S-1-5-21-663725323-701994921-2557688371-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')

O8 - Extra context menu item: &Enviar para o OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: www.google.com.br

O15 - Trusted Zone: www.itau.b.br

O15 - Trusted Zone: *.itau.b.br

O15 - Trusted Zone: bankline.itau.com.br

O15 - Trusted Zone: banklineplus.itau.com.br

O15 - Trusted Zone: clickbanking.itau.com.br

O15 - Trusted Zone: guardiao.itau.com.br

O15 - Trusted Zone: www.itau.com.br

O15 - Trusted Zone: http://www.itau.com.br

O15 - Trusted Zone: *.itau.com.br

O15 - Trusted Zone: www.itaupersonnalite.com.br


O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - Winlogon Notify:  GbPluginUni - C:\Program Files (x86)\GbPlugin\gbiehUni.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: ADU Service (Nokia Software Recovery Tool) (ADUServiceNSRT) - Unknown owner - C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! antivírus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Serviço do Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: ftusbsrvc - FabulaTech - C:\Windows\SysWOW64\ftusbsrvc.exe

O23 - Service: Gbp Service (GbpSv) - GAS Tecnologia - C:\PROGRA~2\GbPlugin\GbpSv.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

O23 - Service: Motorola Device Manager Service (Motorola Device Manager) - Motorola Mobility LLC - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: PST Service - Motorola - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe

O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: Warsaw Technology - Unknown owner - (no file)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 10019 bytes

 

 

valeu novamente

Compartilhar este post


Link para o post
Compartilhar em outros sites

Ok, o PC está limpo (Y)

Finalizando.......

Vá até Iniciar > Executar > digite (ou copie e cole): ComboFix /Uninstall

2egd02b.png

Dê o OK. Aguarde, pois isso desinstalará o ComboFix.

Limpe a Restauração do Sistema, criando um Ponto de Restauração do sistema limpo.

Clique com o botão direito do mouse em cima do MEU COMPUTADOR > Propiedades > Proteção do Sistema > Configurar > Excluir.Ainda em Proteção do Sistema > Criar.


assinatura-mrmillion.png65301516_windows-insider-mvp-logo(Custom).png.36263cb7b506cc6935fb37f39e504cec.png

Compartilhar este post


Link para o post
Compartilhar em outros sites

×
×
  • Criar Novo...