cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=c7a2d1bdc5638d6c6c3862d75b80db9a
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=c7a2d1bdc5638d6c6c3862d75b80db9a
HKU\S-1-5-21-2225947846-1434423812-2591476607-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=c7a2d1bdc5638d6c6c3862d75b80db9a
SearchScopes: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001 -> {1C3F9319-7675-46A6-B4E4-029231949D8F} URL =
SearchScopes: HKU\S-1-5-21-2225947846-1434423812-2591476607-1001 -> {37925E00-B790-4DB2-B1A2-C8002B088EF1} URL = hxxps://br.search.yahoo.com/search?fr=mcafee&type=C011BR826D20150203&p={searchTerms}
CHR StartupUrls: Default -> "hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&guid=c7a2d1bdc5638d6c6c3862d75b80db9a"
CHR Extension: (Avast SafePrice) - C:\Users\fabinho\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-22]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
2015-01-29 08:59 - 2015-01-29 08:59 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-09-19 21:48 - 2016-09-19 21:48 - 00254280 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2016-09-19 21:48 - 2016-09-19 21:48 - 00565064 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
2016-09-19 21:48 - 2016-09-19 21:48 - 00964936 _____ () C:\Program Files\ByteFence\rtop\bin\inject.dll
2016-09-25 11:33 - 2016-09-25 11:33 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-04-12 19:02 - 2014-04-12 19:02 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-04-12 18:58 - 2014-04-12 18:59 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-04-12 18:59 - 2014-04-12 19:00 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-04-12 19:00 - 2014-04-12 19:02 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-04-12 18:57 - 2014-04-12 18:57 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Task: {01636D60-11C4-4BF5-AB2D-AC1933908B55} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Nenhum Arquivo <==== ATENÇÃO
Task: {17BD017B-BE32-4E6F-985F-B2B24F4ABD68} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {29A76EFD-C207-4C90-8193-34BD226C60C1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Nenhum Arquivo <==== ATENÇÃO
Task: {8559E538-4FE4-4BF1-BAC4-CDC384B63605} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {8F0F5971-9C09-479B-A477-45DBD3A1D9E1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Nenhum Arquivo <==== ATENÇÃO
Task: {91FEF80F-29DB-4161-BE8B-19962B401390} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {948BE2F7-EF28-4E67-A413-07D53F4C61B6} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2016-08-27] (Byte Technologies LLC) <==== ATENÇÃO
Task: {A988B507-6A80-4599-A081-8B4544ADD19E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {A9A4F57D-7EF0-439A-BFD3-5F4119E2E5D7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {B07FDAF1-A4B9-4797-99F6-FC336999900C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Nenhum Arquivo <==== ATENÇÃO
Task: {D32A484F-247F-481E-B3AB-7342F02E1DA6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Nenhum Arquivo <==== ATENÇÃO
Task: {F3912992-BDE5-4A38-98E0-2847B9CF4595} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Nenhum Arquivo <==== ATENÇÃO
Task: {F5A5E193-EBDC-490B-A513-9682B8D927FA} - \WPD\SqmUpload_S-1-5-21-2225947846-1434423812-2591476607-1001 -> Nenhum Arquivo <==== ATENÇÃO
Task: {F989C7FE-EAC5-4C5F-A612-F38AE36C3D04} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2016-08-27] (Byte Technologies LLC) <==== ATENÇÃO
ShortcutWithArgument: C:\Users\fabinho\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\c65aa95f64f79634\VoiceNote II - Speech to text.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hfknjgplnkgjihghcidajejfmldhibfm
AlternateDataStreams: C:\ProgramData\Temp:81E3BAD3 [1806]
AlternateDataStreams: C:\Users\Todos os Usuários\Temp:81E3BAD3 [1806]
C:\Users\fabinho\.sysconfig.dat
C:\Users\fabinho\AppData\Local\Temp\{51715CF4-DC25-4CDA-829F-DF5C1ADEA980}-55.0.2883.87_chrome_installer.exe
CMD: sfc /scannow
CreateRestorePoint:
CMD: netsh winsock reset catalog
CMD: netsh advfirewall set allprofiles state on
CMD: netsh interface ip delete arpcache
CMD: netsh advfirewall reset
CMD: bitsadmin /reset /allusers
CMD: netsh int ip reset all
CMD: nbtstat -RR
CMD: nbtstat -R
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
EmptyTemp:
Reboot:
end

Publicité


Signaler le contenu de ce document

Publicité