Virus em hd externo

Fechado
ManoHell - 27 jun 2013 às 11:02
JESUS CRISTO Posts 1552 Data de inscrição segunda 4 de outubro de 2010 Status Contribuinte Última visita 23 de junho de 2016 - 27 jun 2013 às 17:25
eae galera beleza? suspeito que meu HD externo tenha pego algum vírus, usei o UBSFIX mas não sei interpretar o relatório nem sei como resolver, alguem poderia me ajudar?

ai o relatorio:
############################## [ UsbFix V3.021 # Scan ]

# User : ManoHell (Administrators) # MANOHELL-PC
# Update on 16/05/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 10:57:42 | 27/06/2013

# Intel(R) Core(TM) i7-3612QM CPU @ 2.10GHz
# Microsoft Windows 7 Ultimate (6.1.7601 64-bit) # Service Pack 1
# Internet Explorer 9.10.9200.16614
# Windows Firewall Status : Disabled

# C:\ # Local Fixed Disk # 136,41 Go (40,8 Go free) # NTFS
# D:\ # Local Fixed Disk # 781,25 Go (260,22 Go free) # NTFS
# E:\ # CD-ROM Disc
# F:\ # Local Fixed Disk # 931,5 Go (526,01 Go free) [Manoel] # NTFS
# G:\ # CD-ROM Disc

############################## [ Processus actifs ]

C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
C:\Program Files\Conexant\SA3\CxUtilSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\PDF Architect\HelperService.exe
C:\Program Files (x86)\PDF Architect\ConversionService.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe
C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
C:\Windows\SysWOW64\schtasks.exe
C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe
C:\Users\ManoHell\AppData\Roaming\WebCake\WebCakeDesktop.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Iminent\Iminent.exe
C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\ManoHell\AppData\Local\Google\Chrome\Application\chrome.exe

################## [ Registre # Startup ]

HKCU_Main: "Local Page"="C:\\Windows\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
HKCU_Main: "Start Page"="http://search.conduit.com?SearchSource=10&CUI=UN16552559891947728&UM=1&ctid=CT1750559"
HKCU_Main: "bProtector Start Page"="http://www1.delta-search.com/?affID=120519&tt=gc_&babsrc=HP_ss&mntrId=FA7D8206E6DCE153"
HKLM_logon: "Userinit"="userinit.exe"
HKLM_logon: "DefaultUserName"=""
HKLM_Run: USB3MON="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
HKLM_Run: StartCCC="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
HKLM_Run: AMD AVT=Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM_Run: IAStorIcon=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
HKLM_Run: avast="C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
HKLM_Run: Adobe ARM="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM_Run: TkBellExe="C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
HKLM_Run: Iminent=C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
HKLM_Run: IminentMessenger=C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
HKLM_Run: SunJavaUpdateSched="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKCU_Run: DAEMON Tools Lite="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
HKCU_Run: Google Update="C:\Users\ManoHell\AppData\Local\Google\Update\GoogleUpdate.exe" /c
HKCU_Run: Akamai NetSession Interface="C:\Users\ManoHell\AppData\Local\Akamai\netsession_win.exe"
HKCU_Run: Steam="C:\Program Files (x86)\Steam\Steam.exe" -silent
HKCU_Run: uTorrent="C:\Program Files (x86)\uTorrent\uTorrent.exe"
HKCU_Run: Samsung Drive Manager=C:\Program Files (x86)\Clarus\Samsung Drive Manager\Drive Manager.exe -Hide
HKCU_Run: DriverMax="C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe" -agent
HKCU_Run: DriverMax_RESTART="C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe" -RESTART
HKCU_Run: dmn=regsvr32 /s "C:\Users\ManoHell\AppData\Roaming\MANOHELL-PC.jpg"
HKCU_Run: WebCake Desktop="C:\Users\ManoHell\AppData\Roaming\WebCake\WebCakeDesktop.exe"
HKCU_Run: Facebook Update="C:\Users\ManoHell\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKCU_Run: DellSystemDetect=C:\Users\ManoHell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKCU_Run: 83=C:\Users\ManoHell\AppData\Roaming\950\83.js

################## [ Fichiers # Dossiers infectieux ]


################## [ Registre # Clés Run infectieuses ]


################## [ Registre # Mountpoints2 ]

HKCU\...\Explorer\MountPoints2\{51d5a231-bc4b-11e2-a54e-d4bed93e4051}\Shell\AutoRun\Command

################## [ ! Fin du rapport # UsbFix V3.021 ! ]
VALEU GALERE

1 Respostas

JESUS CRISTO Posts 1552 Data de inscrição segunda 4 de outubro de 2010 Status Contribuinte Última visita 23 de junho de 2016 3.160
27 jun 2013 às 17:24
HELLO.MANOHELL


NÃO ENCONTREI NENHUM VIRUS,SOMENTE ALGUMAS COISAS INUTEIS QUE DEIXAM O PC LENTO.

C:\Program Files (x86)\Iminent\Iminent.exe

C:\Program Files (x86)\Iminent\Iminent.Messengers.exe

HKCU_Main: "Start Page"="http://search.conduit.com?SearchSource=10&CUI=UN16552559891947728&UM=1&ctid=CT1750559"

HKLM_Run: Iminent=C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"

HKLM_Run: IminentMessenger=C:\Program Files (x86)\Iminent\Iminent.Messengers.exe


PARA RESOLVER OS PROBLEMAS ACIMA E MAIS ALGUMS ESCONDIDOS.

USE ESTE PROGRAMA COMBOFIX


LINK: https://www.bleepingcomputer.com/download/combofix/

CLICK EM DOWNLOAD NOW.

TUTORIAL DE COMO USAR O COMBOFIX:

LINK: https://www.bleepingcomputer.com/combofix/pt/como-usar-o-combofix



JESUS CRISTO Posts 1552 Data de inscrição segunda 4 de outubro de 2010 Status Contribuinte Última visita 23 de junho de 2016 3.160
27 jun 2013 às 17:25
NÃO ESQUEÇA DE ESCANEAR O PC COM O HD EXTERNO CONECTADO OK!

Assine nossa newsletter!

Assine nossa newsletter!