Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.
Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit  Social bookmarking google      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14537 usuários registrados
O último usuário registrado atende pelo nome de Jaíne Miranda

Os nossos membros postaram um total de 35541 mensagens em 3616 assuntos
Últimos assuntos
» Monitor não roda 1920x1080 só com o pc
por joram Sab 04 Jul 2020, 11:26

Quem está conectado
2 usuários online :: Nenhum usuário registrado, Nenhum Invisível e 2 Visitantes :: 1 Motor de busca

Nenhum

O recorde de usuários online foi de 163 em Seg 02 Set 2019, 16:28
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Julho 2020
SegTerQuaQuiSexSabDom
  12345
6789101112
13141516171819
20212223242526
2728293031  

Calendário Calendário


wpennybeed.exe - Erro de aplicativo

Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Ter 29 Jul 2014, 20:39

wpennybeed.exe - Erro de aplicativo

A Instrução no "0x0040f411'' fez referencia a memoria no ''0x00000001''. A memoria não pode ser ''read''.

Clique em 'OK' para encerrar o programa
Clique em 'Cancelar' para deputar o programa


ENTÃO ESTE E O ÚNICO ERRO QUE ESTAR TENDO NO MEU PC , QUE NUM PARA NUNCA DE APARECER , FICAREI AGRADECIDO SE SOUBEREM RESOLVER !!!
FelipePc
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Ter 29 Jul 2014, 21:11

aplicativo - wpennybeed.exe - Erro de aplicativo 772309  Faça o download do < ZHPDiag >  < [Você precisa estar registrado e conectado para ver esta imagem.]> ( ... de Nicolas Coolman )

Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPDiag para baixá-lo, tal como mostra a imagem abaixo:

[Você precisa estar registrado e conectado para ver esta imagem.]

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

Tutorial de instalação e execução do aplicativo ZHPDiag

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty (RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Ter 29 Jul 2014, 21:22

~ Relatório do ZHPDiag v2014.7.29.110 - Nicolas Coolman  (29/7/2014)
~ Iniciado por Felipe Andrade (29/7/2014 21:14:23)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Endereço do Webforum : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão : Versão atualizada.
~  Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Not Found


---\\ Navegadores Internet
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 25.0 (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Microsoft Windows XP, 32-bit Service Pack 2 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : KO

---\\ Softwares de proteçao do sistema
Malwarebytes Anti-Malware versão 2.0.2.1012

---\\ Softwares d'optimização do sistema
CCleaner v4.07

---\\ Softwares de partilha do PeerToPeer (P2P)
µTorrent v3.3.0.29677  =>P2P.µTorrent

---\\ Monitoramento dos softwares
Adobe Flash Player 14 Plugin

---\\ Informações sobre o sistema
~ Processor: x86 Family 6 Model 22 Stepping 1, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1014 MB (24% free)
System Restore: Activé (Enable)
System drive C: has 4 GB (20%) free of 18 GB

---\\ Modo de conexão ao sistema
~ Computer Name: PC-CASA
~ User Name: Felipe Andrade
~ All Users Names: SUPPORT_388945a0, Mateus Andrade, HelpAssistant, Felipe Andrade, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\ZHP\
~ %AppData% : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\
~ %Desktop% : C:\Documents and Settings\Felipe Andrade\Desktop\
~ %Favorites% : C:\Documents and Settings\Felipe Andrade\Favoritos\
~ %LocalAppData% : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\
~ %StartMenu% : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 4 Go of 18 Go)
D: Hard drive, Flash drive, Thumb drive (Free 5 Go of 20 Go)
F: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
~ Security Center: 44 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.FA61A19050AE14BEC1A26DE82390DD65] - (.Microsoft Corporation - Windows Explorer.) (.4/8/2004 - 00:45:34.) -- C:\WINDOWS\Explorer.exe [1034240]
[MD5.6CE32F7778061CCC5814D5E0F282D369] - (.Microsoft Corporation - Internet Extensions for Win32.) (.8/3/2009 - 03:34:58.) -- C:\WINDOWS\system32\wininet.dll [914944]
[MD5.6F7BDE7A1126DEBF0CC359A54953EFC1] - (.Microsoft Corporation - Aplicativo de logon do Windows NT.) (.4/8/2004 - 00:45:46.) -- C:\WINDOWS\system32\Winlogon.exe [504320]
[MD5.55E6E1C51B6D30E54335750955453702] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/8/2008 - 06:51:43.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.3/8/2004 - 22:59:44.) -- C:\WINDOWS\system32\Drivers\atapi.sys [95360]
[MD5.CD7D5152DF32B47F4E36F710B35AAE02] - (.Microsoft Corporation - CD-ROM File System Driver.) (.3/8/2004 - 23:14:12.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.AF9C19B3100FE010496B1A27181FBF72] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.3/8/2004 - 22:59:54.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [49536]
[MD5.8EC0D923CD6128DE73DDA0DF082BB985] - (.Microsoft Corporation - FIPS Crypto Driver.) (.28/9/2001 - 09:00:00.) -- C:\WINDOWS\system32\Drivers\Fips.sys [35072]
[MD5.3FCC124B6E08EE0E9351F717DD136939] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.7/1/2005 - 16:07:18.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [138752]
[MD5.FCAD1D4A4724B6FA6F05A5DB7F89443C] - (.Microsoft Corporation - Driver de porta i8042.) (.4/8/2004 - 00:37:16.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [53760]
[MD5.F8AA320C6A0409C0380E5D8A99D76EC6] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.3/8/2004 - 23:00:16.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [41856]
[MD5.B5A8E215AC29D24D60B4D1250EF05ACE] - (.Microsoft Corporation - IP Network Address Translator.) (.3/8/2004 - 23:04:52.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [134912]
[MD5.64537AA5C003A6AFEEE1DF819062D0D1] - (.Microsoft Corporation - IPSec Driver.) (.3/8/2004 - 23:14:30.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [74752]
[MD5.FB6C89BB3CE282B08BDB1E3C179E1C39] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.24/2/2010 - 09:31:30.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [454016]
[MD5.0C80E410CD2F47134407EE7DD19CC86B] - (.Microsoft Corporation - MBT Transport driver.) (.3/8/2004 - 23:14:38.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.3/8/2004 - 23:15:10.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574592]
[MD5.8B225D87CBE08A5CB090BBF9F7DE1D30] - (.Microsoft Corporation - Driver de porta paralela.) (.4/8/2004 - 00:55:42.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.98FAEB4A4DCF812BA1C6FCA4AA3E115C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.3/8/2004 - 23:14:24.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.A2CAE2C60BC37E0751EF9DDA7CEAF4AD] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.3/8/2004 - 22:01:16.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196864]
[MD5.DDD1A19CD2EDA2D6AE5AB61BAAEB4278] - (.Microsoft Corporation - Redbook Audio Filter Driver.) (.3/8/2004 - 21:36:32.) -- C:\WINDOWS\system32\Drivers\redbook.sys [57984]
[MD5.EB2F82AAEADCC9BAAC66CBA4D714E338] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.4/8/2004 - 00:37:30.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53248]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 2/183
~ Mes musiques (My Musics) : 18/150
~ Mes Videos (My Videos) : 2/4
~ Mes Favoris (My Favorites) : 1/45
~ Mes Documents (My Documents) : 2/482
~ Mon Bureau (My Desktop) : 0/9
~ Menu demarrer (Programs) : 1/35
~ Hidden Files:  Scanned in 00mn 02s



---\\ Processos lançados
[MD5.904E9B97EC6A31EC96695D25CFDF7955] - (.Cherished Technololgy LIMITED - IePlugin Service.) -- C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe   [694784] [PID.1480]  =>PUP.IePluginService
[MD5.221564CC7BE37611FE15EACF443E1BF6] - (.Apple Inc. - YSLoader.exe.) -- C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [43336] [PID.1668]
[MD5.92AE26F2CAF4A67E24A0BA6DDF32CC3C] - (.mst software GmbH, Germany - mst Defrag SDK Service.) -- C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS.exe   [406016] [PID.1716]
[MD5.191D8ECCC40F05B52FAC0513F35BA01D] - (.ESET - ESET Service.) -- C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\ekrn.exe   [810144] [PID.1740]
[MD5.31D8B705DCD5F2366186E731F87C7A71] - (.Hewlett-Packard Company - No Comment.) -- C:\Arquivos de programas\Arquivos comuns\LightScribe\LSSrvc.exe   [75304] [PID.1908]
[MD5.A6CCD2E757C35B16A1A0DC5D9DC3FB84] - (...) -- C:\WINDOWS\system32\LocalServer\service.exe   [89992] [PID.1480]
[MD5.875E4E0661F3A5994DF9E5E3A0A4F96B] - (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) -- C:\WINDOWS\system32\IoctlSvc.exe   [81920] [PID.556]
[MD5.6163A64C97ED1F2D9FCF7DEBCD774501] - (.ESET - ESET GUI.) -- C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\egui.exe   [2219184] [PID.1384]
[MD5.AD039BD721859550F23064D42E7DDA44] - (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\uTorrent\uTorrent.exe   [1045072] [PID.1584]  =>P2P.BitTorrent
[MD5.E5D6A0B63476B118787385F2F2FE7295] - (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BavTray.exe   [1704296] [PID.3180]
[MD5.CD601025493A4030A45815961844D812] - (.Baidu, Inc. - Baidu Antivirus Service.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe   [2049072] [PID.304]
[MD5.FFCDC076282B74EBA4EC05A11A6A9EE5] - (.Baidu, Inc. - Baidu Antivirus Hips Service.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe   [481432] [PID.308]
[MD5.712E6DA7D7AA91BCE4F51CC8DCD1DDE6] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Arquivos de programas\Internet Download Manager\IDMan.exe   [3821136] [PID.3584]
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Arquivos de programas\Internet Download Manager\IEMonitor.exe   [269848] [PID.3448]
[MD5.EF01D104449CC654FDCF423C92BD8846] - (.Mozilla Corporation - Firefox.) -- C:\Arquivos de programas\Mozilla Firefox\firefox.exe   [275568] [PID.836]
[MD5.2C1611C7D509DD1C19F011C7A91A38A1] - (.Penny Bee Agent - No Comment.) -- C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\wpennybeed.exe   [209976] [PID.3500]
[MD5.2A43A30EF7FCFD1284F8C3318B784A68] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Arquivos de programas\Mozilla Firefox\plugin-container.exe   [18544] [PID.1852]
[MD5.9C41C4C252E978B5BABAF4C19BEC48CB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Arquivos de programas\ZHPDiag\ZHPDiag.exe   [8083456] [PID.3836]
~ Processes Running:  Scanned in 00mn 01s



---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [Você precisa estar registrado e conectado para ver este link.]
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = [Você precisa estar registrado e conectado para ver este link.]
~ IE Browser: 11 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys:  Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Barras do Internet Explorer (03))
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Chave orfã
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Chave orfã
~ Toolbar:  Scanned in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [AllUsers]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.)  -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\uTorrent\uTorrent.exe   =>P2P.BitTorrent
~ Global Startup: 1 Legitimates Filtered in 00mn 00s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HDAudDeck] . (.VIA Technologies, Inc. - HDeck MFC Application.) -- C:\Arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [Baidu Antivirus] . (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BavTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Arquivos de programas\Internet Download Manager\IDMan.exe
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-602162358-484763869-682003330-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-602162358-484763869-682003330-1003\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Arquivos de programas\Internet Download Manager\IDMan.exe
~ Application:  Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Arquivos de programas\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Arquivos de programas\Messenger\msmsgs.exe
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Piratagem da Opção " Redefinir Configurações da Web " (014)
O14 - IERESET.INF: SEARCH_PAGE_URL=SEARCH_PAGE_URL="&http://home.microsoft.com/intl/br/access/allinone.asp"
O14 - IERESET.INF: SAFESITE_VALUE=SAFESITE_VALUE="search.msn.com.br"
~ IE Paramètres WEB:  Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} ((no name)) - [Você precisa estar registrado e conectado para ver este link.]
~ Objets ActiveX:  Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{AF64339F-A007-4ED4-9298-499051FFD3B8}: DhcpNameServer = 192.168.1.1 10.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{AF64339F-A007-4ED4-9298-499051FFD3B8}: DhcpNameServer = 192.168.1.1 10.0.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{AF64339F-A007-4ED4-9298-499051FFD3B8}: DhcpNameServer = 192.168.1.1 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 10.0.0.1
~ Domain:  Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agente de rede off-line.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\system32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL de notificação do serviço de logon secu.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL comum para receber notificações do Winl.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - c:\docume~1\alluse~1\dadosd~1\wincert\win32c~1.dll (.not file.)
~ AppInit DLL:  Scanned in 00mn 00s



---\\ Chave do Registo autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Pasta e monitor da bandeja UPNP.) -- C:\WINDOWS\system32\upnpui.dll
~ SSODL: 6 Legitimates Filtered in 00mn 00s



---\\ Chave do Registo autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Biblioteca da interface de usuário do naveg.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Pré-carregador Browseui - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioteca da interface de usuário do naveg.) -- C:\WINDOWS\system32\browseui.dll
~ STS/SSO:  Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: Baidu Antivirus Service (BAVSvc) . (.Baidu, Inc. - Baidu Antivirus Service.) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe
O23 - Service: Baidu Hips Service (BHipsSvc) . (.Baidu, Inc. - Baidu Antivirus Hips Service.) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe
O23 - Service: IePlugin Services (IePluginServices) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe  =>PUP.IePluginService
O23 - Service: LocalServiceSystem (LocalServiceSystem) . (...) - C:\WINDOWS\system32\LocalServer\service.exe
O23 - Service: wpennybeed (wpennybeed) . (.Penny Bee Agent - No Comment.) - C:\DOCUME~1\ALLUSE~1\DADOSD~1\pennybee\wpennybeed.exe
~ Services: 12 Legitimates Filtered in 00mn 07s



---\\ Enumeração Ativa do Ambiente de trabalho & Editor MHTML (024)
O24 - Desktop Component 0: Minha página inicial atual - file:About:Home
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Microsoft\Wallpaper1.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Chaves de Gerenciamento Sessão (AppCertDlls,KnownDLLs) (O36)
O36 - AppCertDlls: (x64) . (...) -- c:\arquivos de programas\movies toolbar\safetynut\x64\safetycrt.dll  =>PUP.MoviesToolbar
~ Keys:  Scanned in 00mn 00s



---\\ Tarefas planificadas automaticamente (039)
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\060184C3-9766-46a0-B258-F4518A0B2633.job   [490]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\At2.job   [420]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\At3.job   [418]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\One-Click Optimizer.job   [436]
O39 - APT:  - (..) -- C:\WINDOWS\Tasks\pennybee Runner.job   [784]
~ Scheduled Task: 9 Legitimates Filtered in 00mn 40s



---\\ Componentes instalados (ActiveSetup Installed Components) (040)
O40 - ASIC: Installed Component - S-1-5-21-602162358-484763869-682003330-1003 - {08B0E5JF-4FCB-11CF-AAA5-00401C6XX500} -- Not Hexadécimal CLSID
O40 - ASIC: Installed Component - S-1-5-21-602162358-484763869-682003330-1003 - {RH48B6E5YF-4UKU-71CF-AVF5-02901P6HJ002} -- Not Hexadécimal CLSID
~ Active Setup: 20 Legitimates Filtered in 00mn 00s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver:  (Bfilter) . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - C:\WINDOWS\system32\drivers\Bfilter.sys
O41 - Driver:  (Bfmon) . (.Baidu, Inc. - Baidu FS Monitor Driver.) - C:\WINDOWS\system32\drivers\Bfmon.sys
O41 - Driver: (Bnbase) . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) - C:\WINDOWS\system32\drivers\bnbase.sys
O41 - Driver:  (Bndef) . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) - C:\WINDOWS\system32\drivers\bndef.sys
O41 - Driver:  (Bprotect) . (.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) - C:\WINDOWS\system32\drivers\Bprotect.sys
~ Drivers: 81 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\APN DTX]  =>Toolbar.Ask
[HKCU\Software\APN PIP]
[HKCU\Software\ARAR]
[HKCU\Software\Baidu Security]
[HKCU\Software\Baidu]
[HKCU\Software\Celular]
[HKCU\Software\Conduit]  =>Toolbar.Conduit
[HKCU\Software\FMChat]
[HKCU\Software\Install]
[HKCU\Software\PriceMeterUpdater]  =>PUP.PriceMeter
[HKCU\Software\Puxa Rápido]
[HKCU\Software\SmartBar]  =>Hijacker.SmartBar
[HKCU\Software\UpdaterEX]  =>PUP.Dealply
[HKLM\Software\Baidu Security]
[HKLM\Software\Baidu_Drp_pos]
[HKLM\Software\CA561A]
[HKLM\Software\Conduit]  =>Toolbar.Conduit
[HKLM\Software\Puxa Rápido]
[HKLM\Software\SP Global]  =>PUP.AdvancedSystemProtector
[HKLM\Software\SProtector]  =>PUP.Mocaflix
[HKLM\Software\Sakura]
[HKLM\Software\baidu]
[HKLM\Software\eSafeSecControl]  =>PUP.eSafeSecurity
[HKLM\Software\supTab]  =>PUP.SupTab
[HKLM\Software\supWPM]  =>PUP.WpManager
~ Key Software: 367 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 29/7/2014 - 19:31:40 - [] ----D C:\Arquivos de programas\Baidu Security
O43 - CFD: 29/7/2014 - 14:44:33 - [] ----D C:\Arquivos de programas\Baidu-Security-2014-4.4.4.73687
O43 - CFD: 29/7/2014 - 19:41:34 - [] ----D C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690
O43 - CFD: 12/4/2014 - 10:28:38 - [0] ----D C:\Arquivos de programas\RBM
O43 - CFD: 20/10/2013 - 21:15:15 - [] ----D C:\Arquivos de programas\Arquivos comuns\Serviços
O43 - CFD: 10/12/2013 - 10:47:12 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\9322ffd9f5829675
O43 - CFD: 8/1/2014 - 16:11:04 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Baidu
O43 - CFD: 29/7/2014 - 14:44:48 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Baidu Security
O43 - CFD: 10/12/2013 - 10:56:01 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\Downlload keeper
O43 - CFD: 24/5/2014 - 13:23:32 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\eSafe
O43 - CFD: 29/7/2014 - 14:43:33 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices  =>PUP.IePluginService
O43 - CFD: 9/12/2013 - 16:58:27 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\InstallMate
O43 - CFD: 29/7/2014 - 14:42:07 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\pennybee
O43 - CFD: 9/12/2013 - 16:56:14 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\ssUrf. and keep
O43 - CFD: 4/12/2013 - 17:16:53 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer  =>PUP.TubeDimmer
O43 - CFD: 29/7/2014 - 14:51:46 - [] ----D C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect  =>PUP.Fuyu
O43 - CFD: 10/4/2014 - 20:30:58 - [0] ----D C:\Documents and Settings\All Users\Dados de aplicativos\WPM  =>PUP.WpManager
O43 - CFD: 2/12/2013 - 16:40:05 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\23196
O43 - CFD: 2/12/2013 - 11:28:13 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\27627
O43 - CFD: 29/7/2014 - 14:44:14 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Baidu
O43 - CFD: 4/11/2013 - 16:36:59 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Baidu Security
O43 - CFD: 24/5/2014 - 13:23:34 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\FunmoodsChat  =>PUP.Funmoods
O43 - CFD: 29/7/2014 - 14:42:07 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\pennybee
O43 - CFD: 4/11/2013 - 11:56:21 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb  =>PUP.SearchResults
O43 - CFD: 24/5/2014 - 13:23:31 - [0] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab  =>PUP.SupTab
O43 - CFD: 21/10/2013 - 12:02:24 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX  =>PUP.Dealply
O43 - CFD: 29/7/2014 - 14:42:58 - [] ----D C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches  =>Hijacker.WebsSearches
O43 - CFD: 3/12/2013 - 15:22:15 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Ares
O43 - CFD: 21/10/2013 - 11:15:06 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit
O43 - CFD: 19/5/2014 - 15:44:59 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\TB
O43 - CFD: 5/12/2013 - 09:24:49 - [] ----D C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\WhiteListing
O43 - CFD: 23/1/2014 - 23:13:01 - [] R---D C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Acessórios
O43 - CFD: 27/2/2014 - 20:02:12 - [] R---D C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Inicializar
~ Program Folder: 187 Legitimates Filtered in 00mn 01s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 25/7/2014 - 20:17:31 ---A- . (...) -- C:\WINDOWS\system.ini   [227]
O44 - LFC:[MD5.4505962590B4C8874C9084A25D39E166] - 25/7/2014 - 20:17:31 ---A- . (...) -- C:\WINDOWS\win.ini   [748]
O44 - LFC:[MD5.DCC78B14C94A442C60981A7095B4A730] - 25/7/2014 - 20:23:05 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini   [69]
O44 - LFC:[MD5.117AD65BA77DEC5C07633C9AC7BB2BC5] - 29/7/2014 - 19:24:18 ---A- . (...) -- C:\WINDOWS\wiadebug.log   [159]
O44 - LFC:[MD5.375933765BA46FD1553A9D21EA77F0F7] - 29/7/2014 - 19:24:19 ---A- . (...) -- C:\WINDOWS\wiaservc.log   [49]
O44 - LFC:[MD5.4E771B38EC4764A4271F0135BD066E16] - 29/7/2014 - 19:34:17 ---A- . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\system32\Drivers\Bhbase.sys   [95296]
O44 - LFC:[MD5.6768BD7D6664A03B5871178FED12B0D5] - 29/7/2014 - 19:41:53 ---A- . (...) -- C:\WINDOWS\system32\config.ini   [32]
O44 - LFC:[MD5.6351F8964AA381F75A2633942CEC29BA] - 29/7/2014 - 19:41:54 ---A- . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) -- C:\WINDOWS\system32\Drivers\bnbase.sys   [58752]
O44 - LFC:[MD5.7EFD231BAA1A7ECF25AF075951D60906] - 29/7/2014 - 19:41:54 ---A- . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) -- C:\WINDOWS\system32\Drivers\bndef.sys   [51584]
O44 - LFC:[MD5.CB3E0EBD03C250170C4B4258F9264212] - 29/7/2014 - 19:41:56 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\system32\Drivers\Bfilter.sys   [48448]
O44 - LFC:[MD5.70DDC28A7998907EC42E1C60899ACAA6] - 29/7/2014 - 19:41:57 ---A- . (.Baidu, Inc. - Baidu FS Monitor Driver.) -- C:\WINDOWS\system32\Drivers\Bfmon.sys   [29504]
O44 - LFC:[MD5.4B9081B546A13B3AFB7C351C3B473C93] - 29/7/2014 - 19:41:58 ---A- . (.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) -- C:\WINDOWS\system32\Drivers\Bprotect.sys   [157504]
~ Files: 28 Legitimates Filtered in 00mn 41s



---\\ Operações e funções ao arranque do Windows Explorer (046)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\ARQUIV~1\MICROS~2\Office12\GRA8E1~1.DLL
~ ShellExecuteHooks:  Scanned in 00mn 00s



---\\ Exportar a chave da aplicação autorizada (047)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe" [Enabled] .(...) -- C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe (.not file.)  =>PUP.eSafeSecurity
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Puxa Rápido\PuxaRapido.exe" [Enabled] .(...) -- C:\Arquivos de programas\Puxa Rápido\PuxaRapido.exe (.not file.)
O47 - AAKE:Key Export SP - "E:\EasySetupAssistant.exe" [Enabled] .(...) -- E:\EasySetupAssistant.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Ares\Ares.exe" [Enabled] .(...) -- C:\Arquivos de programas\Ares\Ares.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Arquivos de programas\Megacubo\megacubo.exe" [Enabled] .(.www.megacubo.net.) -- C:\Arquivos de programas\Megacubo\megacubo.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe" [Enabled] .(.Penny Bee Agent.) -- C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe
O47 - AAKE:Key Export DP - "C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe" [Enabled] .(.Penny Bee Agent.) -- C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe
~ Keys Export: 28 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe  =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - bpsvc.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe  =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe  =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsersafeguard.exe - tasklist.exe  =>PUP.BrowserSafeguard
O50 - IFEO:Image File Execution Options - dprotectsvc.exe - tasklist.exe  =>Trojan.Staser
O50 - IFEO:Image File Execution Options - protectedsearch.exe - tasklist.exe  =>Spyware.ProtectedSearch
O50 - IFEO:Image File Execution Options - searchprotection.exe - tasklist.exe  =>PUP.SearchProtect
O50 - IFEO:Image File Execution Options - searchprotector.exe - tasklist.exe  =>PUP.SearchProtect
O50 - IFEO:Image File Execution Options - snapdo.exe - tasklist.exe  =>Hijacker.SmartBar
O50 - IFEO:Image File Execution Options - stinst32.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - stinst64.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - utiljumpflip.exe - tasklist.exe  =>PUP.JumpFlip
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO:  Scanned in 00mn 00s



---\\ Enumeração das chaves do registo StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\LiveSupport  [Key] . (...) -- C:\Arquivos de programas\LiveSupport\LiveSupport.exe (.not file.)  =>PUP.LiveSupport
O53 - SMSR:HKLM\...\startupreg\mobilegeni daemon  [Key] . (...) -- C:\Arquivos de programas\Mobogenie\DaemonProcess.exe (.not file.)  =>PUP.Mobogenie
~ SMSR Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKCU\...\Policies\System] - "EnableLUA"=0
~ MWPS: 6 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\system32\Drivers\Bfilter.sys   [48448]
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu FS Monitor Driver.) -- C:\WINDOWS\system32\Drivers\Bfmon.sys   [29504]
O58 - SDL:1/7/2014 - 04:06:50 ---A- . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\system32\Drivers\Bhbase.sys   [95296]
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) -- C:\WINDOWS\system32\Drivers\bnbase.sys   [58752]
O58 - SDL:27/5/2014 - 03:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) -- C:\WINDOWS\system32\Drivers\bndef.sys   [51584]
O58 - SDL:13/6/2014 - 07:03:37 ---A- . (.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) -- C:\WINDOWS\system32\Drivers\Bprotect.sys   [157504]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\Drivers\cinemst2.sys   [262528]
O58 - SDL:18/4/2013 - 18:06:08 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\WINDOWS\system32\Drivers\dgderdrv.sys   [20032]
O58 - SDL:7/1/2005 - 16:07:18 ----- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudbus.sys   [138752]
O58 - SDL:7/1/2005 - 16:07:16 ----- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudio.sys   [145920]
O58 - SDL:27/11/2013 - 21:24:18 ---A- . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS\system32\Drivers\idmtdi.sys   [121184]
O58 - SDL:26/12/2006 - 09:31:06 R--A- . (.Windows (R) Codename Longhorn DDK provider - Generic Port I/O.) -- C:\WINDOWS\system32\Drivers\PortIo.sys   [4864]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\Drivers\ptilink.sys   [17792]
O58 - SDL:1/10/2002 - 13:43:32 ---A- . (.SP - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\Drivers\SPCA561.SYS   [119798]
O58 - SDL:18/3/2013 - 16:51:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\Drivers\usbaapl.sys   [45056]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\Drivers\vdmindvd.sys   [58112]
O58 - SDL:25/5/2014 - 13:52:34 RSH-- . (...) -- C:\WINDOWS\system32\2BD4D8B6AB.sys   [56]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys   [9032]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys   [27097]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys   [4896]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys   [42809]
O58 - SDL:3/8/2004 - 22:46:56 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys   [42537]
O58 - SDL:15/6/2014 - 19:42:27 -SHA- . (...) -- C:\WINDOWS\system32\KGyGaAvL.sys   [3350]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys   [27900]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys   [29146]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys   [29370]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys   [29274]
O58 - SDL:28/9/2001 - 09:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys   [29146]
O58 - SDL:3/8/2004 - 22:45:20 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys   [33984]
O58 - SDL:3/8/2004 - 22:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys   [34560]
O58 - SDL:3/8/2004 - 22:45:12 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys   [35648]
O58 - SDL:3/8/2004 - 22:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys   [35424]
O58 - SDL:3/8/2004 - 22:45:14 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys   [34560]
O58 - SDL:18/1/2012 - 14:55:56 ----- . (...) -- C:\WINDOWS\system32\pwdrvio.sys   [16472]
O58 - SDL:18/1/2012 - 14:55:54 ----- . (...) -- C:\WINDOWS\system32\pwdspio.sys   [11104]
~ Drivers: 63 Legitimates Filtered in 00mn 01s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Lista dos serviços Legacy du registo (064)
O64 - Services: CurCS - 22/7/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe (BAVSvc)  .(.Baidu, Inc. - Baidu Antivirus Service.) - LEGACY_BAVSVC
O64 - Services: CurCS - 22/7/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BdApiUtil.sys (BdApiUtil)  .(.Baidu, Inc. - Baidu Antivirus BdApi Driver.) - LEGACY_BDAPIUTIL
O64 - Services: CurCS - 27/5/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BdCameraProtect.sys (BdCameraProtect)  .(.Baidu, Inc. - Baidu Antivirus Camera Protector Driver.) - LEGACY_BDCAMERAPROTECT
O64 - Services: CurCS - 27/5/2014 - C:\WINDOWS\system32\drivers\Bfilter.sys (Bfilter)  .(.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) - LEGACY_BFILTER
O64 - Services: CurCS - 27/5/2014 - C:\WINDOWS\system32\drivers\Bfmon.sys (Bfmon)  .(.Baidu, Inc. - Baidu FS Monitor Driver.) - LEGACY_BFMON
O64 - Services: CurCS - 1/7/2014 - C:\WINDOWS\system32\drivers\Bhbase.sys (Bhbase)  .(.Baidu, Inc. - Baidu Antivirus Hook Base.) - LEGACY_BHBASE
O64 - Services: CurCS - 22/7/2014 - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe (BHipsSvc)  .(.Baidu, Inc. - Baidu Antivirus Hips Service.) - LEGACY_BHIPSSVC
O64 - Services: CurCS - 27/5/2014 - C:\WINDOWS\system32\drivers\bndef.sys (Bndef)  .(.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) - LEGACY_BNDEF
O64 - Services: CurCS - 13/6/2014 - C:\WINDOWS\system32\drivers\Bprotect.sys (Bprotect)  .(.Baidu, Inc. - Baidu Antivirus Selfprotect Driver.) - LEGACY_BPROTECT
O64 - Services: CurCS - 6/7/1744 - C:\WINDOWS\system32\drivers\BprotectEx.sys (BprotectEx) .(...) - LEGACY_BPROTECTEX
O64 - Services: CurCS - 29/7/2014 - C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe (IePluginServices)  .(.Cherished Technololgy LIMITED - IePlugin Service.) - LEGACY_IEPLUGINSERVICES  =>PUP.IePluginService
O64 - Services: CurCS - 8/3/2011 - C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys (LiveTunerPM) .(...) - LEGACY_LIVETUNERPM
O64 - Services: CurCS - 4/12/2013 - C:\WINDOWS\system32\LocalServer\service.exe (LocalServiceSystem) .(...) - LEGACY_LOCALSERVICESYSTEM
O64 - Services: CurCS - 6/7/1744 - C:\Arquivos de programas\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil.sys (PCFApiUtil) .(...) - LEGACY_PCFAPIUTIL
~ Legacy: 146 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Arquivos de programas\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Arquivos de programas\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - () - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (webssearches) - [Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.WebsSearches
O69 - SBI: SearchScopes [HKCU] {86c83f9e-48a4-4cd2-a763-64fea5df35f7} - (Baixaki) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys:  Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.254FBCA565E049648B0CCE2CEADF05D2] [SPRF][24/10/2013] (...) -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\inst.exe   [87608]
[MD5.46DBCB4C3B0D64B2EA1E047B522F549B] [SPRF][29/7/2014] (...) -- C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\logs.dat   [14720]
~ Files: 6 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.D74AE12A11A66D1ED5AF4BF8211DDE66] [WIS][10/4/2014] (.SaveSense - Google Update Helper.) -- C:\Windows\Installer\314a1e.msi   [23552]  =>PUP.SaveSense
~ WIS: 1 Legitimates Filtered in 00mn 03s



---\\ Search CLSID Registry Key (O101)
[HKCR\CLSID\{A7013863-C01B-D4E5-BE48-140B0F3FE0E6}] (ViewPassword)  =>PUP.ViewPassword
~ BCK: 5069 Legitimates Filtered in 00mn 09s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 8/7/2014 262320 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 4/8/2004 225280 |  (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Demand 12/1/2011 33584 |  (EhttpSrv) . (.ESET.) - C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
SS - | Demand 21/2/2014 553288 |  (iPod Service) . (.Apple Inc..) - C:\Arquivos de programas\iPod\bin\iPodService.exe
SS - | Auto 12/5/2014 1809720 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Arquivos de programas\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - | Auto 12/5/2014 860472 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Arquivos de programas\Malwarebytes Anti-Malware\mbamservice.exe
SS - | Demand 6/6/2014 119408 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 8/4/2008 800040 |  (NBService) . (.Nero AG.) - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe
SS - | Demand 22/1/2008 275752 |  (NMIndexingService) . (.Nero AG.) - C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe
SS - | Demand 19/11/2013 885096 |  (WO_LiveService) . (...) - C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe
SR - | Auto 12/2/2014 43336 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 22/7/2014 2049072 |  (BAVSvc) . (.Baidu, Inc..) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BAVSvc.exe
SR - | Auto 22/7/2014 481432 |  (BHipsSvc) . (.Baidu, Inc..) - C:\Arquivos de programas\Baidu-Security-2014-4.4.4.78690\Baidu Antivirus\BHipsSvc.exe
SR - | Auto 24/8/2009 406016 |  (DfSdkS) . (.mst software GmbH, Germany.) - C:\Arquivos de programas\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS.exe
SR - | Auto 12/1/2011 810144 |  (ekrn) . (.ESET.) - C:\Arquivos de programas\ESET\ESET NOD32 Antivirus\ekrn.exe
SR - | Auto 29/7/2014 694784 |  (IePluginServices) . (.Cherished Technololgy LIMITED.) - C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe  =>PUP.IePluginService
SR - | Auto 19/4/2007 75304 |  (LightScribeService) . (.Hewlett-Packard Company.) - C:\Arquivos de programas\Arquivos comuns\LightScribe\LSSrvc.exe
SR - | Auto 4/12/2013 89992 |  (LocalServiceSystem) . (...) - C:\WINDOWS\system32\LocalServer\service.exe
SR - | Auto 4/8/2004 14336 | C:\WINDOWS\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 19/12/2006 81920 |  (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc..) - C:\WINDOWS\system32\IoctlSvc.exe
SR - | Auto 4/8/2004 14336 | C:\WINDOWS\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 9/7/2014 209976 | C:\DOCUME~1\ALLUSE~1\DADOSD~1\pennybee\wpennybeed.exe (wpennybeed) . (.Penny Bee Agent.) - C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\wpennybeed.exe
~ Services:  Scanned in 00mn 09s



---\\ Scâner Aditional (088)
Database Version : 13026 - (29/7/2014)
Clés trouvées (Keys found) : 68
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 12
Fichiers trouvés  (Files found) : 11

[HKLM\SYSTEM\CurrentControlSet\Services\IePluginServices]   =>PUP.IePluginService^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\LiveSupport]   =>PUP.LiveSupport^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon]   =>PUP.Mobogenie^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}]   =>PUP.Funmoods
[HKLM\Software\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}]   =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}]   =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WSysControl]   =>PUP.eSafeSecurity
[HKCU\Software\APN DTX]   =>Toolbar.Ask
[HKCU\Software\APN PIP]   =>Toolbar.Ask
[HKLM\Software\SP Global]   =>PUP.AdvancedSystemProtector
[HKLM\Software\SProtector]   =>PUP.AdvancedSystemProtector
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP]   =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}]   =>Adware.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375]   =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5]   =>PUP.Tarma
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}]   =>Adware.MagniPic
[HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}]   =>Toolbar.Freecorder
[HKLM\Software\eSafeSecControl]   =>PUP.eSafeSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}]   =>Adware.InstallBrain
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc]   =>PUP.eSafeSecurity
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}]   =>Adware.BrowseFox
C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices   =>PUP.IePluginService^
C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer   =>PUP.TubeDimmer^
C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect   =>PUP.Fuyu^
C:\Documents and Settings\All Users\Dados de aplicativos\WPM   =>PUP.WpManager^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\FunmoodsChat   =>PUP.Funmoods^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb   =>PUP.SearchResults^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab   =>PUP.SupTab^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX   =>PUP.Dealply^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches   =>Hijacker.WebsSearches^
C:\Arquivos de programas\Optimizer Pro   =>PUP.OptimizerPro
C:\Documents and Settings\All Users\Dados de aplicativos\InstallMate   =>PUP.Tarma
C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit   =>Toolbar.Conduit
C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices\PluginService.exe   =>PUP.IePluginService^
C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\uTorrent\uTorrent.exe   =>P2P.BitTorrent^
[HKCU\Software\Conduit]   =>Toolbar.Conduit^
[HKCU\Software\PriceMeterUpdater]   =>PUP.PriceMeter^
[HKCU\Software\SmartBar]   =>Hijacker.SmartBar^
[HKCU\Software\UpdaterEX]   =>PUP.Dealply^
[HKLM\Software\Conduit]   =>Toolbar.Conduit^
[HKLM\Software\supTab]   =>PUP.SupTab^
[HKLM\Software\supWPM]   =>PUP.WpManager^
C:\Windows\Installer\314a1e.msi   =>PUP.SaveSense^
[HKCR\CLSID\{A7013863-C01B-D4E5-BE48-140B0F3FE0E6}] (ViewPassword)   =>PUP.ViewPassword^
~ Additionnel Scan: 255820 Items scanned in 00mn 34s



---\\ Informações complémentaires do módulos
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Internet Explorer, Gestão do Proxy (R5)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Barras do Internet Explorer (03))
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Aplicações iniciadas por registo & pastas (04)
~ [Você precisa estar registrado e conectado para ver este link.]  =>.Image File Execution Options (IFEO) (O50)
~ AMI: 4 Legitimates Filtered in 00mn 00s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.MoviesToolbar
[Você precisa estar registrado e conectado para ver este link.]  =>Toolbar.Ask
[Você precisa estar registrado e conectado para ver este link.]  =>Toolbar.Conduit
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.PriceMeter
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.SmartBar
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Dealply
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.AdvancedSystemProtector
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Mocaflix
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.eSafeSecurity
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SupTab
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.WpManager
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.TubeDimmer
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Funmoods
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SearchResults
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.WebsSearches
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.BitGuard
[Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.Eazel
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.BrowserSafeguard
[Você precisa estar registrado e conectado para ver este link.]  =>Trojan.Staser
[Você precisa estar registrado e conectado para ver este link.]  =>Spyware.ProtectedSearch
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SearchProtect
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.JumpFlip
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Mobogenie
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.SaveSense
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.ViewPassword
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.IMBooster
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.RewardsArcade
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.V9Software
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.Tarma
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.MagniPic
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.InstallBrain
[Você precisa estar registrado e conectado para ver este link.]  =>Adware.BrowseFox
[Você precisa estar registrado e conectado para ver este link.]  =>PUP.OptimizerPro
~ MSI: 33 link(s) detected in 00mn 00s



~ 925 Legitimates filtered by white list
End of the scan (745 lines in 02mn 39s)(0)
FelipePc
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Ter 29 Jul 2014, 23:03

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

Remova adwares e toolbars maliciosas com o Adwcleaner

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty (RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Qua 30 Jul 2014, 12:30

# AdwCleaner v3.301 - Relatório criado 30/07/2014 às 12:28:47
# Atualizado 28/07/2014 por Xplode
# Sistema Operacional : Microsoft Windows XP Service Pack 2 (32 bits)
# Usuário : Felipe Andrade - PC-CASA
# Executando de : C:\Documents and Settings\Felipe Andrade\Meus documentos\Downloads\Programs\AdwCleaner.exe
# Opção : Examinar

***** [ Serviços ] *****

Serviço Encontrado : IePluginServices

***** [ Arquivos / Pastas ] *****

Arquivo Encontrado : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\Ask.xml
Arquivo Encontrado : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\webssearches.xml
Arquivo Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\LiveSupport.exe_log.txt
Arquivo Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\regsvr32.exe_log.txt
Arquivo Encontrado : C:\Documents and Settings\Felipe Andrade\daemonprocess.txt
Arquivo Encontrado : C:\END
Pasta Encontrado : C:\Arquivos de programas\Optimizer Pro
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\baidu
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\Downlload keeper
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\eSafe
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\PennyBee
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\QuickSet
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\WinterSoft
Pasta Encontrado : C:\Documents and Settings\All Users\Dados de aplicativos\WPM
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\AppData\LocalLow\DataMngr
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Mobogenie
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\NativeMessaging
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\WhiteListing
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\baidu
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\EZDownloader
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\PennyBee
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX
Pasta Encontrado : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches

***** [ Tarefas ] *****


***** [ Atalhos ] *****

Atalho Encontrado : C:\Documents and Settings\All Users\Menu Iniciar\Programas\Internet Explorer.lnk ( [Você precisa estar registrado e conectado para ver este link.] )
Atalho Encontrado : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Internet Explorer.lnk ( [Você precisa estar registrado e conectado para ver este link.] )
Atalho Encontrado : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Acessórios\Ferramentas do Sistema\Internet Explorer (Sem Complementos).lnk ( [Você precisa estar registrado e conectado para ver este link.] )

***** [ Registro ] *****

Chave Encontrada : HKCU\Software\APN DTX
Chave Encontrada : HKCU\Software\APN PIP
Chave Encontrada : HKCU\Software\Conduit
Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceMeterUpdater
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Encontrada : HKCU\Software\PriceMeterLiveUpdate
Chave Encontrada : HKCU\Software\PriceMeterUpdater
Chave Encontrada : HKCU\Software\RegisteredApplicationsEx
Chave Encontrada : HKCU\Software\SmartBar
Chave Encontrada : HKCU\Software\SupHpUISoft
Chave Encontrada : HKCU\Software\UpdaterEX
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Chave Encontrada : HKLM\Software\Conduit
Chave Encontrada : HKLM\Software\eSafeSecControl
Chave Encontrada : HKLM\Software\FlvPlayer
Chave Encontrada : HKLM\SOFTWARE\Google\Chrome\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wpm
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WsysControl
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Chave Encontrada : HKLM\Software\SafetyNut
Chave Encontrada : HKLM\Software\Solvusoft
Chave Encontrada : HKLM\Software\SP Global
Chave Encontrada : HKLM\Software\SProtector
Chave Encontrada : HKLM\Software\SupTab
Chave Encontrada : HKLM\Software\supWindowsMangerProtect
Chave Encontrada : HKLM\Software\supWPM
Chave Encontrada : HKLM\Software\webssearchesSoftware
Chave Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Chave Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Chave Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Dados Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\arquiv~1\movies~1\safety~1\safety~2.dll
Dados Encontrada : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\docume~1\alluse~1\dadosd~1\wincert\win32c~1.dll
Valor Encontrada : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Valor Encontrada : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Valor Encontrada : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls [x64]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe]
Valor Encontrada : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v25.0 (pt-BR)

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Mozilla\Firefox\Profiles\cf8ocvrk.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\preferences ]

Encontrada [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]

*************************

AdwCleaner[R0].txt - [16480 octets] - [30/07/2014 12:28:47]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [16541 octets] ##########
FelipePc
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 12:31

Você só escolheu a opção de Examinar. Falta você clicar na opção Limpar e ir seguindo os passos indicados no tutorial que te passei. Depois disto poste o novo relatório que o Adwcleaner irá criar.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty (RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Qua 30 Jul 2014, 12:42

# AdwCleaner v3.301 - Relatório criado 30/07/2014 às 12:38:36
# Atualizado 28/07/2014 por Xplode
# Sistema Operacional : Microsoft Windows XP Service Pack 2 (32 bits)
# Usuário : Felipe Andrade - PC-CASA
# Executando de : C:\Documents and Settings\Felipe Andrade\Meus documentos\Downloads\Programs\AdwCleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

[#] Serviço Deletada : IePluginServices

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\baidu
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\eSafe
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\IePluginServices
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\PennyBee
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\QuickSet
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\TubeDimmer
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\WindowsMangerProtect
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\WinterSoft
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\WPM
Pasta Deletada : C:\Documents and Settings\All Users\Dados de aplicativos\Downlload keeper
Pasta Deletada : C:\Arquivos de programas\Optimizer Pro
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Conduit
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Mobogenie
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\NativeMessaging
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\PriceMeterLiveUpdate
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\WhiteListing
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\AppData\LocalLow\DataMngr
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\baidu
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\EZDownloader
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\PennyBee
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\searchresultstb
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\SupTab
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\UpdaterEX
Pasta Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\webssearches
Arquivo Deletada : C:\END
Arquivo Deletada : C:\Documents and Settings\Felipe Andrade\daemonprocess.txt
Arquivo Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\LiveSupport.exe_log.txt
Arquivo Deletada : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\regsvr32.exe_log.txt
Arquivo Deletada : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\Ask.xml
Arquivo Deletada : C:\Arquivos de programas\Mozilla Firefox\browser\searchplugins\webssearches.xml

***** [ Tarefas ] *****


***** [ Atalhos ] *****

Atalho Desinfectada : C:\Documents and Settings\All Users\Menu Iniciar\Programas\Internet Explorer.lnk
Atalho Desinfectada : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Internet Explorer.lnk
Atalho Desinfectada : C:\Documents and Settings\Felipe Andrade\Menu Iniciar\Programas\Acessórios\Ferramentas do Sistema\Internet Explorer (Sem Complementos).lnk

***** [ Registro ] *****

Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\ieadcoanfjloocmfafkebdnfefmohngj
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Valor Deletedo : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Valor Deletedo : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Chave Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Valor Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]
Valor Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\eSafe\eGdpSvc.exe]
Valor Deletedo : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Dados de aplicativos\pennybee\pennybee.exe]
Chave Deletedo : HKCU\Software\APN DTX
Chave Deletedo : HKCU\Software\APN PIP
Chave Deletedo : HKCU\Software\Conduit
Chave Deletedo : HKCU\Software\PriceMeterLiveUpdate
Chave Deletedo : HKCU\Software\PriceMeterUpdater
Chave Deletedo : HKCU\Software\RegisteredApplicationsEx
Chave Deletedo : HKCU\Software\SmartBar
Chave Deletedo : HKCU\Software\SupHpUISoft
Chave Deletedo : HKCU\Software\UpdaterEX
Chave Deletedo : HKLM\Software\Conduit
Chave Deletedo : HKLM\Software\eSafeSecControl
Chave Deletedo : HKLM\Software\FlvPlayer
Chave Deletedo : HKLM\Software\SafetyNut
Chave Deletedo : HKLM\Software\Solvusoft
Chave Deletedo : HKLM\Software\SP Global
Chave Deletedo : HKLM\Software\SProtector
Chave Deletedo : HKLM\Software\SupTab
Chave Deletedo : HKLM\Software\supWindowsMangerProtect
Chave Deletedo : HKLM\Software\supWPM
Chave Deletedo : HKLM\Software\webssearchesSoftware
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceMeterUpdater
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wpm
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WsysControl
Dados Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\docume~1\alluse~1\dadosd~1\wincert\win32c~1.dll
Dados Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\arquiv~1\movies~1\safety~1\safety~2.dll
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v25.0 (pt-BR)

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Dados de aplicativos\Mozilla\Firefox\Profiles\cf8ocvrk.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Documents and Settings\Felipe Andrade\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\preferences ]

Deletedo [Search Provider] : [Você precisa estar registrado e conectado para ver este link.]

*************************

AdwCleaner[R0].txt - [16622 octets] - [30/07/2014 12:28:47]
AdwCleaner[S0].txt - [15357 octets] - [30/07/2014 12:38:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15418 octets] ##########
FelipePc
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 12:43

Desative temporariamente seu antivírus para evitar conflitos.

* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Você precisa estar registrado e conectado para ver este link.]

aplicativo - wpennybeed.exe - Erro de aplicativo 772309 Para executá-lo corretamente siga as dicas deste tutorial:

Exclua adwares e outras ameaças de seu PC e browsers com o aplicativo Zoek

* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty (RESOLVIDO) wpennybeed.exe - Erro de aplicativo

Mensagem por FelipePc em Qua 30 Jul 2014, 12:55

n achei o log do programa mais o erro wpennybeed.exe - Erro de aplicativo parou de aparecer quando eu fiz a limpeza com o outro programa o AdwCleaner . n estar anunciando mais o erro !
FelipePc
FelipePc
Iniciante
Iniciante

Mensagens : 6
Reputação : 0
Data de inscrição : 29/07/2014
Localização : Governador Vladares MG

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 14:03

isso aí! Fico feliz que o problema tenha sido resolvido.

aplicativo - wpennybeed.exe - Erro de aplicativo 772309 Só para finalizar siga estes tutoriais abaixo, por gentileza:

Excluindo erros e otimizando seu PC com o CCleaner

Elimine arquivos inúteis de seu PC com o PureRa
_______________________________________________________________________________________________________________________

aplicativo - wpennybeed.exe - Erro de aplicativo 772309 Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas deste tutorial.
_______________________________________________________________________________________________________________________

aplicativo - wpennybeed.exe - Erro de aplicativo 648673379 Foi um prazer ajudar. Conte sempre conosco!

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Power Max em Qua 30 Jul 2014, 15:43

CASO RESOLVIDO

Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da Equipe da Moderação solicitando o desbloqueio.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

aplicativo - wpennybeed.exe - Erro de aplicativo Empty Re: wpennybeed.exe - Erro de aplicativo

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum