cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Rapport de ZHPFix 2014.10.24.12 par Nicolas Coolman, Update du 24/10/2014
Fichier d'export Registre :
Run by Cliente at 14/05/2015 16:43:36
High Elevated Privileges : OK
Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601)

Reciclagem vazia (00mn 04s)
Prefetcher vazio
Repara��o de atalhos do navegador

========== Estado dos servi�os ==========
NCUPONSDRV Parado
SSFILTERDRV Parado
SpyHunter 4 Service Parado
WindowsMangerProtect Parado
AppMgr2.72.4772429 Parado
ST2012_Svc Parado
BBUpdateServi�o n�o configurado (demand)

========== Chaves do Registo ==========
Ramo Base de Registos IFEO n�o infetado !
ELIMIN�: CLSID BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f}
ELIMIN�: [HKLM\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
ELIMIN�: [HKLM\SOFTWARE\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}]
ELIMIN�: Service: SpyHunter 4 Service
ELIMIN�: Service: WindowsMangerProtect
ELIMIN�: Service: AppMgr2.72.4772429
ELIMIN� Driver Key: ncuponsdrv
ELIMIN� Driver Key: ssfilterdrv
ELIMIN�: [HKLM\Software\Classes\Installer\Products\\5923976166327F040A543A4EA21863E5]
ELIMIN�: [HKLM\Software\Classes\Installer\Features\5923976166327F040A543A4EA21863E5]
ELIMIN�: Service: BBSvc
ELIMIN�: Service: BBUpdate
ELIMIN�: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
ELIMIN�: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
ELIMIN�: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
ELIMIN�: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
ELIMIN�: HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
ELIMIN�: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
ELIMIN�: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
ELIMIN�: HKCU\Software\APN PIP
ELIMIN�: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
ELIMIN�: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
ELIMIN�: HKLM\Software\AskPartnerNetwork
ELIMIN�: HKLM\Software\Conduit
ELIMIN�: HKCU\Software\AnyProtect
ELIMIN�: HKCU\Software\HomeTab
ELIMIN�: HKCU\Software\SearchProtectWS
ELIMIN�: HKCU\Software\SimplyTech
ELIMIN�: HKCU\Software\WajIEnhance
ELIMIN�: HKLM\Software\EnigmaSoftwareGroup
ELIMIN�: HKLM\Software\Iminent
ELIMIN�: HKLM\Software\SupDp
ELIMIN�: HKLM\Software\mystartsearchSoftware
ELIMIN�: HKLM\Software\supWindowsMangerProtect
ELIMIN�: HKLM\Software\AIM Toolbar

========== Valores do Registo ==========
Ausente Valor Perfil Dom�nio FirewallRaz :
ELIMIN�: FirewallRaz (Private) : TCP Query User{B00856EF-9D7A-48F1-8092-C86EBC805FB5}C:\program files\cabal online (brasil)\launcher\launcher.exe
ELIMIN�: FirewallRaz (Private) : UDP Query User{F3D76E02-CD75-4028-B1EA-94848AC98B9A}C:\program files\cabal online (brasil)\launcher\launcher.exe
ELIMIN�: FirewallRaz (Private) : TCP Query User{2403E963-DB4E-425E-A1A6-ECB6A7E79966}C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
ELIMIN�: FirewallRaz (Private) : UDP Query User{17177E1B-4AD7-4B2B-9F24-ECD501CC5FAA}C:\level up! games\warface\launcher\tools\aria2-1.16.3-win-32bit-build1\aria2c.exe
ELIMIN�: FirewallRaz (None) : {AB45003B-A52C-4108-8A4A-06DFFDDBDFB7}
ELIMIN�: FirewallRaz (Public) : TCP Query User{46E71B10-74EF-4828-8023-0DCC11027B60}C:\program files\ncwest\nclauncher\ncupdatehelper.exe
ELIMIN�: FirewallRaz (Public) : UDP Query User{0E7BDC1F-86D6-4574-BD22-7568AABB7C79}C:\program files\ncwest\nclauncher\ncupdatehelper.exe
ProxyFix : Configura��o proxy removida com sucesso
ELIMIN� ProxyServer Value
ELIMIN� ProxyEnable Value
ELIMIN� EnableHttp1_1 Value
ELIMIN� ProxyHttp1.1 Value
ELIMIN� ProxyOverride Value
ELIMIN�: Toolbar: {8dcb7100-df86-4384-8842-8fa844297b3f}

========== Elementos dos dados do Registo ==========
ELIMIN�: R0 - Main,Start Page = KCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page
ELIMIN�: R0 - Main,Start Page = KLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page
ELIMIN�: R1 Search Page = http://www.mystartsearch.com/?type=hp&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE
ELIMIN�: R1 Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE&q={searchTerms}
ELIMIN�: R1 Search Page = <-loopback>

========== Pastas ==========
ELIMIN� Tempor�rios windows (6)
ELIMIN� Flash Cookies (0)
ELIMIN�: C:\Program Files\Spybot - Search & Destroy 2
ELIMIN�: C:\ProgramData\Spybot - Search & Destroy
ELIMIN�: c:\program files\anyprotectex
ELIMIN�: c:\program files\wajam
ELIMIN�: c:\programdata\mailupdate
ELIMIN�: c:\programdata\windowsmangerprotect
ELIMIN�: c:\users\cliente\appdata\roaming\anyprotectex
ELIMIN�: c:\users\cliente\appdata\roaming\enigma software group
ELIMIN�: c:\users\cliente\appdata\roaming\mailupdate
ELIMIN�: c:\users\cliente\appdata\roaming\mystartsearch
ELIMIN�: c:\users\cliente\appdata\local\apps

========== Ficheiros ==========
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\windows\start menu\programs\internet explorer.lnk ((http://www.mystartsearch.com/?type=sc&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE))
CRIADO: C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\internet explorer.lnk ((http://www.mystartsearch.com/?type=sc&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE))
CRIADO: C:\Users\Cliente\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\internet explorer (no add-ons).lnk ((http://www.mystartsearch.com/?type=sc&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE))
CRIADO: C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\internet explorer\quick launch\launch internet explorer browser.lnk ((http://www.mystartsearch.com/?type=sc&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE))
CRIADO: C:\Users\Cliente\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\google chrome.lnk ((http://www.mystartsearch.com/?type=sc&ts=1431597407&z=f21dac862621cc53245ee40g7zec2g3w4t3m9cdmdo&from=slbnew&uid=MAXTORXSTM3160215AS_5RA65RVEXXXX5RA65RVE))
ELIMIN� Tempor�rios windows (79) (7.092.094 octets)
ELIMIN� Flash Cookies (0) (0 octets)
ELIMIN�: c:\program files\microsoft\bingbar\7.1.362.0\bingext.dll
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\internet explorer\quick launch\launch internet explorer browser.lnk (http://www.mystartsearch.com)
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\internet explorer (2).lnk (http://www.mystartsearch.com)
CRIADO: C:\Users\Cliente\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\internet explorer.lnk (http://www.mystartsearch.com)
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\windows\start menu\programs\internet explorer.lnk (http://www.mystartsearch.com)
ELIMIN�: c:\users\cliente\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\internet explorer (no add-ons).lnk (http://www.mystartsearch.com)
ELIMINA REINICIAR: c:\programdata\windowsmangerprotect\protectwindowsmanager.exe
ELIMIN�: c:\windows\system32\drivers\ssfilterdrv.sys
ELIMIN�: c:\windows\system32\drivers\esgscanner.sys
ELIMIN�: c:\windows\system32\drivers\ncuponsdrv.sys
ELIMIN�: c:\users\cliente\appdata\roaming\enigma software group\sh_installer.exe
ELIMIN�: c:\users\cliente\appdata\roaming\mailupdate\mailupdate.exe
ELIMIN�: c:\users\cliente\appdata\roaming\mystartsearch\uninstallmanager.exe
ELIMIN�: c:\users\cliente\appdata\local\apps\2.0\1zr0j426.bqh\bldhjjz8.zlg\inst...app_86fd5b6b43e66935_0001.0003_3acec3780f16ae88\clickonce_bootstrap.exe
ELIMIN�: c:\users\cliente\appdata\local\apps\2.0\1zr0j426.bqh\bldhjjz8.zlg\inst...app_86fd5b6b43e66935_0001.0003_3acec3780f16ae88\googleupdatesetup.exe
ELIMINA REINICIAR: c:\program files\microsoft\bingbar\7.1.362.0\bbsvc.exe
ELIMIN�: c:\program files\microsoft\bingbar\7.1.362.0\seaport.exe
ELIMIN�: C:\Windows\Installer\66a412.msi

========== Tarefa planificada ==========
ELIMIN�: SpyHunter4Startup

========== Pastas/Ficheiros ocultos restaurados ==========
Mes images (My Pictures) : 0
Ma musique (My Music) : 0
Ma Video (My Video) : 0
Mes Favoris (My Favorites) : 0
Mes Documents (My Documents) : 0
Mon Bureau (My Desktop) : 0
Menu demarrer (Programs) : 0
Dossier utilisateur (AppData) : 28 restaurados com sucesso
Programmes (Program Files) : 2 restaurados com sucesso


========== Recapitulativo ==========
36 : Chaves do Registo
15 : Valores do Registo
5 : Elementos dos dados do Registo
13 : Pastas
30 : Ficheiros
7 : Estado dos servi�os
1 : Tarefa planificada
30 : Pastas/Ficheiros ocultos restaurados


End of clean in 00mn 51s

========== Caminho do ficheiro do relat�rio ==========
C:\Users\Cliente\AppData\Roaming\ZHP\ZHPFix[R1].txt - 10/05/2015 12:15:09 [2063]
C:\Users\Cliente\AppData\Roaming\ZHP\ZHPFix[R2].txt - 14/05/2015 16:42:21 [1771]
C:\Users\Cliente\AppData\Roaming\ZHP\ZHPFix[R3].txt - 14/05/2015 16:43:41 [10072]

Publicité


Signaler le contenu de ce document

Publicité