Problema Portátil recente extremamente lento de um dia para o outro

Razorlight

Power Member
Boas, desde já agradeço a todos os que me puderem ajudar, pois estou a entrar em época de exame da faculdade e isto está a começar a assustar-me, pois preciso mesmo do pc pois vou ter um teste já na sexta...

Tenho um toshiba l755-18k, com 6 gb de RAM. Desde há 4 dias que apanhei algo estranho no browser, chamado nationzoom.com, por ter feito uma instalação de um programa para me actualizar os drivers do pc. Segui uns tutoriais na net e felizmente consegui eliminar e ficou tudo bem.

Mas desde esse dia, o pc fica lento de um momento para o outro, que usualmente usa 2gb de RAM, passa a usar 5,98 gb e a alertar-me que tenho pouca memória enquanto que a única coisa que tenho aberta são os pdfs da faculdade. Até chega a encerrar automaticamente o Aero. Tive a ver no gestor de tarefas, os processos abertos e nada me indica que haja tanto consumo de RAM. Só volta ao normal depois de forçar o encerramento do pc.

O que poderá ser isto? Haverá alguma coisa desse ultimo malware ainda inserido no pc que não ficou bem eliminado?


ps: aqui tem as imagens:
Sem nenhum programa aberto:
https://www.dropbox.com/s/81u76v2coo82jh8/prob.png

Erro que usualmente aparece:
https://www.dropbox.com/s/sl9drhul1tnxusa/IMG_0607.JPG

Mais um erro estranho que me apareceu hoje, parece que o ecra ficou cortado:
https://www.dropbox.com/s/r3ab83gndgmmox7/IMG_0609.JPG


Deixo também aqui um log do Hijack This depois de ter reiniciado o PC:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:47:20, on 07-01-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)


FIREFOX: 25.0.1 (pt-PT)
Boot mode: Normal


Running processes:
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
C:\Users\Vanessa Andreia\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Vanessa Andreia\Downloads\HijackThis.exe


R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NBAgent] "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STAR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe
O4 - HKCU\..\Run: [BatteryCare] C:\Program Files (x86)\BatteryCare\BatteryCare.exe
O4 - HKCU\..\Run: [Device Doctor] C:\Program Files (x86)\Device Doctor\DDLauncher.exe
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Serviço de rede')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Serviço de rede')
O4 - HKUS\S-1-5-18\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: Dropbox.lnk = Vanessa Andreia\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Adicionar ao TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
O8 - Extra context menu item: E&nviar para o OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: E&nviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Notas Ligadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Notas Ligadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Serviço de Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Serviço Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Serviço iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


--
End of file - 15325 bytes


Mais uma vez obrigada pela atenção.
 
Última edição:
O AdwCleaner deve resolver.

Descarrega, arranca o programa, clica em Scan:

scanner.png


Terminada a verificação clica em Clean:

boutonnettoyer.png


Reinicia o PC quando o programa pedir.

Corre ainda o Junkware Removal Tool.

Se quiseres uma análise aos problemas, colocas aqui os relatórios finais dos programas.

Instala ainda o AdBlock Plus nos teus browsers.


Edit:
Esse programa de drivers instalou alguns controladores?
 
Última edição:
Edit:
Esse programa de drivers instalou alguns controladores?


Ainda não instalei nada com ele. Chama-se device doctor.
Já tenho instalado o ABP no chrome.
Vou experimentar o que mencionaste e já te digo alguma coisa. Muito obrigada pela atenção!
 
Última edição:
tal como pensei, ainda poderia haver alguma coisa do nationzoom... aqui estão os relatórios:

Adwcleaner:
# AdwCleaner v3.016 - Report created 07/01/2014 at 19:25:19# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Vanessa Andreia - VANESSAANDREIA
# Running from : C:\Users\Vanessa Andreia\Downloads\adwcleaner.exe
# Option : Clean


***** [ Services ] *****




***** [ Files / Folders ] *****


Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\Browser Manager
Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\ProgramData\WPM
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Users\Vanessa Andreia\AppData\Local\TempDir
Folder Deleted : C:\Users\VANESS~1\AppData\Local\Temp\AirInstaller
Folder Deleted : C:\Users\Vanessa Andreia\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\somotomoviestoolbar1
Folder Deleted : C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml
File Deleted : C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\invalidprefs.js
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\nationzoom.xml
File Deleted : C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\user.js
File Deleted : C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
File Deleted : C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Deleted : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser


***** [ Shortcuts ] *****


Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Shortcut Disinfected : C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk


***** [ Registry ] *****


Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\somotomoviestoolbar1
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Desksvc
Key Deleted : HKLM\Software\dt soft\daemon tools toolbar
Key Deleted : HKLM\Software\hdcode
Key Deleted : HKLM\Software\nationzoomSoftware
Key Deleted : HKLM\Software\SafetyNut
Key Deleted : HKLM\Software\supWPM
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\V9
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\MOVIES~1\SAFETY~1\x64\SAFETY~2.DLL


***** [ Browsers ] *****


-\\ Internet Explorer v11.0.9600.16428


Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]


-\\ Mozilla Firefox v25.0.1 (pt-PT)


[ File : C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\prefs.js ]


Line Deleted : user_pref("browser.newtab.url", "hxxp://www.nationzoom.com/newtab/?type=nt&ts=1388763763&from=air&uid=TOSHIBAXMK7575GSX_61MEF7WTSXX61MEF7WTS");
Line Deleted : user_pref("browser.search.defaultenginename", "nationzoom");
Line Deleted : user_pref("browser.search.selectedEngine", "nationzoom");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.nationzoom.com/?type=hp&ts=1388763763&from=air&uid=TOSHIBAXMK7575GSX_61MEF7WTSXX61MEF7WTS");
Line Deleted : user_pref("extensions.delta.admin", false);
Line Deleted : user_pref("extensions.delta.aflt", "babsst");
Line Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Deleted : user_pref("extensions.delta.autoRvrt", "false");
Line Deleted : user_pref("extensions.delta.dfltLng", "pt");
Line Deleted : user_pref("extensions.delta.excTlbr", false);
Line Deleted : user_pref("extensions.delta.ffxUnstlRst", true);
Line Deleted : user_pref("extensions.delta.id", "12c9c399000000000000d0df9a62451f");
Line Deleted : user_pref("extensions.delta.instlDay", "15936");
Line Deleted : user_pref("extensions.delta.instlRef", "sst");
Line Deleted : user_pref("extensions.delta.newTab", false);
Line Deleted : user_pref("extensions.delta.prdct", "delta");
Line Deleted : user_pref("extensions.delta.prtnrId", "delta");
Line Deleted : user_pref("extensions.delta.rvrt", "false");
Line Deleted : user_pref("extensions.delta.smplGrp", "none");
Line Deleted : user_pref("extensions.delta.tlbrId", "base");
Line Deleted : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Deleted : user_pref("extensions.delta.vrsn", "1.8.24.5");
Line Deleted : user_pref("extensions.delta.vrsnTs", "1.8.24.515:14:49");
Line Deleted : user_pref("extensions.delta.vrsni", "1.8.24.5");
Line Deleted : user_pref("extensions.delta_i.babExt", "");
Line Deleted : user_pref("extensions.delta_i.babTrack", "affID=119982&tt=180813_206&tsp=4979");
Line Deleted : user_pref("extensions.delta_i.srcExt", "ss");


-\\ Google Chrome v31.0.1650.63


[ File : C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\preferences ]




*************************


AdwCleaner[R0].txt - [12245 octets] - [07/01/2014 19:23:34]
AdwCleaner[S0].txt - [10308 octets] - [07/01/2014 19:25:19]


########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10369 octets] ##########



Junkware:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 7 Home Premium x64
Ran by Vanessa Andreia on 07-01-2014 at 19:31:09.89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~








~~~ Services






~~~ Registry Values


Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL






~~~ Registry Keys


Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2050523904-1077344511-3043192137-1000\Software\sweetim






~~~ Files






~~~ Folders






~~~ FireFox


Emptied folder: C:\Users\Vanessa Andreia\AppData\Roaming\mozilla\firefox\profiles\1uxnzgw2.default\minidumps [9 files]






~~~ Event Viewer Logs were cleared










~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07-01-2014 at 19:39:30.37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Vou aguardar a ver se o pc volta aqueles valores consumidos de ram exorbitantes.
Tenho que fazer mais alguma coisa ou achas que fica resolvido com isto?
Obrigada pela ajuda prestada até agora!
 
Estava assim muito mau? :wow:
Antigamente tinha mais tempo para tomar conta do pc, agora nem por isso xD
 
Última edição pelo moderador:
Bastante mau, várias versões de adware mais ou menos agressivo, mas todos os browsers tinham sido caçados.

Só uso mesmo o chrome, os outros nem costumo abrir xD
Mas obrigada, até agora ainda não aconteceu nada, o pc está a dar bem, mas vou ver durante os próximos dias se acontece alguma coisa e depois aviso qual o resultado.
cumps
 
O problema presiste, hoje voltou acontecer. E nem estava ligado à net. Há mais alguma forma para resolver isto? Só tinha um pdf e o matlab aberto e começou a consumir quase 6gb de RAM e a ficar muito lento, até não dar resposta e ser obrigada a forçar o encerramento do pc.

Cumps.
 
O que é que o AdwCleaner mostra?
Isto:
# AdwCleaner v3.016 - Report created 14/01/2014 at 17:01:40# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Vanessa Andreia - VANESSAANDREIA
# Running from : C:\Users\Vanessa Andreia\Downloads\adwcleaner.exe
# Option : Scan


***** [ Services ] *****




***** [ Files / Folders ] *****


Folder Found : C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml


***** [ Shortcuts ] *****




***** [ Registry ] *****




***** [ Browsers ] *****


-\\ Internet Explorer v11.0.9600.16428




-\\ Mozilla Firefox v25.0.1 (pt-PT)


[ File : C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\prefs.js ]




-\\ Google Chrome v31.0.1650.63


[ File : C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\preferences ]




*************************


AdwCleaner[R0].txt - [12245 octets] - [07/01/2014 19:23:34]
AdwCleaner[R1].txt - [999 octets] - [14/01/2014 17:01:40]
AdwCleaner[S0].txt - [10490 octets] - [07/01/2014 19:25:19]


########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1119 octets] ##########
 
Instala e faz uma verificação com o Hitman PRO 64 bit.

No final coloca aí o relatório.

Código:
HitmanPro 3.7.8.208
www.hitmanpro.com


   Computer name . . . . : VANESSAANDREIA
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : VanessaAndreia\Vanessa Andreia
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (30 days left)


   Scan date . . . . . . : 2014-01-14 17:35:52
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 6m 22s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No


   Threats . . . . . . . : 1
   Traces  . . . . . . . : 68


   Objects scanned . . . : 2.338.188
   Files scanned . . . . : 50.835
   Remnants scanned  . . : 872.755 files / 1.414.598 keys


Malware _____________________________________________________________________


   C:\Users\Vanessa Andreia\AppData\Local\Temp\fullpackage_temp1388763745\tmp\desk365.exe -> Quarantined
      Size . . . . . . . : 4.494.928 bytes
      Age  . . . . . . . : 20.1 days (2013-12-25 14:41:10)
      Entropy  . . . . . : 8.0
      SHA-256  . . . . . : D09932A3754AEF4BA8AF37A28CC49FDF7DEFA6F95DB5F821742C04E7ED3A99E1
      Product  . . . . . : TODO: <Product name>
      Publisher  . . . . : 337 Technology Limited.
      Description  . . . : TODO: <File description>
      Version  . . . . . : 1.15.8.8239
      Copyright  . . . . : Copyright (C) 2012
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:AdWare.Win32.D365.a
      Fuzzy  . . . . . . : 99.0




Suspicious files ____________________________________________________________


   C:\Users\Vanessa Andreia\AppData\Local\PunkBuster\UNCO\pb\pbcl.dll
      Size . . . . . . . : 833.236 bytes
      Age  . . . . . . . : 602.9 days (2012-05-21 19:40:49)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 224E58B68FE38C7B9DE702D8E970158B3DB6B0CAE3429B4903DAFC68AE60C83C
      Fuzzy  . . . . . . : 29.0
         The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Program contains PE structure anomalies. This is not typical for most programs.


   C:\Users\Vanessa Andreia\Documents\Programas\Nero Burning ROM 12.5.00900 Multilang\Crack\AdvrCntr6.dll
      Size . . . . . . . : 8.446.872 bytes
      Age  . . . . . . . : 307.9 days (2013-03-12 20:59:32)
      Entropy  . . . . . : 7.1
      SHA-256  . . . . . : 8B0C30C3D31882E3A23021C9D63C715761FF2E04A4313FC08094F4ACFBC7E625
      Product  . . . . . : AdvrCntr Module
      Publisher  . . . . : Nero AG
      Description  . . . : AdvrCntr Module
      Version  . . . . . : 11.0.2.10
      Copyright  . . . . : Copyright 2012 Nero AG and its licensors
      RSA Key Size . . . : 2048
      Authenticode . . . : Invalid
      Fuzzy  . . . . . . : 22.0
         Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.




Potential Unwanted Programs _________________________________________________


   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\ (iPumper)
   HKU\S-1-5-21-2050523904-1077344511-3043192137-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{4D2D3B0F-69BE-477A-90F5-FDDB05357975} (Claro)


Cookies _____________________________________________________________________


   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.auditude.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.p161.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.stickyadstv.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.yahoo.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertstream.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:chitika.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:in.getclicky.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:pool-eu-ie.creative-serving.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:stat.dealtime.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.cmllk1.info
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.fr
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:wmncampaigns.solution.weborama.fr
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com
   C:\Users\Vanessa Andreia\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Cookies\3OL1IX8U.txt
   C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Cookies\DVWRBYGD.txt
   C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Cookies\F5R93S0U.txt
   C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Cookies\Q7NI5TUU.txt
   C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Cookies\QHX175QF.txt
   C:\Users\Vanessa Andreia\AppData\Roaming\Microsoft\Windows\Cookies\S68A5D0C.txt
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:ad.adserver01.de
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:ad.auditude.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:ad.yieldmanager.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:ads.p161.net
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:advertising.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:atdmt.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:doubleclick.net
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:exoclick.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:invitemedia.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:media6degrees.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:pool-eu-ie.creative-serving.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:ru4.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:serving-sys.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:specificclick.net
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:statcounter.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:track.adform.net
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:tradedoubler.com
   C:\Users\Vanessa Andreia\AppData\Roaming\Mozilla\Firefox\Profiles\1uxnzgw2.default\cookies.sqlite:www.googleadservices.com
 
O fórum não dá suporte a quem usa cracks.

Tenta uma limpeza com o Hitman PRO e vê como fica a máquina.

Estás a falar do Nero (vi agora no log)?
Foi um colega meu que instalou, para gravar um cd e acho que já foi quase há um ano, como nunca o usei nem me lembrei dele, não uso cds.
Coloco as minhas coisas em pens ou na cloud.
Basicamente todos os programas que tenho no pc foram instalados pela faculdade, deixava o pc nos técnicos e eles instalavam o software.

Só não sei o que é o ipumper e o desk 365.
 
Continua igual, acabou de acontecer a mesma coisa e tive que reiniciar o pc. É que desta vez está tudo limpo (acho eu) porque corri novamente os programas e não acusou nada...
Não é melhor formatar isto?
E deculpem lá a chatisse que isto está a ser. Só começou a ficar assim quando fez 2 anos (inícios de dezembro), já começo a desconfiar...
 
Back
Topo