Ir para conteúdo

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

Mário Monteiro

[Resolvido] &nbspVerificação do Notebook

Por , em Tópicos Resolvidos (Seguranca & Malwares)

Recommended Posts

Mário Monteiro    179

Mário Monteiro
Postado

Pessoal existe alguma praga visível no log?

 

O banco do brasil anda reclamando que tem virus e bloqueando minha conta para uso online

 

Existem entradas referentes ao banco no log

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 10:17:44, on 29/09/2011

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Comodo\Firewall\cfp.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\VIVO Internet e TV Digital\Vivo 3G.exe

C:\Program Files\DigitalPersona\Bin\DpAgent.exe

C:\Program Files\HP\HP Software Update\hpwuschd2.exe

C:\HijackThis\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files\VIVO Internet e TV Digital\CMUpdater.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Windows\system32\Taskmgr.exe

C:\Program Files\Mozilla Firefox 4.0 Beta 7\firefox.exe

C:\Program Files\Mozilla Firefox 4.0 Beta 7\plugin-container.exe

C:\Program Files\Mozilla Firefox 4.0 Beta 7\plugin-container.exe

C:\HijackThis\HiJackThis.exe

C:\Windows\system32\NOTEPAD.EXE

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com.br/Main#Application?uid=17360339365536149156&appId=999787414856&rl=ls

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=pt_br&c=83&bd=Pavilion&pf=cnnb

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.6.0_23\bin\jp2ssv.dll

O2 - BHO: ChromeFrame BHO - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files\Google\Chrome Frame\Application\14.0.835.186\npchrome_frame.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\cfp.exe" -h

O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\HijackThis\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Mário Monteiro\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

O4 - HKCU\..\RunOnce: [AutoLaunch] C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe monthly

O8 - Extra context menu item: Enviar imagem para Dispositivo &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Enviar página para Dispositivo &Bluetooth ... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: www.bancobrasil.com.br

O15 - Trusted Zone: www14.bancobrasil.com.br

O15 - Trusted Zone: www2.bancobrasil.com.br

O15 - Trusted Zone: www.bb.com.br

O17 - HKLM\System\CCS\Services\Tcpip\..\{85C9525A-8D74-4CF0-A37D-28DC66E2CEA6}: NameServer = 200.220.227.56 200.142.130.202

O17 - HKLM\System\CCS\Services\Tcpip\..\{F23D74C9-A8F0-4E6B-A94F-CA09C9A6A55D}: NameServer = 200.202.193.75 200.223.0.83

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\14.0.835.186\npchrome_frame.dll

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O20 - Winlogon Notify: GbPluginBb - C:\Program Files\GbPlugin\gbieh.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\aestsrv.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\Comodo\Firewall\cmdagent.exe

O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe

O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe

O23 - Service: Gbp Service (GbpSv) - - C:\PROGRA~1\GBPLUGIN\gbpsv.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\HijackThis\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe

O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe

O23 - Service: Recovery Service for Windows - Unknown owner - C:\Windows\SMINST\BLService.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe

O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe

 

--

End of file - 10682 bytes

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

:) Olá Mário!

 

:seta: Siga, por gentileza, estas dicas:

 

Tutorial do Ad-Remover

 

Tutorial do Malwarebytes Anti-Malware

______________________

 

:seta: Na sua próxima resposta poste um novo log do Hijackthis, o log do Ad-Remover que estará em C:\Ad-Report-CLEAN[1].log, o log do Malwarebytes e nos diga como está o seu PC após estes procedimentos.

 

Ficamos no aguardo.

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

Ok iniciarei os procedimentos agora :thumbsup:

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

O Ad-Remover já terminou o Malwarebytes Anti-Malware tinha passado ontem e tinha dado tudo normal mas estou passando denovo agora

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

Pronto segue os Logs

 

Hijackthis

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:44:46, on 30/09/2011

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Comodo\Firewall\cfp.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\DigitalPersona\Bin\DpAgent.exe

C:\Program Files\HP\HP Software Update\hpwuschd2.exe

C:\HijackThis\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

C:\Windows\System32\mobsync.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files\Mozilla Firefox 4.0 Beta 7\firefox.exe

C:\Program Files\VIVO Internet e TV Digital\Vivo 3G.exe

C:\Program Files\VIVO Internet e TV Digital\CMUpdater.exe

C:\Program Files\Mozilla Firefox 4.0 Beta 7\plugin-container.exe

C:\Program Files\Mozilla Firefox 4.0 Beta 7\plugin-container.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE

C:\HijackThis\HiJackThis.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\system32\SearchFilterHost.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll

O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.6.0_23\bin\jp2ssv.dll

O2 - BHO: ChromeFrame BHO - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files\Google\Chrome Frame\Application\14.0.835.186\npchrome_frame.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\cfp.exe" -h

O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\HijackThis\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Mário Monteiro\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

O4 - HKCU\..\RunOnce: [AutoLaunch] C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe monthly

O8 - Extra context menu item: Enviar imagem para Dispositivo &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Enviar página para Dispositivo &Bluetooth ... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: www.bancobrasil.com.br

O15 - Trusted Zone: www14.bancobrasil.com.br

O15 - Trusted Zone: www2.bancobrasil.com.br

O15 - Trusted Zone: www.bb.com.br

O17 - HKLM\System\CCS\Services\Tcpip\..\{153752A6-ADFC-467B-8391-64426931CEA2}: NameServer = 200.220.227.56 200.142.130.202

O17 - HKLM\System\CCS\Services\Tcpip\..\{F23D74C9-A8F0-4E6B-A94F-CA09C9A6A55D}: NameServer = 200.202.193.75 200.223.0.83

O17 - HKLM\System\CS1\Services\Tcpip\..\{153752A6-ADFC-467B-8391-64426931CEA2}: NameServer = 200.220.227.56 200.142.130.202

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\14.0.835.186\npchrome_frame.dll

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O20 - Winlogon Notify: GbPluginBb - C:\Program Files\GbPlugin\gbieh.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\aestsrv.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\Comodo\Firewall\cmdagent.exe

O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe

O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe

O23 - Service: Gbp Service (GbpSv) - - C:\PROGRA~1\GBPLUGIN\gbpsv.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\HijackThis\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe

O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe

O23 - Service: Recovery Service for Windows - Unknown owner - C:\Windows\SMINST\BLService.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe

O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe

 

--

End of file - 10605 bytes

 

Ad-Remover

======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

 

Updated by TeamXscript on 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

website: http://www.teamxscript.org

 

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Launched at 08:32:47 on 30/09/2011, Normal boot

 

Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)

Mário Monteiro@MARIO (Hewlett-Packard HP Pavilion DV5)

 

============== ACTION(S) ==============

 

 

File deleted: C:\Windows\system32\Tasks\Scheduled Update for Ask Toolbar

Folder deleted: C:\Program Files\Ask.com

Folder deleted: C:\Users\Mário Monteiro\AppData\LocalLow\AskToolbar

 

(!) -- Temporary files deleted.

 

 

-- File opened: C:\Users\Mário Monteiro\AppData\Roaming\Mozilla\FireFox\Profiles\ldnkfl42.default\Prefs.js --

Line deleted: user_pref("extensions.toolbar@ask.com.install-event-fired", true);

-- File closed --

 

 

Key deleted: HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}

Key deleted: HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}

Key deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}

Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}

Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Key deleted: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}

Key deleted: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}

Key deleted: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}

Key deleted: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}

Key deleted: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd

Key deleted: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1

Key deleted: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL

Key deleted: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}

Key deleted: HKCU\Software\Ask.com

Key deleted: HKCU\Software\AppDataLow\AskToolbarInfo

Key deleted: HKCU\Software\AppDataLow\Software\AskToolbar

Key deleting error: HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

Key deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF

Key deleted: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Key deleted: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Key deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

Key deleting error: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar

 

Value deleted: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}

Value deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}

 

 

============== ADDITIONNAL SCAN ==============

 

-- C:\Users\Mário Monteiro\AppData\Roaming\Mozilla\FireFox\Profiles\ldnkfl42.default --

Extensions\bitlypreview@jay.ridgeway (bit.ly preview)

Extensions\pt-BR@dellalibera.sf.net (Verificador Ortográfico para Português do Brasil.)

Extensions\twitternotifier@naan(39).net (Echofon)

Extensions\twitternotifier@naan(89).net (Echofon)

Extensions\{37fa1426-b82d-11db-8314-0800200c9a66} (WebMail Notifier)

Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}(114) (WebMail Notifier)

Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}(56) (WebMail Notifier)

Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}(68) (WebMail Notifier)

Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}(99) (WebMail Notifier)

Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(100) (NoScript)

Extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C} (Modulo de Seguranca - Banco do Brasil SA)

Extensions\{e08e1b95-040c-462d-83b3-be286dad7e36} (UntinyFox)

Searchplugins\wikipedia-pt-1.xml (?)

Prefs.js - browser.download.dir, C:\\Users\\Mário Monteiro\\Downloads

Prefs.js - browser.download.lastDir, C:\\Users\\Mário Monteiro\\Desktop

Prefs.js - browser.startup.homepage, about:blank

Prefs.js - browser.startup.homepage_override.buildID, 20110902161802

Prefs.js - browser.startup.homepage_override.mstone, rv:7.0

Prefs.js - keyword.URL, hxxp://br.search.yahoo.com/search?fr=mcafee&p=

 

-- C:\Users\Fernando Luigi\AppData\Roaming\Mozilla\FireFox\Profiles\mn4vtp08.default --

Extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C} (Módulo de Segurança - Banco do Brasil)

Prefs.js - browser.search.defaultenginename, Pesquisa Segura

Prefs.js - browser.search.selectedEngine, Pesquisa Segura

Prefs.js - browser.startup.homepage_override.buildID, 20110318052756

Prefs.js - browser.startup.homepage_override.mstone, rv:2.0

Prefs.js - keyword.URL, hxxp://br.search.yahoo.com/search?fr=mcafee&p=

 

========================================

 

**** Google Chrome Version [14.0.835.186] ****

 

Extension\fheoggkfdfchfphceeifdbepaooicaho (C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx) (?)

 

-- C:\Users\Mário Monteiro\AppData\Local\Google\Chrome\User Data\Default --

Preferences - default_search_provider: "Google" (Enabled: true) (?)

Preferences - homepage: hxxp://www.orkut.com.br/Main#Application?appId=999787414856

Preferences - homepage_is_newtabpage: false

Plugin - Remoting Viewer (Enabled: true) (internal-remoting-viewer) (x)

Plugin - Native Client (Enabled: true) (C:\Users\M\u00E1rio Monteiro\AppData\Local\Google\Chrome\Application\14.0.835.186\ppGoogleNaClPluginChrome.dll) (x)

Plugin - "Java" (Enabled: true)

Plugin - "Silverlight" (Enabled: true)

Plugin - "Remoting Viewer" (Enabled: true)

Plugin - "Native Client" (Enabled: true)

Plugin - "McAfee SiteAdvisor" (Enabled: true)

 

========================================

 

**** Internet Explorer Version [9.0.8112.16421] ****

 

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896

HKCU_Main|Start Page - hxxp://fr.msn.com/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm

HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Start Page - hxxp://fr.msn.com/

HKCU_URLSearchHooks|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - "McAfee SiteAdvisor Toolbar" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)

HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?)

HKLM_Toolbar|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)

HKLM_ElevationPolicy\{DAABE21E-DB8C-49b8-9511-9E6547ECBC5F} - c:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.)

HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "@btrez.dll,-4015" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico)

HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)

BHO\{395610AE-C624-4f58-B89E-23733EA00F9A} - "DigitalPersona Personal Extension" (C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll)

BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} - "McAfee SiteAdvisor BHO" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)

BHO\{C41A1C0E-EA6C-11D4-B1B8-444553540000} - "GbIehObj Class" (C:\PROGRAM FILES\GBPLUGIN\gbieh.dll)

BHO\{ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - "ChromeFrame BHO" (C:\Program Files\Google\Chrome Frame\Application\14.0.835.186\npchrome_frame.dll)

 

========================================

 

C:\Program Files\Ad-Remover\Quarantine: 11 File(s)

C:\Program Files\Ad-Remover\Backup: 16 File(s)

 

C:\Ad-Report-CLEAN[1].txt - 30/09/2011 08:38:33 (8091 Byte(s))

 

End at: 08:41:01, 30/09/2011

 

============== E.O.F ==============

 

MBAM

Malwarebytes' Anti-Malware 1.51.2.1300

www.malwarebytes.org

 

Versão da Base de Dados: 7833

 

Windows 6.0.6002 Service Pack 2

Internet Explorer 9.0.8112.16421

 

30/09/2011 11:42:13

mbam-log-2011-09-30 (11-42-12).txt

 

Tipo de Verificação: Verificação Completa (C:\|D:\|F:\|)

Objetos escaneados: 396994

Tempo decorrido: 2 hora(s), 45 minuto(s), 21 segundo(s)

 

Processos de Memória Infectados: 0

Módulos de Memória Infectados: 0

Chaves de Registro Infectadas: 0

Valores de Registro Infectados: 0

Itens de Dados no Registro Infectados: 0

Pastas Infectadas: 0

Arquivos Infectados: 0

 

Processos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Módulos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Chaves de Registro Infectadas:

(Não foram detectados ítens maliciosos)

 

Valores de Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Itens de Dados no Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Pastas Infectadas:

(Não foram detectados ítens maliciosos)

 

Arquivos Infectados:

(Não foram detectados ítens maliciosos)

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

:) Vários problemas foram removidos pelo Ad-remover.

___________________

 

:seta: Siga, por gentileza, as dicas deste tutorial para fazer um escaneamento de seu PC pelo Nod32 Online:

 

Tutorial do antivirus Nod32 Online

 

Após o término do escaneamento será gerado um relatório (log) que estará no seguinte local do seu computador:

C:\Arquivos de programas\Eset\Eset Online Scanner\log.txt

 

Na sua próxima resposta poste este log do Nod32 Online e nos diga, por gentileza, como está o seu PC após seguir este procedimento.

 

Ficamos no aguardo de sua resposta.

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

Deu uma mensagem que não existia nada no computador mas o log veio meio vazio

 

Log do Nod

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

 

Sobre o computador ele segue normal como antes já estava

 

O que quero saber é se o computador tem algum tipo de praga pois o meu banco muito frenquentemente bloqueia minha conta sob este pretexto apesar de eu cuidar relativamente bem dessa área

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado
Deu uma mensagem que não existia nada no computador mas o log veio meio vazio

 

Log do Nod

 

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

às vezes o log dele dá este erro mesmo, mas o importante é que ele não encontrou nada de errado no PC.

_____________________

 

Sobre o computador ele segue normal como antes já estava

 

O que quero saber é se o computador tem algum tipo de praga pois o meu banco muito frenquentemente bloqueia minha conta sob este pretexto apesar de eu cuidar relativamente bem dessa área

Até agora, a única coisa errada que havia no seu PC era uma toolbar problemática, que foi removida pelo Ad-Remover.

 

Mas para termos mais certeza de que seu PC está realmente livre de problemas, siga também estas dicas:

 

Tutorial do Bankerfix

 

Tutorial do Norman Malware Cleaner

 

Na sua próxima resposta poste o conteúdo do relatorio.txt do BankerFix que estará em C:\LinhaDefensiva\relatorio.txt juntamente com um novo log do Hijackthis e o log do Norman e nos diga como se o problema das mensagens do banco pararam depois disto.

 

Ficamos na espera.

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

Rodei o combofix e não retornou nada

 

A mensagem final foi igual a to tutorial

 

banker6.jpg

 

O Norman Malware Cleaner está baixando pois é meio grande e estou no interior onde a net é lenta então deve baixar durante o dia e rodo ele a noite

 

Amanha posto o seu log aqui

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado
O Norman Malware Cleaner está baixando pois é meio grande e estou no interior onde a net é lenta então deve baixar durante o dia e rodo ele a noite

 

Amanha posto o seu log aqui

Ok, ficamos no aguardo.

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

Log BankerFix

BankerFix 3.1 VALKYRIE - Removedor de Bankers

Linha Defensiva | http://www.linhadefensiva.org

http://www.linhadefensiva.org/bankerfix/

-------------------------------------------------------

Data: 2011-10-01 - 14:09

-------------------------------------------------------

Lista de Definição: 2011-08-28-1 | CORE: 2010-12-28-6

=======================================================

 

 

 

----- Fim -------------------------

 

 

Log Norman Malware Cleaner

Norman Malware Cleaner v2.02.01

Copyright © 1990 - 2011, Norman ASA.

 

Windows is running in safe mode.

Note that some functionality is not available in safe mode.

Please run in normal mode if possible.

Norman Scanner Engine Version: 6.07.11

nvcbin.def: Version: 6.07.00, Date: 2011/09/30 22:26:19, Variants: 12053714

nvcmacro.def: Version: 6.07.00, Date: 2011/02/01 11:21:31, Variants: 20465

 

Operating System: Windows Vista Service Pack 2

 

Switches: /iagree /verbose /cleanrootkit

Running without NSAK

 

Scan started: 2011/10/01 23:34:06

 

Running pre-scan cleanup routine...

Potentially unwanted registry value: 'HKU\S-1-5-21-1330734708-2192215675-4224272535-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System --> DisableRegistryTools = 0x00000000'

Deleted registry value: HKU\S-1-5-21-1330734708-2192215675-4224272535-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System --> DisableRegistryTools = 0x00000000

Potentially unwanted registry value: 'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System --> DisableRegistryTools = 0x00000000'

Deleted registry value: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System --> DisableRegistryTools = 0x00000000

Potentially unwanted registry value: 'HKU\S-1-5-21-1330734708-2192215675-4224272535-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer --> NoDrives = 0x00000000'

Deleted registry value: HKU\S-1-5-21-1330734708-2192215675-4224272535-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer --> NoDrives = 0x00000000

Potentially unwanted registry value: 'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer --> NoDrives = 0x00000000'

Deleted registry value: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer --> NoDrives = 0x00000000

 

Number of malicious objects found: 4

Number of malicious objects cleaned: 4

Scanning time: 0s

 

Scanning system for FakeAV...

 

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 1s

 

Scanning system for active rootkit activity...

 

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 0s

 

Scanning running processes and process memory...

 

Number of objects found: 693

Number of objects scanned: 693

Number of objects not scanned: 0

Number of malicious memory objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 57s

 

Running full scan...

C:\boot\bcd: Error opening file for read: 0x00000020

C:\boot\BCD.LOG: Error opening file for read: 0x00000020

C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\resources\pt-BR\hcsolutions.zip/hp.npc.prjsolutions_pt-BR.H1S: I/O error scanning file: 0x00220005

C:\ProgramData\Lavasoft\Ad-Aware\MiniMessage\3: Error opening file for read: 0x00000020

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000B\opr0014D.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000B\opr00150.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000B\opr00158.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000B\opr0015K.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000B\opr0016J.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0017A.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0017S.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0017K.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0018F.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0018H.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0018I.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Fernando Luigi\AppData\Local\Opera\Opera\cache\g_000C\opr0018J.tmp/file0: I/O error scanning file: 0x00220005

C:\Users\Mário Monteiro\ntuser.dat: Error opening file for read: 0x00000020

C:\Users\Mário Monteiro\ntuser.dat.LOG1: Error opening file for read: 0x00000020

C:\Users\Mário Monteiro\ntuser.dat.LOG2: Error opening file for read: 0x00000020

C:\Users\Mário Monteiro\AppData\Local\Microsoft\Windows\UsrClass.dat: Error opening file for read: 0x00000020

C:\Users\Mário Monteiro\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1: Error opening file for read: 0x00000020

C:\Users\Mário Monteiro\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2: Error opening file for read: 0x00000020

C:\Users\Mário Monteiro\AppData\Local\Mozilla\Firefox\Profiles\ldnkfl42.default\Cache\D\D2\93427d01/file0: I/O error scanning file: 0x00220005

C:\Users\Mário Monteiro\AppData\Roaming\Samsung\New PC Studio\00000002.dat: I/O error scanning file: 0x00000026

C:\Users\Mário Monteiro\Downloads\27204_flv_player_2025.exe/noname.nsis/file12/file0: I/O error scanning file: 0x00220000

C:\Users\Mário Monteiro\Downloads\MMCsetup.exe/file40/noname.nsis/file0: I/O error scanning file: 0x00220000

C:\Users\Mário Monteiro\Downloads\MMCsetup.exe/file40/noname.nsis/file1: I/O error scanning file: 0x00220005

C:\Users\Mário Monteiro\Downloads\UsbFix.exe: File infected with W32/Malware.QKIW

Deleted file: C:\Users\Mário Monteiro\Downloads\UsbFix.exe

C:\Windows\explorer.exe: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\LocalService\ntuser.dat: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG2: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1: Error opening file for read: 0x00000020

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG2: Error opening file for read: 0x00000020

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/133: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/134: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/135: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/136: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/137: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/138: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/139: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/140: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/141: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/143: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/144: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/145: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/146: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_2~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_2~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_2_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_2_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_1~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_1~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_1_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_for_kb982480_client_1_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_5_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_5_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_5_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_5_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_4_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_4_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_4_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_4_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_3_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_3_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_3_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_3_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_2_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_2_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_2_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_2_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_1_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_1_for_kb982480~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_1_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.mum: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/package_1_for_kb982480_bf~31bf3856ad364e35~x86~~6.0.1.0.cat: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/178: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/179: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/180: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/181: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/182: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/183: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/184: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/185: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6002.22382_none_279938aee2cfd51c.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/187: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/188: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/189: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/190: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/191: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/192: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/193: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/194: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6002.18242_none_273adb93c991c58e.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/196: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/197: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/198: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/199: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6001.22670_none_25bb961ee5a33159.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6001.18459_none_255099dfcc6d4095.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6002.22382_none_353ddfbb6db76906.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6002.18242_none_34df82a054795978.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6001.22670_none_33603d2b708ac543.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6001.18459_none_32f540ec5754d47f.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6002.22382_none_52af910bac636bec.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6002.18242_none_525133f093255c5e.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6001.22670_none_50d1ee7baf36c829.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6001.18459_none_5066f23c9600d765.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_mcstore_31bf3856ad364e35_6.0.6002.22382_none_c7b439b55456d4aa.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_mcstore_31bf3856ad364e35_6.0.6002.18242_none_c755dc9a3b18c51c.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_mcstore_31bf3856ad364e35_6.0.6001.22670_none_c5d69725572a30e7.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_mcstore_31bf3856ad364e35_6.0.6001.18459_none_c56b9ae63df44023.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehshell_31bf3856ad364e35_6.0.6002.22382_none_8db1ed54581ef556.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehshell_31bf3856ad364e35_6.0.6002.18242_none_8d5390393ee0e5c8.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehshell_31bf3856ad364e35_6.0.6001.22670_none_8bd44ac45af25193.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehshell_31bf3856ad364e35_6.0.6001.18459_none_8b694e8541bc60cf.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehrecobj_31bf3856ad364e35_6.0.6002.22382_none_8cfcef7d5eb63e49.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehrecobj_31bf3856ad364e35_6.0.6002.18242_none_8c9e926245782ebb.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehrecobj_31bf3856ad364e35_6.0.6001.22670_none_8b1f4ced61899a86.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehrecobj_31bf3856ad364e35_6.0.6001.18459_none_8ab450ae4853a9c2.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehepg_31bf3856ad364e35_6.0.6002.22382_none_ddbed213e56b6704.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehepg_31bf3856ad364e35_6.0.6002.18242_none_dd6074f8cc2d5776.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehepg_31bf3856ad364e35_6.0.6001.22670_none_dbe12f83e83ec341.manifest: I/O error scanning file: 0x00220005

C:\Windows\SoftwareDistribution\Download\11454ff80c1d2a89b02c4e0db1a067a4\BIT6542.tmp/msil_ehepg_31bf3856ad364e35_6.0.6001.18459_none_db763344cf08d27d.manifest: I/O error scanning file: 0x00220005

C:\Windows\System32\catroot2\edb.log: Error opening file for read: 0x00000020

C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb: Error opening file for read: 0x00000020

C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb: Error opening file for read: 0x00000020

C:\Windows\System32\config\components: Error opening file for read: 0x00000020

C:\Windows\System32\config\COMPONENTS.LOG1: Error opening file for read: 0x00000020

C:\Windows\System32\config\COMPONENTS.LOG2: Error opening file for read: 0x00000020

C:\Windows\System32\config\default: Error opening file for read: 0x00000020

C:\Windows\System32\config\DEFAULT.LOG1: Error opening file for read: 0x00000020

C:\Windows\System32\config\DEFAULT.LOG2: Error opening file for read: 0x00000020

C:\Windows\System32\config\sam: Error opening file for read: 0x00000020

C:\Windows\System32\config\SAM.LOG1: Error opening file for read: 0x00000020

C:\Windows\System32\config\SAM.LOG2: Error opening file for read: 0x00000020

C:\Windows\System32\config\security: Error opening file for read: 0x00000020

C:\Windows\System32\config\SECURITY.LOG1: Error opening file for read: 0x00000020

C:\Windows\System32\config\SECURITY.LOG2: Error opening file for read: 0x00000020

C:\Windows\System32\config\software: Error opening file for read: 0x00000020

C:\Windows\System32\config\SOFTWARE.LOG1: Error opening file for read: 0x00000020

C:\Windows\System32\config\SOFTWARE.LOG2: Error opening file for read: 0x00000020

C:\Windows\System32\config\system: Error opening file for read: 0x00000020

C:\Windows\System32\config\SYSTEM.LOG1: Error opening file for read: 0x00000020

C:\Windows\System32\config\SYSTEM.LOG2: Error opening file for read: 0x00000020

C:\Windows\System32\config\RegBack\COMPONENTS: Error opening file for read: 0x00000020

C:\Windows\System32\config\RegBack\DEFAULT: Error opening file for read: 0x00000020

C:\Windows\System32\config\RegBack\SAM: Error opening file for read: 0x00000020

C:\Windows\System32\config\RegBack\SECURITY: Error opening file for read: 0x00000020

C:\Windows\System32\config\RegBack\SOFTWARE: Error opening file for read: 0x00000020

C:\Windows\System32\config\RegBack\SYSTEM: Error opening file for read: 0x00000020

C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl: Error opening file for read: 0x00000020

C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl: Error opening file for read: 0x00000020

C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl: Error opening file for read: 0x00000020

C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl: Error opening file for read: 0x00000020

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

Os seus logs estão limpos. Só alguns pequenos problemas no registro foram detectados e corrigidos pelo Norman.

_________________

 

Se você quiser, a gente pode fazer escaneamentos com outras ferramentas semelhantes, mas é quase certo que elas também não irão encontrar nada de errado. Parece ser um engano do sistema de proteção do seu banco. Seria bom neste caso entrar em contato com o suporte deles, relatar este problema e ver o que eles sugerem neste caso, não é mesmo?

Compartilhar este post

Link para o post
Compartilhar em outros sites

Mário Monteiro    179

Mário Monteiro
Postado

Então, só queria confirmar isso

 

Estas verificações faço com relativa frequencia

 

Mas vez por outra bloqueiam meu acesso ao internet bank alegando infecção

 

Vou ver isso com eles

 

Muito Obrigado

 

:D :clap: :joia:

Compartilhar este post

Link para o post
Compartilhar em outros sites

Power Max    54

Power Max
Postado

PROBLEMA RESOLVIDO

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post

Link para o post
Compartilhar em outros sites
Ir para a lista de tópicos Tópicos Resolvidos (Seguranca & Malwares)
×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.

  Aceito