Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Data da verificação: 15/12/2015
Hora da verificação: 02:07
Arquivo de registro: LOG.txt
Administrador: Sim
Versão: 2.2.0.1024
Banco de dados de malware: v2015.12.15.01
Banco de dados de rootkit: v2015.12.07.01
Licença: Gratuita
Proteção contra malware: Desabilitado
Proteção contra website malicioso: Desabilitado
Autoproteção: Desabilitado
Sistema operacional: Windows 7 Service Pack 1
CPU: x64
Sistema de arquivos: NTFS
Usuário: João Cascimiro
Tipo de verificação: Personalizar verificação
Resultado: Concluído
Objetos verificados: 638829
Tempo decorrido: 3 hr, 9 min, 43 seg
Memória: Habilitado
Inicialização: Habilitado
Sistema de arquivos: Habilitado
Arquivos compactados: Habilitado
Rootkits: Habilitado
Heurística: Habilitado
PUP: Habilitado
PUM: Habilitado
Processos: 0
(Nenhum item malicioso detectado)
Módulos: 0
(Nenhum item malicioso detectado)
Chaves de registro: 2
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C59DE8D4-8661-446A-A1C1-8C8208863BD9}, Quarentena, [134a00a532599e98af83b6492cd77c84],
Trojan.Agent.Trace, HKU\S-1-5-21-3922755168-1862369084-2486531989-1000\SOFTWARE\Hackeados, Quarentena, [d88542633358171fcda14b8e0ff4fd03],
Valores de registro: 1
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C59DE8D4-8661-446A-A1C1-8C8208863BD9}|AppPath, C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar, Quarentena, [134a00a532599e98af83b6492cd77c84]
Dados de registro: 2
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, 80.82.64.136 8.8.8.8, Bom: (), Ruim: (80.82.64.136),Substituído,[213c8421b4d76fc730f2058029dbf50b]
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{8DB20170-BFD6-4DDA-886F-D72AC4960A4B}|DhcpNameServer, 80.82.64.136 8.8.8.8, Bom: (), Ruim: (80.82.64.136),Substituído,[025bf5b03259092de042097c5ea6c040]
Pastas: 1
PUP.Optional.DataMngr.AppFlsh, C:\Users\João Cascimiro\AppData\LocalLow\DataMngr, Quarentena, [b7a65c49e2a9ea4c85003e688c7648b8],
Arquivos: 27
CrackTool.Agent, C:\Users\João Cascimiro\Desktop\Patch_Dreamweaver CS6\amtlib.dll, Quarentena, [83da70354f3c181eb4d623f3f60cee12],
Trojan.Banload.IM, C:\Users\João Cascimiro\Downloads\AdobeFlashPlayer_2015.exe, Quarentena, [66f7772e305bbb7bb39b56520001d32d],
RiskWare.CRK, C:\Users\João Cascimiro\Downloads\AtVDR. OFFC2010 By PH.rar, Quarentena, [25380a9b91fa9a9cddefc2694bb69769],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll.vir, Quarentena, [352853525d2e2610f5504c5adf259f61],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngr.dll.vir, Quarentena, [2d30c6df6625f83efe466541bd47b050],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe.vir, Quarentena, [f9648e170c7f63d3a4a0dcca8a7a36ca],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\DnsBHO.dll.vir, Quarentena, [4f0e24815a3154e29ea7079fe321d927],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\IEBHO.dll.vir, Quarentena, [a4b9861f2764330303427333699b4ab6],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchquband.dll.vir, Quarentena, [2c31574e5e2d1a1cb68ed5d125df1ae6],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll.vir, Quarentena, [ff5e5a4bbbd0360071d3e6c00bf96b95],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll.vir, Quarentena, [362782235d2ee4524cf92a7c30d442be],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\datamngr.dll.vir, Quarentena, [124bbee78704a88e5ce933736d978779],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\datamngrUI.exe.vir, Quarentena, [4c1191147e0d181e88bcdec8669e817f],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\DnsBHO.dll.vir, Quarentena, [a6b70b9ad4b7ca6cf84d139357ad07f9],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\IEBHO.dll.vir, Quarentena, [a4b9adf84d3ee056cb7a9e08ca3a25db],
PUP.Optional.ChinAd, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SFK\SSFK.exe.vir, Quarentena, [e875c6dfe8a3be78e8fb535ec0419a66],
PUP.Optional.Yontoo, C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir, Quarentena, [59047b2af99254e29d6798148d744ab6],
PUP.Optional.Perion, C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\ARFC\wrtc.exe.vir, Quarentena, [57066342a1ea1125887a910da1608c74],
CrackTool.Agent, C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\amtlib.dll, Quarentena, [68f56a3b0784d3633d6d3fd7b64c7a86],
CrackTool.Agent, C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll, Quarentena, [6fee1a8b761506303e6c34e208fae31d],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Bridge CS6\amtlib.dll, Quarentena, [312c673eacdf9d99cae063b3f30f36ca],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\amtlib.dll, Quarentena, [2835e5c05437b581d0bab36339c9ef11],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\amtlib.dll, Quarentena, [134a5b4a8cff0b2b7812e333c042956b],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\amtlib.dll, Quarentena, [77e6871ef3988bab39712ceaa75b738d],
CrackTool.Agent.Keygen, C:\Windows\AutoKMS.exe, Quarentena, [afae4065f695b3831f441188c43d9868],
Backdoor.Bifrose.Trace, C:\Users\João Cascimiro\AppData\Roaming\logs.dat, Quarentena, [3e1f45607d0e64d29edaf2d5927148b8],
PUP.Optional.DataMngr.AppFlsh, C:\Users\João Cascimiro\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}, Quarentena, [b7a65c49e2a9ea4c85003e688c7648b8],
Setores físicos: 0
(Nenhum item malicioso detectado)
(end)
www.malwarebytes.org
Data da verificação: 15/12/2015
Hora da verificação: 02:07
Arquivo de registro: LOG.txt
Administrador: Sim
Versão: 2.2.0.1024
Banco de dados de malware: v2015.12.15.01
Banco de dados de rootkit: v2015.12.07.01
Licença: Gratuita
Proteção contra malware: Desabilitado
Proteção contra website malicioso: Desabilitado
Autoproteção: Desabilitado
Sistema operacional: Windows 7 Service Pack 1
CPU: x64
Sistema de arquivos: NTFS
Usuário: João Cascimiro
Tipo de verificação: Personalizar verificação
Resultado: Concluído
Objetos verificados: 638829
Tempo decorrido: 3 hr, 9 min, 43 seg
Memória: Habilitado
Inicialização: Habilitado
Sistema de arquivos: Habilitado
Arquivos compactados: Habilitado
Rootkits: Habilitado
Heurística: Habilitado
PUP: Habilitado
PUM: Habilitado
Processos: 0
(Nenhum item malicioso detectado)
Módulos: 0
(Nenhum item malicioso detectado)
Chaves de registro: 2
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C59DE8D4-8661-446A-A1C1-8C8208863BD9}, Quarentena, [134a00a532599e98af83b6492cd77c84],
Trojan.Agent.Trace, HKU\S-1-5-21-3922755168-1862369084-2486531989-1000\SOFTWARE\Hackeados, Quarentena, [d88542633358171fcda14b8e0ff4fd03],
Valores de registro: 1
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C59DE8D4-8661-446A-A1C1-8C8208863BD9}|AppPath, C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar, Quarentena, [134a00a532599e98af83b6492cd77c84]
Dados de registro: 2
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, 80.82.64.136 8.8.8.8, Bom: (), Ruim: (80.82.64.136),Substituído,[213c8421b4d76fc730f2058029dbf50b]
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{8DB20170-BFD6-4DDA-886F-D72AC4960A4B}|DhcpNameServer, 80.82.64.136 8.8.8.8, Bom: (), Ruim: (80.82.64.136),Substituído,[025bf5b03259092de042097c5ea6c040]
Pastas: 1
PUP.Optional.DataMngr.AppFlsh, C:\Users\João Cascimiro\AppData\LocalLow\DataMngr, Quarentena, [b7a65c49e2a9ea4c85003e688c7648b8],
Arquivos: 27
CrackTool.Agent, C:\Users\João Cascimiro\Desktop\Patch_Dreamweaver CS6\amtlib.dll, Quarentena, [83da70354f3c181eb4d623f3f60cee12],
Trojan.Banload.IM, C:\Users\João Cascimiro\Downloads\AdobeFlashPlayer_2015.exe, Quarentena, [66f7772e305bbb7bb39b56520001d32d],
RiskWare.CRK, C:\Users\João Cascimiro\Downloads\AtVDR. OFFC2010 By PH.rar, Quarentena, [25380a9b91fa9a9cddefc2694bb69769],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll.vir, Quarentena, [352853525d2e2610f5504c5adf259f61],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngr.dll.vir, Quarentena, [2d30c6df6625f83efe466541bd47b050],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe.vir, Quarentena, [f9648e170c7f63d3a4a0dcca8a7a36ca],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\DnsBHO.dll.vir, Quarentena, [4f0e24815a3154e29ea7079fe321d927],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\IEBHO.dll.vir, Quarentena, [a4b9861f2764330303427333699b4ab6],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchquband.dll.vir, Quarentena, [2c31574e5e2d1a1cb68ed5d125df1ae6],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll.vir, Quarentena, [ff5e5a4bbbd0360071d3e6c00bf96b95],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll.vir, Quarentena, [362782235d2ee4524cf92a7c30d442be],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\datamngr.dll.vir, Quarentena, [124bbee78704a88e5ce933736d978779],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\datamngrUI.exe.vir, Quarentena, [4c1191147e0d181e88bcdec8669e817f],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\DnsBHO.dll.vir, Quarentena, [a6b70b9ad4b7ca6cf84d139357ad07f9],
PUP.Optional.Bandoo.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\IEBHO.dll.vir, Quarentena, [a4b9adf84d3ee056cb7a9e08ca3a25db],
PUP.Optional.ChinAd, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SFK\SSFK.exe.vir, Quarentena, [e875c6dfe8a3be78e8fb535ec0419a66],
PUP.Optional.Yontoo, C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir, Quarentena, [59047b2af99254e29d6798148d744ab6],
PUP.Optional.Perion, C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\ARFC\wrtc.exe.vir, Quarentena, [57066342a1ea1125887a910da1608c74],
CrackTool.Agent, C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\amtlib.dll, Quarentena, [68f56a3b0784d3633d6d3fd7b64c7a86],
CrackTool.Agent, C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll, Quarentena, [6fee1a8b761506303e6c34e208fae31d],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Bridge CS6\amtlib.dll, Quarentena, [312c673eacdf9d99cae063b3f30f36ca],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\amtlib.dll, Quarentena, [2835e5c05437b581d0bab36339c9ef11],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\amtlib.dll, Quarentena, [134a5b4a8cff0b2b7812e333c042956b],
CrackTool.Agent, C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\amtlib.dll, Quarentena, [77e6871ef3988bab39712ceaa75b738d],
CrackTool.Agent.Keygen, C:\Windows\AutoKMS.exe, Quarentena, [afae4065f695b3831f441188c43d9868],
Backdoor.Bifrose.Trace, C:\Users\João Cascimiro\AppData\Roaming\logs.dat, Quarentena, [3e1f45607d0e64d29edaf2d5927148b8],
PUP.Optional.DataMngr.AppFlsh, C:\Users\João Cascimiro\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}, Quarentena, [b7a65c49e2a9ea4c85003e688c7648b8],
Setores físicos: 0
(Nenhum item malicioso detectado)
(end)