[Arquivado] Paginas Indesej. Abrindo no Mozilla Firefox e I.E

[Bielinload 0]

Primeiramente

Agradeço a oportunidade de postar no forum

Me registrei Hoje procurando sites que possam resolver meu problema!

 

Ola Pessoal

Estou com problemas

 

Sempre fui usuario de sites de ---ografia por me tratar de um colecionador de arquivos e dvd's do genero,Mas de uns tempos para ca(2 dias para ser exato) Meu Pc começou abrir paginas sozinho enquanto estou usando o Mozilla Firefox...No I.E não é tao constante essa porcaria de problema,Apenas no Firefox...

 

Paginas como

IMBOOSTER

DOMAINNOTLOCATED.COM

Adult Friend Finder

Affiliate.fctracker.com

Fbgdc.com

InfoSeekToday

Flycell

Traffz.com

 

Entre outras que noa me lembro agora,estao abrindo constantemente,basta eu clicar para abrir uma nova guia ou nova aba no navegador e as mesmas aparecem

---------------------

Fora isso estou com alguns problemas de lentidão no Meu micro....mesmo com 17gb livres de Hd O computador Demora para abrir pastas,demora para abrir o navegador

------------------------

Normal do Iexplore.exe e do Firefox.exe usarem mais de 90k de memoria apenas com uma pagina aberta?

--------------------------

Porque o Processo Wlcomm.exe(Windows Live Communications) Utiliza um valor elevado de memoria tambem(de 50 para cima),Tenho um Msn que se eu digito o usuario e a senha o Wlcoomm até trava usando permanentes 50% de memoria de cpu...

O.o

 

---------------------------------------------

 

Para analizarem,Estou postando o Log do Hjthis

Sei que tem uma ordem de controle dos topicos...mas agradeço se respondessem rapidamente o meu

 

 

Abraços

 

 

 

 

LOG ABAIXO

 

 

GOSTARIA QUE SE PUDESSEM DESSEM DICAS EM RELAÇÃO AO MEU LOG

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 20:16:52, on 30/11/2009

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Arquivos de programas\Alwil Software\Avast4\aswUpdSv.exe

C:\Arquivos de programas\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\fsproflt.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\svchost.exe

C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\Arquivos de programas\My Lockbox\mylbx.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe

C:\Arquivos de programas\Alwil Software\Avast4\ashMaiSv.exe

C:\Arquivos de programas\Alwil Software\Avast4\ashWebSv.exe

C:\Arquivos de programas\Free Download Manager\fdm.exe

C:\Arquivos de programas\Windows Live\Contacts\wlcomm.exe

C:\Arquivos de programas\IObit\Advanced SystemCare 3\Awc.exe

C:\Arquivos de programas\Ares\Ares.exe

C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbam.exe

C:\Arquivos de programas\Mozilla Firefox\firefox.exe

C:\Arquivos de programas\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Arquivos de programas\Shareaza\Plugins\RazaWebHook.dll

O2 - BHO: Automated Content Enhancer - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\ACEIEAddOn.dll

O2 - BHO: Customized Platform Advancer - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\CPAIEAddOn.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Arquivos de programas\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Arquivos de programas\myBabylon_English\tbmyBa.dll

O2 - BHO: Content Management Wizard - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\CMWIE.dll

O2 - BHO: TCP - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\TCPIE.dll

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Arquivos de programas\Free Download Manager\iefdm2.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Arquivos de programas\Windows Live\Toolbar\wltcore.dll

O2 - BHO: Web Search Operator - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Arquivos de programas\Web Search Operator\3.1.0.1840\wso.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Arquivos de programas\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Arquivos de programas\myBabylon_English\tbmyBa.dll

O4 - HKLM\..\Run: [avast!] C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

O4 - HKLM\..\Run: [mylbx] C:\Arquivos de programas\My Lockbox\mylbx.exe /a

O4 - HKLM\..\Run: [internet Today Task] "C:\Arquivos de programas\Internet Today\1.1.0.1190\InternetToday.exe"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [Free Download Manager] C:\Arquivos de programas\Free Download Manager\fdm.exe -autorun

O4 - HKCU\..\Run: [ares] "C:\Arquivos de programas\Ares\Ares.exe" -h

O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Arquivos de programas\IObit\Advanced SystemCare 3\AWC.exe" /startup

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')

O8 - Extra context menu item: Baixar com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dllink.htm

O8 - Extra context menu item: Baixar tudo com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlall.htm

O8 - Extra context menu item: Baixar vídeo com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlfvideo.htm

O8 - Extra context menu item: Download selecionado pelo Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlselected.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra button: Incluir no Blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Arquivos de programas\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Incluir no Blog no Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Arquivos de programas\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~1\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://static4.orkut.com/activex/10036/photouploader.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/PT-BR/a-UNO1/GAME_UNO1.cab

O16 - DPF: {60541D7A-4EF1-4117-9607-7C1B0EEAAD18} (Image Uploader Control) - http://iu.ak.sonico.com//ImageUploader.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1253570860109

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1206634859265

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/Game...ronGameHost.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{8CBD8F96-C4AE-43F2-A383-AA9C68EACD52}: NameServer = 200.204.0.10 200.204.0.138

O17 - HKLM\System\CCS\Services\Tcpip\..\{FD12C7C6-A6D8-472D-A2ED-54EB32935919}: NameServer = 200.204.0.10,200.204.0.138

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: FSPro Filter Service (fsproflt) - FSPro Labs - C:\WINDOWS\system32\fsproflt.exe

O23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: nProtect GameGuard Service (npggsvc) - Nero AG - (no file)

O23 - Service: QuestService Service - Unknown owner - C:\Documents and Settings\All Users\Dados de aplicativos\QuestService\questservice127.exe

 

--

End of file - 10445 bytes

[wings 22]

Boa noite Bielinload

 

 

1.

*Faça o download e instale o CCleaner

*Na coluna da direita, desça até a opção "Avançado" e selecione "Dados Prefetch antigos"

*Abra o programa e clique em [Executar Limpeza]

*Em seguida, clique em [Registro] -> [Procurar erros] -> [Corrigir Erros Selecionados] -> [Corrigir Todos os Erros Selecionados]

 

2.

*Baixe o ATF Cleaner e salve-o no desktop

*Duplo clique em ATF-Cleaner.exe

*Em Main selecione [select all]

*Clique em [Empty Selected]

=>Caso use Firefox ou Opera, também, siga os procedimentos abaixo:

*Em "Firefox" ou em "Opera" clique em [select all] ( se você deseja manter suas passwords clique No, caso contrário clique Yes).

*Clique [Empty Selected] ( se você deseja manter suas passwords clique No, caso contrário clique Yes).

*Clique em [Exit] ou no [X] para sair do programa

 

Informe se ainda continuam a abrir as páginas.

[Bielinload 0]

Apenas para Conhecimento seu Wings

 

Eu baixei o Malware Bytes e depois de longas 2 horas e alguns minutos esperando meu pc estava com mais de 150 itens infectados,o ruim é que nao mostra qual é o virus....só fala adware.agent

Mesmo assim vou postar aqui os problemas,quase todos de registro

 

USEI O MVREGCLEAN...E MESMO ASSIM APARECERAM OS ERROS DENOVO

 

SEGUE LOG MALWARE

 

Malwarebytes' Anti-Malware 1.41

Versão do banco de dados: 3264

Windows 5.1.2600 Service Pack 2

 

30/11/2009 21:53:37

mbam-log-2009-11-30 (21-53-19).txt

 

Tipo de Verificação: Completa (C:\|)

Objetos verificados: 236352

Tempo decorrido: 2 hour(s), 31 minute(s), 46 second(s)

 

Processos da Memória infectados: 0

Módulos de Memória Infectados: 6

Chaves do Registro infectadas: 40

Valores do Registro infectados: 0

Ítens do Registro infectados: 0

Pastas infectadas: 30

Arquivos infectados: 80

 

Processos da Memória infectados:

(Nenhum ítem malicioso foi detectado)

 

Módulos de Memória Infectados:

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\WSOCommon.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\components\WSOFFAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\ACECommon.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\CPACommon.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFAddOn.dll (Adware.Agent) -> No action taken.

 

Chaves do Registro infectadas:

HKEY_CLASSES_ROOT\explorerbar.cmw (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{f5b8c69c-9b45-4a6a-9380-df225c546ae7} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{629cd6c2-e4c5-4554-aeb8-12e4e2cd40ff} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.cmw.1 (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{883dfc00-8a21-411d-956c-73a4e4b7d16f} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{480098c6-f6ad-4c61-9b5c-2bae228a34d1} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.tcp (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{2a743834-05f4-4ed4-8a1c-41332b10ac0c} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{1081d532-7de4-40bd-b912-388fa6b27c78} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\explorerbar.tcp.1 (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{565dd573-549e-4da9-8cd7-6ae3df25339a} (Adware.Agent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-81cx1c635612} (Trojan.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\questservice (Adware.Agent) -> No action taken.

 

Valores do Registro infectados:

(Nenhum ítem malicioso foi detectado)

 

Ítens do Registro infectados:

(Nenhum ítem malicioso foi detectado)

 

Pastas infectadas:

C:\Arquivos de programas\Internet Today (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\Data (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\chrome (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\chrome\content (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\components (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\data (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\for_anti_av (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\for_anti_av\1.1.0.1610 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\Data (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\chrome (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\chrome\content (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\components (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\Data (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\chrome (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\chrome\content (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\components (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870 (Adware.Agent) -> No action taken.

 

Arquivos infectados:

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\CMWIE.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\CPAIEAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\WSO.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\TCPIE.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\ACEIEAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\QuestService\uninstall.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\BistéekaaHh\Configurações locais\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\productinfo.dll (Adware.DoubleD) -> No action taken.

C:\System Volume Information\_restore{9BE5B7EC-92D8-48AA-B9E9-36FB37A81FEE}\RP70\A0055316.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\InternetToday.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\InternetToday.ico (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\InternetToday.skf (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\mfc80.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\Microsoft.VC80.CRT.manifest (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\Microsoft.VC80.MFC.manifest (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\msvcr80.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\PixelLogExe.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\SkinCrafterDll.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\unins000.dat (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Internet Today\1.1.0.1190\unins000.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\unins000.dat (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\unins000.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\WSOCommon.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\wsopx.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\Data\config.md (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\chrome.manifest (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\install.rdf (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\chrome\WSOAddOn.jar (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\chrome\content\WSOAddOn.js (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\chrome\content\WSOAddOn.xul (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\components\WSOFFAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\components\WSOFFAddOn.xpt (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Web Search Operator\3.1.0.1840\FF\components\WSOFFHelperComponent.js (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\tcppx.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\unins000.dat (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\unins000.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\data\pxtmpdata.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\data\TP_Config.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\data\TP_Data.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\data\TP_DomainExcludeList.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Textual Content Provider\1.1.0.1610\for_anti_av\1.1.0.1610\TCPIE.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\ACECommon.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\ACEIEAddOnSub.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\ACEIEAddOnSubL.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\acepx.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\unins000.dat (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\unins000.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\Data\config.md (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\chrome.manifest (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\install.rdf (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\chrome\ACEAddOn.jar (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\chrome\content\ACEAddOn.js (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\chrome\content\ACEAddOn.xul (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFAddOn.xpt (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFHelperComponent.js (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\CPACommon.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\CPAIEAddOnSub.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\CPAIEAddOnSubL.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\cpapx.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\unins000.dat (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\unins000.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\Data\config.md (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\chrome.manifest (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\install.rdf (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\chrome\CPAAddOn.jar (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\chrome\content\CPAAddOn.js (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\chrome\content\CPAAddOn.xul (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFAddOn.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFAddOn.xpt (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFHelperComponent.js (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\cmwpx.exe (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\cmwsh.dll (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\config.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\data.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\exclude.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\MatchingData.zd5 (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\pxtmpdata.mx (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\unins000.dat (Adware.Agent) -> No action taken.

C:\Arquivos de programas\Content Management Wizard\1.1.0.1870\unins000.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\XP\Favoritos\Free --- Tube Categories – Select Your Categories – Keezmovies.com.url (Rogue.Link) -> No action taken.

 

 

 

 

 

PROXIMA PERGUNTA....PORQUE MEU COMPUTADOR TA COM O IEXPLORE OU MOZILLA ABERTO E NAO APARECE ALI NA BARRA DE TAREFAS?SÓ APARECE SE EU DOU ALT+TAB

 

O.O! RSRSRS

[wings 22]

Use os programas que informei inicialmente.

 

Quanto ao Malwarebytes, você não removeu os arquivos encontrados....

 

Faça isso. Eles serão enviados para a quarentena do Malwarebytes.

*Remova o que for encontrado

*Ao término do scan poderá ser interrogado se deseja remover objetos da memória. Clique [sIM] e finalmente clique em [OK]. Um relatório (mbam-log-ano-mês-data.txt) será apresentado.

*Alguns malwares são rebeldes e necessitam de uma reinicialização para a remoção. Caso isto seja solicitado, clique para reiniciar o PC. Caso não seja solicitado, reinicie o PC manualmente.

 

Informe ...

[Mário Monteiro 179]

Tópico Arquivado

 

Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado.

 

Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura.