Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking Digg  Social bookmarking Delicious  Social bookmarking Reddit  Social bookmarking Stumbleupon  Social bookmarking Slashdot  Social bookmarking Yahoo  Social bookmarking Google  Social bookmarking Blinklist  Social bookmarking Blogmarks  Social bookmarking Technorati  

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14428 usuários registrados
O último usuário registrado atende pelo nome de RS_Computadores

Os nossos membros postaram um total de 35114 mensagens em 3558 assuntos
Últimos assuntos
» Pc reinicia ao desligar e vai pra BIOS
por joram Ontem à(s) 14:41

Quem está conectado
Não há nenhum usuário online :: Nenhum usuário registrado, Nenhum Invisível e nenhuma Visita :: 1 Motor de busca

Nenhum

O recorde de usuários online foi de 108 em Qui 15 Maio 2014, 21:18
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Setembro 2017
SegTerQuaQuiSexSabDom
    123
45678910
11121314151617
18192021222324
252627282930 

Calendário Calendário

Palavras chave


wpennybeed.exe - Erro de aplicativo

Ver o tópico anterior Ver o tópico seguinte Ir em baixo

wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Ter 29 Jul 2014, 20:39

wpennybeed.exe - Erro de aplicativo

A Instrução no "0x0040f411'' fez referencia a memoria no ''0x00000001''. A memoria não pode ser ''read''.

Clique em 'OK' para encerrar o programa
Clique em 'Cancelar' para deputar o programa


ENTÃO ESTE E O ÚNICO ERRO QUE ESTAR TENDO NO MEU PC , QUE NUM PARA NUNCA DE APARECER , FICAREI AGRADECIDO SE SOUBEREM RESOLVER !!!
avatar
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Ter 29 Jul 2014, 21:11

 Faça o download do < ZHPDiag >  < [Você precisa estar registrado e conectado para ver esta imagem.]> ( ... de Nicolas Coolman )

Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPDiag para baixá-lo, tal como mostra a imagem abaixo:

[Você precisa estar registrado e conectado para ver esta imagem.]

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

Tutorial de instalação e execução do aplicativo ZHPDiag

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

(RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Ter 29 Jul 2014, 21:22

~ Relatório do ZHPDiag v2014.7.29.110 - Nicolas Coolman  (29/7/2014)
~ Iniciado por Felipe Andrade (29/7/2014 21:14:23)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Endereço do Webforum : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão : Versão atualizada.
~  Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Not Found


---\\ Navegadores Internet
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 25.0 (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Microsoft Windows XP, 32-bit Service Pack 2 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : KO

---\\ Softwares de proteçao do sistema
Malwarebytes Anti-Malware versão 2.0.2.1012

---\\ Softwares d'optimização do sistema
CCleaner v4.07

---\\ Softwares de partilha do PeerToPeer (P2P)
µTorrent v3.3.0.29677  =>P2P.µTorrent

---\\ Monitoramento dos softwares
Adobe Flash Player 14 Plugin

---\\ Informações sobre o sistema
~ Processor: x86 Family 6 Model 22 Stepping 1, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1014 MB (24% free)
System Restore: Activé (Enable)
System drive C: has 4 GB (20%) free of 18 GB

---\\ Modo de conexão ao sistema
~ Computer Name: PC-CASA
~ User Name: Felipe Andrade
~ All Users Names: SUPPORT_388945a0, Mateus Andrade, HelpAssistant, Felipe Andrade, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\ZHP\
~ %AppData% : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\
~ %Desktop% : C:\Documents and Settings\Felipe Andrade\Desktop\
~ %Favorites% : C:\Documents and Settings\Felipe Andrade\Favoritos\
~ %LocalAppData% : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\
~ %StartMenu% : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 4 Go of 18 Go)
D: Hard drive, Flash drive, Thumb drive (Free 5 Go of 20 Go)
F: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
~ Security Center: 44 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.FA61A19050AE14BEC1A26DE82390DD65] - (.Microsoft Corporation - Windows Explorer.) (.4/8/2004 - 00:45:34.) -- C:\WINDOWS\Explorer.exe [1034240]
[MD5.6CE32F7778061CCC5814D5E0F282D369] - (.Microsoft Corporation - Internet Extensions for Win32.) (.8/3/2009 - 03:34:58.) -- C:\WINDOWS\system32\wininet.dll [914944]
[MD5.6F7BDE7A1126DEBF0CC359A54953EFC1] - (.Microsoft Corporation - Aplicativo de logon do Windows NT.) (.4/8/2004 - 00:45:46.) -- C:\WINDOWS\system32\Winlogon.exe [504320]
[MD5.55E6E1C51B6D30E54335750955453702] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/8/2008 - 06:51:43.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.3/8/2004 - 22:59:44.) -- C:\WINDOWS\system32\Drivers\atapi.sys [95360]
[MD5.CD7D5152DF32B47F4E36F710B35AAE02] - (.Microsoft Corporation - CD-ROM File System Driver.) (.3/8/2004 - 23:14:12.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.AF9C19B3100FE010496B1A27181FBF72] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.3/8/2004 - 22:59:54.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [49536]
[MD5.8EC0D923CD6128DE73DDA0DF082BB985] - (.Microsoft Corporation - FIPS Crypto Driver.) (.28/9/2001 - 09:00:00.) -- C:\WINDOWS\system32\Drivers\Fips.sys [35072]
[MD5.3FCC124B6E08EE0E9351F717DD136939] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.7/1/2005 - 16:07:18.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [138752]
[MD5.FCAD1D4A4724B6FA6F05A5DB7F89443C] - (.Microsoft Corporation - Driver de porta i8042.) (.4/8/2004 - 00:37:16.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [53760]
[MD5.F8AA320C6A0409C0380E5D8A99D76EC6] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.3/8/2004 - 23:00:16.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [41856]
[MD5.B5A8E215AC29D24D60B4D1250EF05ACE] - (.Microsoft Corporation - IP Network Address Translator.) (.3/8/2004 - 23:04:52.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [134912]
[MD5.64537AA5C003A6AFEEE1DF819062D0D1] - (.Microsoft Corporation - IPSec Driver.) (.3/8/2004 - 23:14:30.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [74752]
[MD5.FB6C89BB3CE282B08BDB1E3C179E1C39] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.24/2/2010 - 09:31:30.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [454016]
[MD5.0C80E410CD2F47134407EE7DD19CC86B] - (.Microsoft Corporation - MBT Transport driver.) (.3/8/2004 - 23:14:38.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.3/8/2004 - 23:15:10.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574592]
[MD5.8B225D87CBE08A5CB090BBF9F7DE1D30] - (.Microsoft Corporation - Driver de porta paralela.) (.4/8/2004 - 00:55:42.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.98FAEB4A4DCF812BA1C6FCA4AA3E115C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.3/8/2004 - 23:14:24.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.A2CAE2C60BC37E0751EF9DDA7CEAF4AD] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.3/8/2004 - 22:01:16.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196864]
[MD5.DDD1A19CD2EDA2D6AE5AB61BAAEB4278] - (.Microsoft Corporation - Redbook Audio Filter Driver.) (.3/8/2004 - 21:36:32.) -- C:\WINDOWS\system32\Drivers\redbook.sys [57984]
[MD5.EB2F82AAEADCC9BAAC66CBA4D714E338] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.4/8/2004 - 00:37:30.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53248]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 2/183
~ Mes musiques (My Musics) : 18/150
~ Mes Videos (My Videos) : 2/4
~ Mes Favoris (My Favorites) : 1/45
~ Mes Documents (My Documents) : 2/482
~ Mon Bureau (My Desktop) : 0/9
~ Menu demarrer (Programs) : 1/35
~ Hidden Files:  Scanned in 00mn 02s



---\\ Processos lançados
[MD5.904E9B97EC6A31EC96695D25CFDF7955] - (.Cherished Technololgy LIMITED - IePlugin Service.) -- C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe   [694784] [PID.1480]  =>PUP.IePluginService
[MD5.221564CC7BE37611FE15EACF443E1BF6] - (.Apple Inc. - YSLoader.exe.) -- C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [43336] [PID.1668]
[MD5.92AE26F2CAF4A67E24A0BA6DDF32CC3C] - (.mst software GmbH, Germany - mst Defrag SDK Service.) -- C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS.exe   [406016] [PID.1716]
[MD5.191D8ECCC40F05B52FAC0513F35BA01D] - (.ESET - ESET Service.) -- C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\ekrn.exe   [810144] [PID.1740]
[MD5.31D8B705DCD5F2366186E731F87C7A71] - (.Hewlett-Packard Company - No Comment.) -- C:\Arquivos de programas\Arquivos comuns\LightScribe\LSSrvc.exe   [75304] [PID.1908]
[MD5.A6CCD2E757C35B16A1A0DC5D9DC3FB84] - (...) -- C:\WINDOWS\system32\LocalServer\service.exe   [89992] [PID.1480]
[MD5.875E4E0661F3A5994DF9E5E3A0A4F96B] - (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) -- C:\WINDOWS\system32\IoctlSvc.exe   [81920] [PID.556]
[MD5.6163A64C97ED1F2D9FCF7DEBCD774501] - (.ESET - ESET GUI.) -- C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\egui.exe   [2219184] [PID.1384]
[MD5.AD039BD721859550F23064D42E7DDA44] - (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\uTorrent\uTorrent.exe   [1045072] [PID.1584]  =>P2P.BitTorrent
[MD5.E5D6A0B63476B118787385F2F2FE7295] - (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BavTray.exe   [1704296] [PID.3180]
[MD5.CD601025493A4030A45815961844D812] - (.Baidu, Inc. - Baidu Antivirus Service.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe   [2049072] [PID.304]
[MD5.FFCDC076282B74EBA4EC05A11A6A9EE5] - (.Baidu, Inc. - Baidu Antivirus Hips Service.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe   [481432] [PID.308]
[MD5.712E6DA7D7AA91BCE4F51CC8DCD1DDE6] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Arquivos de programas\Internet Download Manager\IDMan.exe   [3821136] [PID.3584]
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Arquivos de programas\Internet Download Manager\IEMonitor.exe   [269848] [PID.3448]
[MD5.EF01D104449CC654FDCF423C92BD8846] - (.Mozilla Corporation - Firefox.) -- C:\Arquivos de programas\Mozilla Firefox\firefox.exe   [275568] [PID.836]
[MD5.2C1611C7D509DD1C19F011C7A91A38A1] - (.Penny Bee Agent - No Comment.) -- C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\wpennybeed.exe   [209976] [PID.3500]
[MD5.2A43A30EF7FCFD1284F8C3318B784A68] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Arquivos de programas\Mozilla Firefox\plugin-container.exe   [18544] [PID.1852]
[MD5.9C41C4C252E978B5BABAF4C19BEC48CB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Arquivos de programas\ZHPDiag\ZHPDiag.exe   [8083456] [PID.3836]
~ Processes Running:  Scanned in 00mn 01s



---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = [Você precisa estar registrado e conectado para ver este link.]
~ IE Browser: 11 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys:  Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Barras do Internet Explorer (03))
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Chave orfã
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Chave orfã
~ Toolbar:  Scanned in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [AllUsers]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.)  -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\uTorrent\uTorrent.exe   =>P2P.BitTorrent
~ Global Startup: 1 Legitimates Filtered in 00mn 00s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HDAudDeck] . (.VIA Technologies, Inc. - HDeck MFC Application.) -- C:\Arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [Baidu Antivirus] . (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BavTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Arquivos de programas\Internet Download Manager\IDMan.exe
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-602162358-484763869-682003330-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-602162358-484763869-682003330-1003\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Arquivos de programas\Internet Download Manager\IDMan.exe
~ Application:  Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Arquivos de programas\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Arquivos de programas\Messenger\msmsgs.exe
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Piratagem da Opção " Redefinir Configurações da Web " (014)
O14 - IERESET.INF: SEARCH_PAGE_URL=SEARCH_PAGE_URL="&http://home.microsoft.com/intl/br/access/allinone.asp"
O14 - IERESET.INF: SAFESITE_VALUE=SAFESITE_VALUE="search.msn.com.br"
~ IE Paramètres WEB:  Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} ((no name)) - [Você precisa estar registrado e conectado para ver este link.]
~ Objets ActiveX:  Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{AF64339F-A007-4ED4-9298-499051FFD3B8}: DhcpNameServer = 192.168.1.1 10.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{AF64339F-A007-4ED4-9298-499051FFD3B8}: DhcpNameServer = 192.168.1.1 10.0.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{AF64339F-A007-4ED4-9298-499051FFD3B8}: DhcpNameServer = 192.168.1.1 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 10.0.0.1
~ Domain:  Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agente de rede off-line.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\system32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL de notificação do serviço de logon secu.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - c:\docume~1\alluse~1\dadosd~1\wincert\win32c~1.dll (.not file.)
~ AppInit DLL:  Scanned in 00mn 00s



---\\ Chave do Registo autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Pasta e monitor da bandeja UPNP.) -- C:\WINDOWS\system32\upnpui.dll
~ SSODL: 6 Legitimates Filtered in 00mn 00s



---\\ Chave do Registo autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Biblioteca da interface de usuário do naveg.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Pré-carregador Browseui - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioteca da interface de usuário do naveg.) -- C:\WINDOWS\system32\browseui.dll
~ STS/SSO:  Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: Baidu Antivirus Service (BAVSvc) . (.Baidu, Inc. - Baidu Antivirus Service.) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe
O23 - Service: Baidu Hips Service (BHipsSvc) . (.Baidu, Inc. - Baidu Antivirus Hips Service.) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe
O23 - Service: IePlugin Services (IePluginServices) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe  =>PUP.IePluginService
O23 - Service: LocalServiceSystem (LocalServiceSystem) . (...) - C:\WINDOWS\system32\LocalServer\service.exe
O23 - Service: wpennybeed (wpennybeed) . (.Penny Bee Agent - No Comment.) - C:\DOCUME~1\ALLUSE~1\DADOSD~1\pennybee\wpennybeed.exe
~ Services: 12 Legitimates Filtered in 00mn 07s



---\\ Enumeração Ativa do Ambiente de trabalho & Editor MHTML (024)
O24 - Desktop Component 0: Minha página inicial atual - file:About:Home
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Microsoft\Wallpaper1.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Chaves de Gerenciamento Sessão (AppCertDlls,KnownDLLs) (O36)
O36 - AppCertDlls: (x64) . (...) -- c:\arquivos de programas\movies toolbar\safetynut\x64\safetycrt.dll  =>PUP.MoviesToolbar
~ Keys:  Scanned in 00mn 00s



---\\ Tarefas planificadas automaticamente (039)
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\060184C3-9766-46a0-B258-F4518A0B2633.job   [490]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\At2.job   [420]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\At3.job   [418]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\One-Click Optimizer.job   [436]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\pennybee Runner.job   [784]
~ Scheduled Task: 9 Legitimates Filtered in 00mn 40s



---\\ Componentes instalados (ActiveSetup Installed Components) (040)
O40 - ASIC: Installed Component - S-1-5-21-602162358-484763869-682003330-1003 - {08B0E5JF-4FCB-11CF-AAA5-00401C6XX500} -- Not Hexadécimal CLSID
O40 - ASIC: Installed Component - S-1-5-21-602162358-484763869-682003330-1003 - {RH48B6E5YF-4UKU-71CF-AVF5-02901P6HJ002} -- Not Hexadécimal CLSID
~ Active Setup: 20 Legitimates Filtered in 00mn 00s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver:  (Bfilter) . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - C:\WINDOWS\system32\drivers\Bfilter.sys
O41 - Driver:  (Bfmon) . (.Baidu, Inc. - Baidu FS Monitor Driver.) - C:\WINDOWS\system32\drivers\Bfmon.sys
O41 - Driver: (Bnbase) . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) - C:\WINDOWS\system32\drivers\bnbase.sys
O41 - Driver:  (Bndef) . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) - C:\WINDOWS\system32\drivers\bndef.sys
O41 - Driver:  (Bprotect) . (.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) - C:\WINDOWS\system32\drivers\Bprotect.sys
~ Drivers: 81 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\APN DTX]  =>Toolbar.Ask
[HKCU\Software\APN PIP]
[HKCU\Software\ARAR]
[HKCU\Software\Baidu Security]
[HKCU\Software\Baidu]
[HKCU\Software\Celular]
[HKCU\Software\Conduit]  =>Toolbar.Conduit
[HKCU\Software\FMChat]
[HKCU\Software\Install]
[HKCU\Software\PriceMeterUpdater]  =>PUP.PriceMeter
[HKCU\Software\Puxa Rápido]
[HKCU\Software\SmartBar]  =>Hijacker.SmartBar
[HKCU\Software\UpdaterEX]  =>PUP.Dealply
[HKLM\Software\Baidu Security]
[HKLM\Software\Baidu_Drp_pos]
[HKLM\Software\CA561A]
[HKLM\Software\Conduit]  =>Toolbar.Conduit
[HKLM\Software\Puxa Rápido]
[HKLM\Software\SP Global]  =>PUP.AdvancedSystemProtector
[HKLM\Software\SProtector]  =>PUP.Mocaflix
[HKLM\Software\Sakura]
[HKLM\Software\baidu]
[HKLM\Software\eSafeSecControl]  =>PUP.eSafeSecurity
[HKLM\Software\supTab]  =>PUP.SupTab
[HKLM\Software\supWPM]  =>PUP.WpManager
~ Key Software: 367 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 29/7/2014 - 19:31:40 - [] ----D C:\Arquivos de programas\Baidu Security
O43 - CFD: 29/7/2014 - 14:44:33 - [] ----D C:\Arquivos de programas\Baidu-Security-2014-4.4.4.73687
O43 - CFD: 29/7/2014 - 19:41:34 - [] ----D C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690
O43 - CFD: 12/4/2014 - 10:28:38 - [0] ----D C:\Arquivos de programas\RBM
O43 - CFD: 20/10/2013 - 21:15:15 - [] ----D C:\Arquivos de programas\Arquivos comuns\Serviços
O43 - CFD: 10/12/2013 - 10:47:12 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\9322ffd9f5829675
O43 - CFD: 8/1/2014 - 16:11:04 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Baidu
O43 - CFD: 29/7/2014 - 14:44:48 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Baidu Security
O43 - CFD: 10/12/2013 - 10:56:01 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Downlload keeper
O43 - CFD: 24/5/2014 - 13:23:32 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\eSafe
O43 - CFD: 29/7/2014 - 14:43:33 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices  =>PUP.IePluginService
O43 - CFD: 9/12/2013 - 16:58:27 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\InstallMate
O43 - CFD: 29/7/2014 - 14:42:07 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\pennybee
O43 - CFD: 9/12/2013 - 16:56:14 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\ssUrf. and keep
O43 - CFD: 4/12/2013 - 17:16:53 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer  =>PUP.TubeDimmer
O43 - CFD: 29/7/2014 - 14:51:46 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect  =>PUP.Fuyu
O43 - CFD: 10/4/2014 - 20:30:58 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\WPM  =>PUP.WpManager
O43 - CFD: 2/12/2013 - 16:40:05 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\23196
O43 - CFD: 2/12/2013 - 11:28:13 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\27627
O43 - CFD: 29/7/2014 - 14:44:14 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Baidu
O43 - CFD: 4/11/2013 - 16:36:59 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Baidu Security
O43 - CFD: 24/5/2014 - 13:23:34 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\FunmoodsChat  =>PUP.Funmoods
O43 - CFD: 29/7/2014 - 14:42:07 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\pennybee
O43 - CFD: 4/11/2013 - 11:56:21 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb  =>PUP.SearchResults
O43 - CFD: 24/5/2014 - 13:23:31 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab  =>PUP.SupTab
O43 - CFD: 21/10/2013 - 12:02:24 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX  =>PUP.Dealply
O43 - CFD: 29/7/2014 - 14:42:58 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches  =>Hijacker.WebsSearches
O43 - CFD: 3/12/2013 - 15:22:15 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Ares
O43 - CFD: 21/10/2013 - 11:15:06 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit
O43 - CFD: 19/5/2014 - 15:44:59 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\TB
O43 - CFD: 5/12/2013 - 09:24:49 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\WhiteListing
O43 - CFD: 23/1/2014 - 23:13:01 - [] R---D C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Acessórios
O43 - CFD: 27/2/2014 - 20:02:12 - [] R---D C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Inicializar
~ Program Folder: 187 Legitimates Filtered in 00mn 01s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 25/7/2014 - 20:17:31 ---A- . (...) -- C:\WINDOWS\system.ini   [227]
O44 - LFC:[MD5.4505962590B4C8874C9084A25D39E166] - 25/7/2014 - 20:17:31 ---A- . (...) -- C:\WINDOWS\win.ini   [748]
O44 - LFC:[MD5.DCC78B14C94A442C60981A7095B4A730] - 25/7/2014 - 20:23:05 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini   [69]
O44 - LFC:[MD5.117AD65BA77DEC5C07633C9AC7BB2BC5] - 29/7/2014 - 19:24:18 ---A- . (...) -- C:\WINDOWS\wiadebug.log   [159]
O44 - LFC:[MD5.375933765BA46FD1553A9D21EA77F0F7] - 29/7/2014 - 19:24:19 ---A- . (...) -- C:\WINDOWS\wiaservc.log   [49]
O44 - LFC:[MD5.4E771B38EC4764A4271F0135BD066E16] - 29/7/2014 - 19:34:17 ---A- . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\system32\Drivers\Bhbase.sys   [95296]
O44 - LFC:[MD5.6768BD7D6664A03B5871178FED12B0D5] - 29/7/2014 - 19:41:53 ---A- . (...) -- C:\WINDOWS\system32\config.ini   [32]
O44 - LFC:[MD5.6351F8964AA381F75A2633942CEC29BA] - 29/7/2014 - 19:41:54 ---A- . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) -- C:\WINDOWS\system32\Drivers\bnbase.sys   [58752]
O44 - LFC:[MD5.7EFD231BAA1A7ECF25AF075951D60906] - 29/7/2014 - 19:41:54 ---A- . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) -- C:\WINDOWS\system32\Drivers\bndef.sys   [51584]
O44 - LFC:[MD5.CB3E0EBD03C250170C4B4258F9264212] - 29/7/2014 - 19:41:56 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\system32\Drivers\Bfilter.sys   [48448]
O44 - LFC:[MD5.70DDC28A7998907EC42E1C60899ACAA6] - 29/7/2014 - 19:41:57 ---A- . (.Baidu, Inc. - Baidu FS Monitor Driver.) -- C:\WINDOWS\system32\Drivers\Bfmon.sys   [29504]
O44 - LFC:[MD5.4B9081B546A13B3AFB7C351C3B473C93] - 29/7/2014 - 19:41:58 ---A- . (.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) -- C:\WINDOWS\system32\Drivers\Bprotect.sys   [157504]
~ Files: 28 Legitimates Filtered in 00mn 41s



---\\ Operações e funções ao arranque do Windows Explorer (046)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\ARQUIV~1\MICROS~2\Office12\GRA8E1~1.DLL
~ ShellExecuteHooks:  Scanned in 00mn 00s



---\\ Exportar a chave da aplicação autorizada (047)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe" [Enabled] .(...) -- C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe (.not file.)  =>PUP.eSafeSecurity
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Puxa Rápido\PuxaRapido.exe" [Enabled] .(...) -- C:\Arquivos de programas\Puxa Rápido\PuxaRapido.exe (.not file.)
O47 - AAKE:Key Export SP - "E:\EasySetupAssistant.exe" [Enabled] .(...) -- E:\EasySetupAssistant.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Ares\Ares.exe" [Enabled] .(...) -- C:\Arquivos de programas\Ares\Ares.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Megacubo\megacubo.exe" [Enabled] .(.www.megacubo.net.) -- C:\Arquivos de programas\Megacubo\megacubo.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe" [Enabled] .(.Penny Bee Agent.) -- C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe
O47 - AAKE:Key Export DP - "C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe" [Enabled] .(.Penny Bee Agent.) -- C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe
~ Keys Export: 28 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe  =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - bpsvc.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe  =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe  =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsersafeguard.exe - tasklist.exe  =>PUP.BrowserSafeguard
O50 - IFEO:Image File Execution Options - dprotectsvc.exe - tasklist.exe  =>Trojan.Staser
O50 - IFEO:Image File Execution Options - protectedsearch.exe - tasklist.exe  =>Spyware.ProtectedSearch
O50 - IFEO:Image File Execution Options - searchprotection.exe - tasklist.exe  =>PUP.SearchProtect
O50 - IFEO:Image File Execution Options - searchprotector.exe - tasklist.exe  =>PUP.SearchProtect
O50 - IFEO:Image File Execution Options - snapdo.exe - tasklist.exe  =>Hijacker.SmartBar
O50 - IFEO:Image File Execution Options - stinst32.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - stinst64.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - utiljumpflip.exe - tasklist.exe  =>PUP.JumpFlip
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO:  Scanned in 00mn 00s



---\\ Enumeração das chaves do registo StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\LiveSupport  [Key] . (...) -- C:\Arquivos de programas\LiveSupport\LiveSupport.exe (.not file.)  =>PUP.LiveSupport
O53 - SMSR:HKLM\...\startupreg\mobilegeni daemon  [Key] . (...) -- C:\Arquivos de programas\Mobogenie\DaemonProcess.exe (.not file.)  =>PUP.Mobogenie
~ SMSR Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKCU\...\Policies\System] - "EnableLUA"=0
~ MWPS: 6 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\system32\Drivers\Bfilter.sys   [48448]
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu FS Monitor Driver.) -- C:\WINDOWS\system32\Drivers\Bfmon.sys   [29504]
O58 - SDL:1/7/2014 - 04:06:50 ---A- . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\system32\Drivers\Bhbase.sys   [95296]
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) -- C:\WINDOWS\system32\Drivers\bnbase.sys   [58752]
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) -- C:\WINDOWS\system32\Drivers\bndef.sys   [51584]
O58 - SDL:13/6/2014 - 07:03:37 ---A- . (.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) -- C:\WINDOWS\system32\Drivers\Bprotect.sys   [157504]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\Drivers\cinemst2.sys   [262528]
O58 - SDL:18/4/2013 - 18:06:08 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\WINDOWS\system32\Drivers\dgderdrv.sys   [20032]
O58 - SDL:7/1/2005 - 16:07:18 ----- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudbus.sys   [138752]
O58 - SDL:7/1/2005 - 16:07:16 ----- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudio.sys   [145920]
O58 - SDL:27/11/2013 - 21:24:18 ---A- . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS\system32\Drivers\idmtdi.sys   [121184]
O58 - SDL:26/12/2006 - 09:31:06 R--A- . (.Windows (R) Codename Longhorn DDK provider - Generic Port I/O.) -- C:\WINDOWS\system32\Drivers\PortIo.sys   [4864]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\Drivers\ptilink.sys   [17792]
O58 - SDL:1/10/2002 - 13:43:32 ---A- . (.SP - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\Drivers\SPCA561.SYS   [119798]
O58 - SDL:18/3/2013 - 16:51:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\Drivers\usbaapl.sys   [45056]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\Drivers\vdmindvd.sys   [58112]
O58 - SDL:25/5/2014 - 13:52:34 RSH-- . (...) -- C:\WINDOWS\system32\2BD4D8B6AB.sys   [56]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys   [9032]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys   [27097]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys   [4896]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys   [42809]
O58 - SDL:3/8/2004 - 22:46:56 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys   [42537]
O58 - SDL:15/6/2014 - 19:42:27 -SHA- . (...) -- C:\WINDOWS\system32\KGyGaAvL.sys   [3350]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys   [27900]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys   [29146]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys   [29370]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys   [29274]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys   [29146]
O58 - SDL:3/8/2004 - 22:45:20 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys   [33984]
O58 - SDL:3/8/2004 - 22:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys   [34560]
O58 - SDL:3/8/2004 - 22:45:12 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys   [35648]
O58 - SDL:3/8/2004 - 22:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys   [35424]
O58 - SDL:3/8/2004 - 22:45:14 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys   [34560]
O58 - SDL:18/1/2012 - 14:55:56 ----- . (...) -- C:\WINDOWS\system32\pwdrvio.sys   [16472]
O58 - SDL:18/1/2012 - 14:55:54 ----- . (...) -- C:\WINDOWS\system32\pwdspio.sys   [11104]
~ Drivers: 63 Legitimates Filtered in 00mn 01s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Lista dos serviços Legacy du registo (064)
O64 - Services: CurCS - 22/7/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe (BAVSvc)  .(.Baidu, Inc. - Baidu Antivirus Service.) - LEGACY_BAVSVC
O64 - Services: CurCS - 22/7/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BdApiUtil.sys (BdApiUtil)  .(.Baidu, Inc. - Baidu Antivirus BdApi Driver.) - LEGACY_BDAPIUTIL
O64 - Services: CurCS - 27/5/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BdCameraProtect.sys (BdCameraProtect)  .(.Baidu, Inc. - Baidu Antivirus Camera Protector Driver.) - LEGACY_BDCAMERAPROTECT
O64 - Services: CurCS - 27/5/2014 - C:\WINDOWS\system32\drivers\Bfilter.sys (Bfilter)  .(.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - LEGACY_BFILTER
O64 - Services: CurCS - 27/5/2014 - C:\WINDOWS\system32\drivers\Bfmon.sys (Bfmon)  .(.Baidu, Inc. - Baidu FS Monitor Driver.) - LEGACY_BFMON
O64 - Services: CurCS - 1/7/2014 - C:\WINDOWS\system32\drivers\Bhbase.sys (Bhbase)  .(.Baidu, Inc. - Baidu Antivirus Hook Base.) - LEGACY_BHBASE
O64 - Services: CurCS - 22/7/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe (BHipsSvc)  .(.Baidu, Inc. - Baidu Antivirus Hips Service.) - LEGACY_BHIPSSVC
O64 - Services: CurCS - 27/5/2014 - C:\WINDOWS\system32\drivers\bndef.sys (Bndef)  .(.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) - LEGACY_BNDEF
O64 - Services: CurCS - 13/6/2014 - C:\WINDOWS\system32\drivers\Bprotect.sys (Bprotect)  .(.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) - LEGACY_BPROTECT
O64 - Services: CurCS - 6/7/1744 - C:\WINDOWS\system32\drivers\BprotectEx.sys (BprotectEx) .(...) - LEGACY_BPROTECTEX
O64 - Services: CurCS - 29/7/2014 - C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe (IePluginServices)  .(.Cherished Technololgy LIMITED - IePlugin Service.) - LEGACY_IEPLUGINSERVICES  =>PUP.IePluginService
O64 - Services: CurCS - 8/3/2011 - C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys (LiveTunerPM) .(...) - LEGACY_LIVETUNERPM
O64 - Services: CurCS - 4/12/2013 - C:\WINDOWS\system32\LocalServer\service.exe (LocalServiceSystem) .(...) - LEGACY_LOCALSERVICESYSTEM
O64 - Services: CurCS - 6/7/1744 - C:\Arquivos de programas\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil.sys (PCFApiUtil) .(...) - LEGACY_PCFAPIUTIL
~ Legacy: 146 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Arquivos de programas\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Arquivos de programas\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - () - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (webssearches) - [Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.WebsSearches
O69 - SBI: SearchScopes [HKCU] {86c83f9e-48a4-4cd2-a763-64fea5df35f7} - (Baixaki) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.254FBCA565E049648B0CCE2CEADF05D2] [SPRF][24/10/2013] (...) -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\inst.exe   [87608]
[MD5.46DBCB4C3B0D64B2EA1E047B522F549B] [SPRF][29/7/2014] (...) -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\logs.dat   [14720]
~ Files: 6 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.D74AE12A11A66D1ED5AF4BF8211DDE66] [WIS][10/4/2014] (.SaveSense - Google Update Helper.) -- C:\Windows\Installer\314a1e.msi   [23552]  =>PUP.SaveSense
~ WIS: 1 Legitimates Filtered in 00mn 03s



---\\ Search CLSID Registry Key (O101)
[HKCR\CLSID\{A7013863-C01B-D4E5-BE48-140B0F3FE0E6}] (ViewPassword)  =>PUP.ViewPassword
~ BCK: 5069 Legitimates Filtered in 00mn 09s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 8/7/2014 262320 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 4/8/2004 225280 |  (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Demand 12/1/2011 33584 |  (EhttpSrv) . (.ESET.) - C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
SS - | Demand 21/2/2014 553288 |  (iPod Service) . (.Apple Inc..) - C:\Arquivos de programas\iPod\bin\iPodService.exe
SS - | Auto 12/5/2014 1809720 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Arquivos de programas\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - | Auto 12/5/2014 860472 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Arquivos de programas\Malwarebytes Anti-Malware\mbamservice.exe
SS - | Demand 6/6/2014 119408 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 8/4/2008 800040 |  (NBService) . (.Nero AG.) - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe
SS - | Demand 22/1/2008 275752 |  (NMIndexingService) . (.Nero AG.) - C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe
SS - | Demand 19/11/2013 885096 |  (WO_LiveService) . (...) - C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe
SR - | Auto 12/2/2014 43336 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 22/7/2014 2049072 |  (BAVSvc) . (.Baidu, Inc..) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe
SR - | Auto 22/7/2014 481432 |  (BHipsSvc) . (.Baidu, Inc..) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe
SR - | Auto 24/8/2009 406016 |  (DfSdkS) . (.mst software GmbH, Germany.) - C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS.exe
SR - | Auto 12/1/2011 810144 |  (ekrn) . (.ESET.) - C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\ekrn.exe
SR - | Auto 29/7/2014 694784 |  (IePluginServices) . (.Cherished Technololgy LIMITED.) - C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe  =>PUP.IePluginService
SR - | Auto 19/4/2007 75304 |  (LightScribeService) . (.Hewlett-Packard Company.) - C:\Arquivos de programas\Arquivos comuns\LightScribe\LSSrvc.exe
SR - | Auto 4/12/2013 89992 |  (LocalServiceSystem) . (...) - C:\WINDOWS\system32\LocalServer\service.exe
SR - | Auto 4/8/2004 14336 | C:\WINDOWS\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 19/12/2006 81920 |  (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc..) - C:\WINDOWS\system32\IoctlSvc.exe
SR - | Auto 4/8/2004 14336 | C:\WINDOWS\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 9/7/2014 209976 | C:\DOCUME~1\ALLUSE~1\DADOSD~1\pennybee\wpennybeed.exe (wpennybeed) . (.Penny Bee Agent.) - C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\wpennybeed.exe
~ Services:  Scanned in 00mn 09s



---\\ Scâner Aditional (088)
Database Version : 13026 - (29/7/2014)
Clés trouvées (Keys found) : 68
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 12
Fichiers trouvés  (Files found) : 11

[HKLM\SYSTEM\CurrentControlSet\Services\IePluginServices]   =>PUP.IePluginService^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\LiveSupport]   =>PUP.LiveSupport^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon]   =>PUP.Mobogenie^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}]   =>PUP.Funmoods
[HKLM\Software\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}]   =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}]   =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WSysControl]   =>PUP.eSafeSecurity
[HKCU\Software\APN DTX]   =>Toolbar.Ask
[HKCU\Software\APN PIP]   =>Toolbar.Ask
[HKLM\Software\SP Global]   =>PUP.AdvancedSystemProtector
[HKLM\Software\SProtector]   =>PUP.AdvancedSystemProtector
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP]   =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}]   =>Adware.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375]   =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5]   =>PUP.Tarma
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}]   =>Adware.MagniPic
[HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}]   =>Toolbar.Freecorder
[HKLM\Software\eSafeSecControl]   =>PUP.eSafeSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}]   =>Adware.InstallBrain
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc]   =>PUP.eSafeSecurity
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}]   =>Adware.BrowseFox
C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices   =>PUP.IePluginService^
C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer   =>PUP.TubeDimmer^
C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect   =>PUP.Fuyu^
C:\Documents and Settings\All Users\Dados de aplicativos\WPM   =>PUP.WpManager^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\FunmoodsChat   =>PUP.Funmoods^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb   =>PUP.SearchResults^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab   =>PUP.SupTab^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX   =>PUP.Dealply^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches   =>Hijacker.WebsSearches^
C:\Arquivos de programas\Optimizer Pro   =>PUP.OptimizerPro
C:\Documents and Settings\All Users\Dados de aplicativos\InstallMate   =>PUP.Tarma
C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit   =>Toolbar.Conduit
C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe   =>PUP.IePluginService^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\uTorrent\uTorrent.exe   =>P2P.BitTorrent^
[HKCU\Software\Conduit]   =>Toolbar.Conduit^
[HKCU\Software\PriceMeterUpdater]   =>PUP.PriceMeter^
[HKCU\Software\SmartBar]   =>Hijacker.SmartBar^
[HKCU\Software\UpdaterEX]   =>PUP.Dealply^
[HKLM\Software\Conduit]   =>Toolbar.Conduit^
[HKLM\Software\supTab]   =>PUP.SupTab^
[HKLM\Software\supWPM]   =>PUP.WpManager^
C:\Windows\Installer\314a1e.msi   =>PUP.SaveSense^
[HKCR\CLSID\{A7013863-C01B-D4E5-BE48-140B0F3FE0E6}] (ViewPassword)   =>PUP.ViewPassword^
~ Additionnel Scan: 255820 Items scanned in 00mn 34s



---\\ Informações complémentaires do módulos
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Internet Explorer, Gestão do Proxy (R5)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Barras do Internet Explorer (03))
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Aplicações iniciadas por registo & pastas (04)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Image File Execution Options (IFEO) (O50)
~ AMI: 4 Legitimates Filtered in 00mn 00s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.MoviesToolbar
[Você precisa estar registrado e conectado para ver este link.]  =>Toolbar.Ask
[Você precisa estar registrado e conectado para ver este link.]  =>Toolbar.Conduit
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.PriceMeter
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.SmartBar
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Dealply
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.AdvancedSystemProtector
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Mocaflix
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.eSafeSecurity
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SupTab
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.WpManager
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.TubeDimmer
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Funmoods
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SearchResults
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.WebsSearches
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.BitGuard
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.Eazel
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.BrowserSafeguard
[Você precisa estar registrado e conectado para ver este link.]  =>Trojan.Staser
[Você precisa estar registrado e conectado para ver este link.]  =>Spyware.ProtectedSearch
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SearchProtect
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.JumpFlip
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Mobogenie
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SaveSense
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.ViewPassword
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.IMBooster
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.RewardsArcade
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.V9Software
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Tarma
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.MagniPic
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.InstallBrain
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.BrowseFox
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.OptimizerPro
~ MSI: 33 link(s) detected in 00mn 00s



~ 925 Legitimates filtered by white list
End of the scan (745 lines in 02mn 39s)(0)
avatar
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Ter 29 Jul 2014, 23:03

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

Remova adwares e toolbars maliciosas com o Adwcleaner

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

(RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Qua 30 Jul 2014, 12:30

# AdwCleaner v3.301 - Relatório criado 30/07/2014 às 12:28:47
# Atualizado 28/07/2014 por Xplode
# Sistema Operacional : Microsoft Windows XP Service Pack 2 (32 bits)
# Usuário : Felipe Andrade - PC-CASA
# Executando de : C:\Documents and Settings\Felipe Andrade\Meus documentos\Downloads\Programs\AdwCleaner.exe
# Opção : Examinar

***** [ Serviços ] *****

Serviço Encontrado : IePluginServices

***** [ Arquivos / Pastas ] *****

Arquivo Encontrado : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\Ask.xml
Arquivo Encontrado : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\webssearches.xml
Arquivo Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\LiveSupport.exe_log.txt
Arquivo Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\regsvr32.exe_log.txt
Arquivo Encontrado : C:\Documents and Settings\Felipe Andrade\daemonprocess.txt
Arquivo Encontrado : C:\END
Pasta Encontrado : C:\Arquivos de programas\Optimizer Pro
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\baidu
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\Downlload keeper
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\eSafe
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\PennyBee
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\QuickSet
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\WinterSoft
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\WPM
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\AppData\LocalLow\DataMngr
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Mobogenie
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\NativeMessaging
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\WhiteListing
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\baidu
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\EZDownloader
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\PennyBee
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches

***** [ Tarefas ] *****


***** [ Atalhos ] *****

Atalho Encontrado : C:\Documents and Settings\All Users\Menu Iniciar\Programas\Internet Explorer.lnk ( [Você precisa estar registrado e conectado para ver este link.] )
Atalho Encontrado : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Internet Explorer.lnk ( [Você precisa estar registrado e conectado para ver este link.] )
Atalho Encontrado : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Acessórios\Ferramentas do Sistema\Internet Explorer (Sem Complementos).lnk ( [Você precisa estar registrado e conectado para ver este link.] )

***** [ Registro ] *****

Chave Encontrada : HKCU\Software\APN DTX
Chave Encontrada : HKCU\Software\APN PIP
Chave Encontrada : HKCU\Software\Conduit
Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceMeterUpdater
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Encontrada : HKCU\Software\PriceMeterLiveUpdate
Chave Encontrada : HKCU\Software\PriceMeterUpdater
Chave Encontrada : HKCU\Software\RegisteredApplicationsEx
Chave Encontrada : HKCU\Software\SmartBar
Chave Encontrada : HKCU\Software\SupHpUISoft
Chave Encontrada : HKCU\Software\UpdaterEX
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Chave Encontrada : HKLM\Software\Conduit
Chave Encontrada : HKLM\Software\eSafeSecControl
Chave Encontrada : HKLM\Software\FlvPlayer
Chave Encontrada : HKLM\SOFTWARE\Google\Chrome\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wpm
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WsysControl
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Chave Encontrada : HKLM\Software\SafetyNut
Chave Encontrada : HKLM\Software\Solvusoft
Chave Encontrada : HKLM\Software\SP Global
Chave Encontrada : HKLM\Software\SProtector
Chave Encontrada : HKLM\Software\SupTab
Chave Encontrada : HKLM\Software\supWindowsMangerProtect
Chave Encontrada : HKLM\Software\supWPM
Chave Encontrada : HKLM\Software\webssearchesSoftware
Chave Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Chave Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Chave Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Dados Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\arquiv~1\movies~1\safety~1\safety~2.dll
Dados Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\docume~1\alluse~1\dadosd~1\wincert\win32c~1.dll
Valor Encontrada : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Valor Encontrada : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Valor Encontrada : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls [x64]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v25.0 (pt-BR)

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Mozilla\Firefox\Profiles\cf8ocvrk.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\preferences ]

Encontrada [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]

*************************

AdwCleaner[R0].txt - [16480 octets] - [30/07/2014 12:28:47]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [16541 octets] ##########
avatar
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 12:31

Você só escolheu a opção de Examinar. Falta você clicar na opção Limpar e ir seguindo os passos indicados no tutorial que te passei. Depois disto poste o novo relatório que o Adwcleaner irá criar.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

(RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Qua 30 Jul 2014, 12:42

# AdwCleaner v3.301 - Relatório criado 30/07/2014 às 12:38:36
# Atualizado 28/07/2014 por Xplode
# Sistema Operacional : Microsoft Windows XP Service Pack 2 (32 bits)
# Usuário : Felipe Andrade - PC-CASA
# Executando de : C:\Documents and Settings\Felipe Andrade\Meus documentos\Downloads\Programs\AdwCleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

[#] Serviço Deletada : IePluginServices

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\baidu
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\eSafe
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\PennyBee
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\QuickSet
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\WinterSoft
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\WPM
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\Downlload keeper
Pasta Deletada : C:\Arquivos de programas\Optimizer Pro
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Mobogenie
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\NativeMessaging
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\WhiteListing
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\AppData\LocalLow\DataMngr
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\baidu
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\EZDownloader
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\PennyBee
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches
Arquivo Deletada : C:\END
Arquivo Deletada : C:\Documents and Settings\Felipe Andrade\daemonprocess.txt
Arquivo Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\LiveSupport.exe_log.txt
Arquivo Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\regsvr32.exe_log.txt
Arquivo Deletada : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\Ask.xml
Arquivo Deletada : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\webssearches.xml

***** [ Tarefas ] *****


***** [ Atalhos ] *****

Atalho Desinfectada : C:\Documents and Settings\All Users\Menu Iniciar\Programas\Internet Explorer.lnk
Atalho Desinfectada : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Internet Explorer.lnk
Atalho Desinfectada : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Acessórios\Ferramentas do Sistema\Internet Explorer (Sem Complementos).lnk

***** [ Registro ] *****

Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Valor Deletedo : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Valor Deletedo : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Valor Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]
Valor Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe]
Valor Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]
Chave Deletedo : HKCU\Software\APN DTX
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\Conduit
Chave Deletedo : HKCU\Software\PriceMeterLiveUpdate
Chave Deletedo : HKCU\Software\PriceMeterUpdater
Chave Deletedo : HKCU\Software\RegisteredApplicationsEx
Chave Deletedo : HKCU\Software\SmartBar
Chave Deletedo : HKCU\Software\SupHpUISoft
Chave Deletedo : HKCU\Software\UpdaterEX
Chave Deletedo : HKLM\Software\Conduit
Chave Deletedo : HKLM\Software\eSafeSecControl
Chave Deletedo : HKLM\Software\FlvPlayer
Chave Deletedo : HKLM\Software\SafetyNut
Chave Deletedo : HKLM\Software\Solvusoft
Chave Deletedo : HKLM\Software\SP Global
Chave Deletedo : HKLM\Software\SProtector
Chave Deletedo : HKLM\Software\SupTab
Chave Deletedo : HKLM\Software\supWindowsMangerProtect
Chave Deletedo : HKLM\Software\supWPM
Chave Deletedo : HKLM\Software\webssearchesSoftware
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceMeterUpdater
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wpm
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WsysControl
Dados Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\docume~1\alluse~1\dadosd~1\wincert\win32c~1.dll
Dados Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\arquiv~1\movies~1\safety~1\safety~2.dll
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v25.0 (pt-BR)

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Mozilla\Firefox\Profiles\cf8ocvrk.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\preferences ]

Deletedo [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]

*************************

AdwCleaner[R0].txt - [16622 octets] - [30/07/2014 12:28:47]
AdwCleaner[S0].txt - [15357 octets] - [30/07/2014 12:38:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15418 octets] ##########
avatar
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 12:43

Desative temporariamente seu antivírus para evitar conflitos.

* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Você precisa estar registrado e conectado para ver este link.]

Para executá-lo corretamente siga as dicas deste tutorial:

Exclua adwares e outras ameaças de seu PC e browsers com o aplicativo Zoek

* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

(RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Qua 30 Jul 2014, 12:55

n achei o log do programa mais o erro wpennybeed.exe - Erro de aplicativo parou de aparecer quando eu fiz a limpeza com o outro programa o AdwCleaner . n estar anunciando mais o erro !
avatar
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 14:03

isso aí! Fico feliz que o problema tenha sido resolvido.

Só para finalizar siga estes tutoriais abaixo, por gentileza:

Excluindo erros e otimizando seu PC com o CCleaner

Elimine arquivos inúteis de seu PC com o PureRa
_______________________________________________________________________________________________________________________

Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas deste tutorial.
_______________________________________________________________________________________________________________________

Foi um prazer ajudar. Conte sempre conosco!

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 15:43

CASO RESOLVIDO

Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da Equipe da Moderação solicitando o desbloqueio.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Ver o tópico anterior Ver o tópico seguinte Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum