Logo Hardware.com.br
cic321
cic321 Membro Junior Registrado
63 Mensagens 1 Curtida

Virus bloqueou Navegadores e Downloads

#1 Por cic321 12/10/2012 - 23:42
Olá boa noite, estou com um virus no notebook.

O virus bloqueou o firefox e o googlechrome, além de que, sempre que quero fazer download, aparece um "gerenciador de downloads koreano" - o download só é permitido atravéz dele.
Ele também permitiu o roubo de uma senha bancária, porém devido a minha atual situação financeira, ele não teve oque roubar.
Solicito ajuda.

Seguem os relatórios via link devido ao tamanho.

Grato.
Log do Security Check
checkup.txt

Log do OTL
OTL.Txt

LogExtras do OTL
Extras.Txt
boa downloads virus permitido navegadores bloqueou noite
Wings
Wings Cyber Highlander Registrado
20.3K Mensagens 1.2K Curtidas
#2 Por Wings
13/10/2012 - 00:07
Boa noite cic321


veja.png Desinstale Java(TM) 6 Update 29


veja.png Baixe o AdwCleaner (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Execute-o. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

Imagem

*Clique [Delete]

*Cole o relatório apresentado


veja.png Execute o OTL. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

*Cole as linhas em azul no espaço abaixo de Exames Personalizados/Correções


:OTL
PRC - [2012/10/05 06:31:52 | 000,232,040 | ---- | M] (NeoUX) -- C:\Users\Zaninha\AppData\Roaming\FileDoumi\filedoumiiconms.exe
PRC - [2012/10/05 06:31:49 | 000,317,032 | ---- | M] (NeoUx) -- C:\Users\Zaninha\AppData\Roaming\FileDoumi\filedoumi.exe
PRC - [2012/07/12 14:50:10 | 000,660,456 | ---- | M] () -- C:\Windows\SysWOW64\WinbioTools.exe
SRV - [2012/07/12 14:50:10 | 000,660,456 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\WinbioTools.exe -- (BioTools)
O2 - BHO: (Windows Media Sharing Plugin) - {70B2EB8E-FCBC-4153-90DF-7BF63B0648EA} - C:\ProgramData\Windows\ntfs64.dll ( )
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No CLSID value found.
O2 - BHO: (WinbioTools Class) - {86727A1A-8140-4CFA-ABFA-1620398FCEC5} - C:\ProgramData\WinbioTools\Winbio_v3.dll ()
O4 - HKLM..\Run: [Deskmedia] C:\Positivo\Deskmedia\Downloader.exe File not found
O4 - HKLM..\Run: [MicrowindowSearch] C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe File not found
O4 - HKLM..\Run: [office] C:\WINDOWS\system32\windowsoffice\office\windowsoffice.exe File not found
O4 - HKU\.DEFAULT..\Run: [MicrowindowSearch] C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe File not found
O4 - HKU\.DEFAULT..\Run: [office] C:\WINDOWS\system32\windowsoffice\office\windowsoffice.exe File not found
O4 - HKU\S-1-5-18..\Run: [MicrowindowSearch] C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe File not found
O4 - HKU\S-1-5-18..\Run: [office] C:\WINDOWS\system32\windowsoffice\office\windowsoffice.exe File not found
O4 - HKU\S-1-5-21-3170812932-3308266125-557528558-1000..\Run: [] File not found
O4 - HKU\S-1-5-21-3170812932-3308266125-557528558-1000..\Run: [FDoumiStart] C:\Users\Zaninha\AppData\Roaming\FileDoumi\FileDoumiUpgrade.exe (네오ux)
O4 - HKU\S-1-5-21-3170812932-3308266125-557528558-1000..\Run: [Google Update] "C:\Users\Zaninha\AppData\Local\Google\Update\GoogleUpdate.exe" /c File not found
O4 - HKU\S-1-5-21-3170812932-3308266125-557528558-1000..\Run: [MicrowindowSearch] C:\WINDOWS\system32\MicrowindowSearch\MicrowindowSearch.exe File not found
O4 - HKU\S-1-5-21-3170812932-3308266125-557528558-1000..\Run: [procert.exe] C:\Users\Zaninha\AppData\procert.exe File not found
O9 - Extra Button: G¸¶ÄÏ - {5F6C1537-DE02-493D-9E10-6EB084414077} - http://www.down-load.co.kr/barogagi/GMarket_qf.asp File not found
O9 - Extra 'Tools' menuitem : G¸¶ÄÏ - {5F6C1537-DE02-493D-9E10-6EB084414077} - http://www.down-load.co.kr/barogagi/GMarket_qf.asp File not found

:Files
C:\ProgramData\Windows
C:\ProgramData\WinbioTools
C:\Users\Zaninha\AppData\Roaming\FileDoumi
C:\Users\Zaninha\Documents\ÆÄÀϵµ¿ì¹Ì ¹ÞÀº ÆÄÀÏ
C:\Windows\XDownLoad.ini
C:\ProgramData\FullRemove.exe
reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f /c
netsh advfirewall reset /c

:Commands
[emptytemp]


*Clique [Consertar]

Imagem

*Clique [OK] para reiniciar o PC

Imagem

*Cole o relatório apresentado
cic321
cic321 Membro Junior Registrado
63 Mensagens 1 Curtida
#3 Por cic321
20/10/2012 - 18:02
Olá boa tarde, agradeço pela ajuda e atenção prestadas.

Seguem os relatórios:

ADWCleaner:

# AdwCleaner v2.005 - Logfile created 10/20/2012 at 17:42:09
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Home Basic Service Pack 1 (64 bits)
# User : Zaninha - ZANINHA-PC
# Boot Mode : Normal
# Running from : C:\Users\Zaninha\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****
File Deleted : C:\Program Files (x86)\Mozilla Firefox\defaults\pref\all-iminent.js
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\SearchTheWeb.xml
File Deleted : C:\user.js
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\BrowserCompanion
Folder Deleted : C:\Program Files (x86)\DealPly
Folder Deleted : C:\Program Files (x86)\FunWebProducts
Folder Deleted : C:\Program Files (x86)\Iminent
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\webbooster@iminent.com
Folder Deleted : C:\Program Files\Babylon
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Iminent
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Folder Deleted : C:\Users\Leandro\AppData\Local\Smartbar
Folder Deleted : C:\Users\Leandro\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Leandro\AppData\LocalLow\bbrs_002.tb
Folder Deleted : C:\Users\Leandro\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\Zaninha\AppData\Local\Babylon
Folder Deleted : C:\Users\Zaninha\AppData\Local\Linkury
Folder Deleted : C:\Users\Zaninha\AppData\Local\OpenCandy
Folder Deleted : C:\Users\Zaninha\AppData\Local\Temp\AskSearch
Folder Deleted : C:\Users\Zaninha\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Zaninha\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\Zaninha\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Zaninha\AppData\Roaming\OpenCandy
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\BrowserCompanion
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DealPly
Key Deleted : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandle.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DealPly
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Browser companion helper]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.iminent.com/?appId=aa3e603a-59a2-45e7-8468-a4abf5d45e4b&ref=homepage --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://www.plusnetwork.com/?sp=addr&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://www.plusnetwork.com/?sp=addr&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://www.plusnetwork.com/?sp=addr&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://www.plusnetwork.com/?sp=addr&q={searchTerms} --> hxxp://www.google.com
*************************
AdwCleaner[S1].txt - [15892 octets] - [20/10/2012 17:42:09]
########## EOF - C:\AdwCleaner[S1].txt - [15953 octets] ##########


OTL:

All processes killed
========== OTL ==========
No active process named filedou miiconms.exe was found!
No active process named filedou mi.exe was found!
Process WinbioTools.exe killed successfully!
Service BioTools stopped successfully!
Service BioTools deleted successfully!
C:\Windows\SysWOW64\WinbioTools.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{70B2EB8E-FCBC-4153-90DF-7BF63B0648EA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70B2EB8E-FCBC-4153-90DF-7BF63B0648EA}\ not found.
File C:\ProgramData\Windows\ntfs64.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{86727A1A-8140-4CFA-ABFA-1620398FCEC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{86727A1A-8140-4CFA-ABFA-1620398FCEC5}\ deleted successfully.
C:\ProgramData\WinbioTools\Winbio_v3.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Deskmedia deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MicrowindowSearch deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\office deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\MicrowindowSearch deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\office deleted successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\MicrowindowSearch not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\office not found.
Registry value HKEY_USERS\S-1-5-21-3170812932-3308266125-557528558-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3170812932-3308266125-557528558-1000\Software\Microsoft\Windows\CurrentVersion\Run\\FDoumiStart deleted successfully.
File C:\Users\Zaninha\AppData\Roaming\FileDoumi\FileDou miUpgrade.exe not found.
Registry value HKEY_USERS\S-1-5-21-3170812932-3308266125-557528558-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3170812932-3308266125-557528558-1000\Software\Microsoft\Windows\CurrentVersion\Run\\MicrowindowSearch deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3170812932-3308266125-557528558-1000\Software\Microsoft\Windows\CurrentVersion\Run\\procert.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{5F6C1537-DE02-493D-9E10-6EB084414077}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5F6C1537-DE02-493D-9E10-6EB084414077}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{5F6C1537-DE02-493D-9E10-6EB084414077}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5F6C1537-DE02-493D-9E10-6EB084414077}\ not found.
========== FILES ==========
C:\ProgramData\Windows folder moved successfully.
C:\ProgramData\WinbioTools folder moved successfully.
C:\Users\Zaninha\AppData\Roaming\FileDoumi\res folder moved successfully.
Folder move failed. C:\Users\Zaninha\AppData\Roaming\FileDoumi scheduled to be moved on reboot.
C:\Users\Zaninha\Documents\ÆÄÀϵµ¿ì¹Ì ¹ÞÀº ÆÄÀÏ folder moved successfully.
C:\Windows\XDownLoad.ini moved successfully.
C:\ProgramData\FullRemove.exe moved successfully.
< reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Explorer\mountpoints2 /f /c >
C:\Users\Zaninha\Desktop\cmd.bat deleted successfully.
C:\Users\Zaninha\Desktop\cmd.txt deleted successfully.
< netsh advfirewall reset /c >
Ok.
C:\Users\Zaninha\Desktop\cmd.bat deleted successfully.
C:\Users\Zaninha\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Leandro
->Temp folder emptied: 91075262 bytes
->Temporary Internet Files folder emptied: 15896842 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 114827432 bytes
->Google Chrome cache emptied: 164320254 bytes
->Flash cache emptied: 1218 bytes

User: Public

User: Todos os Usuários

User: Usuário Padrão
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Zaninha
->Temp folder emptied: 331612089 bytes
->Temporary Internet Files folder emptied: 185011184 bytes
->Java cache emptied: 1327540 bytes
->Flash cache emptied: 1289 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 800562580 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 1958438 bytes
RecycleBin emptied: 29669280 bytes

Total Files Cleaned = 1.656,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10202012_175221
Files\Folders moved on Reboot...
C:\Users\Zaninha\AppData\Roaming\FileDoumi folder moved successfully.
C:\Users\Zaninha\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Zaninha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MYXSJTNR\1262902[1].htm moved successfully.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
File\Folder C:\Windows\temp\TMP00000070285A4C43D8C7C670 not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Wings
Wings Cyber Highlander Registrado
20.3K Mensagens 1.2K Curtidas
#4 Por Wings
20/10/2012 - 23:38
veja.png Execute o AdwCleaner, clique [Uninstall] > [Sim]


veja.png Execute o OTL. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

*Selecione Verificar All Users

*Clique [Nenhum]

Imagem

*Cole as linhas, em marrom, no espaço abaixo de Exames Personalizados/Correções

%ALLUSERSPROFILE%\*
%ALLUSERSPROFILE%\*.*
%APPDATA%\*
%APPDATA%\*.*
netsvcs
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes


*Clique [Verificar]

Imagem

*Cole o relatório apresentado


veja.png Instale o MalwareBytes

*Aguarde a atualização e o programa será aberto automaticamente

*Selecione [Verificação Rápida]

*Clique [Verificar]

*Ao término, clique [OK] > [Ver Resultados] > [Remover Selecionados]

*Cole o relatório apresentado
cic321
cic321 Membro Junior Registrado
63 Mensagens 1 Curtida
#5 Por cic321
21/10/2012 - 15:08
Agradeço mais uma vez, seguem os relatórios apresentados.

OTL:


OTL logfile created on: 21/10/2012 14:56:31 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Zaninha\Desktop
64bit- Home Basic Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy

3,75 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 59,77% Memory free
7,49 Gb Paging File | 5,64 Gb Available in Paging File | 75,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 453,66 Gb Total Space | 337,61 Gb Free Space | 74,42% Space Free | Partition Type: NTFS

Computer Name: ZANINHA-PC | User Name: Zaninha | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days


========== Custom Scans ==========

< %ALLUSERSPROFILE%\* >
[2010/10/27 00:51:16 | 000,016,652 | ---- | M] () -- C:\ProgramData\ArcadeDeluxe4.log
[2011/12/09 18:19:19 | 000,001,756 | ---- | M] () -- C:\ProgramData\hpzinstall.log
[2011/01/28 15:02:09 | 000,262,144 | ---- | M] () -- C:\ProgramData\NTUSER.DAT
[2011/01/28 15:02:09 | 000,005,120 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT.LOG1
[2011/01/28 15:02:09 | 000,000,000 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT.LOG2
[2011/01/28 15:02:10 | 000,065,536 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT{c0415e38-2afe-11e0-acee-00269efa8d1e}.TM.blf
[2011/01/28 15:02:10 | 000,524,288 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT{c0415e38-2afe-11e0-acee-00269efa8d1e}.TMContainer00000000000000000001.regtrans-ms
[2011/01/28 15:02:10 | 000,524,288 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT{c0415e38-2afe-11e0-acee-00269efa8d1e}.TMContainer00000000000000000002.regtrans-ms
[2012/05/01 14:51:52 | 000,000,008 | ---- | M] () -- C:\ProgramData\SDGLYBMPWPP.SYS

< %ALLUSERSPROFILE%\*.* >
[2010/10/27 00:51:16 | 000,016,652 | ---- | M] () -- C:\ProgramData\ArcadeDeluxe4.log
[2011/12/09 18:19:19 | 000,001,756 | ---- | M] () -- C:\ProgramData\hpzinstall.log
[2011/01/28 15:02:09 | 000,262,144 | ---- | M] () -- C:\ProgramData\NTUSER.DAT
[2011/01/28 15:02:09 | 000,005,120 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT.LOG1
[2011/01/28 15:02:09 | 000,000,000 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT.LOG2
[2011/01/28 15:02:10 | 000,065,536 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT{c0415e38-2afe-11e0-acee-00269efa8d1e}.TM.blf
[2011/01/28 15:02:10 | 000,524,288 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT{c0415e38-2afe-11e0-acee-00269efa8d1e}.TMContainer00000000000000000001.regtrans-ms
[2011/01/28 15:02:10 | 000,524,288 | -HS- | M] () -- C:\ProgramData\NTUSER.DAT{c0415e38-2afe-11e0-acee-00269efa8d1e}.TMContainer00000000000000000002.regtrans-ms
[2012/05/01 14:51:52 | 000,000,008 | ---- | M] () -- C:\ProgramData\SDGLYBMPWPP.SYS

< %APPDATA%\* >
[2011/04/20 09:34:13 | 000,027,639 | ---- | M] () -- C:\Users\Zaninha\AppData\Roaming\UserTile.png

< %APPDATA%\*.* >
[2011/04/20 09:34:13 | 000,027,639 | ---- | M] () -- C:\Users\Zaninha\AppData\Roaming\UserTile.png

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\Lsa >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes >
"DefaultScope" =

< HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes >
"DefaultScope" = {B4FA9FEA-2787-4C25-8BBE-24CB80F71842}
"DownloadRetries" = 0
"ToolbarSearchProviderProgress" = {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
"Version" = 3
"UpgradeTime" = 30 FA 4A 8C 67 26 CD 01 [binary data]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B4FA9FEA-2787-4C25-8BBE-24CB80F71842}]

========== Alternate Data Streams ==========

@Alternate Data Stream - 149 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 149 bytes -> C:\ProgramData\Temp:93EB7685
@Alternate Data Stream - 146 bytes -> C:\ProgramData\Temp:4D066AD2
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:E36F5B57
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:E1F04E8D
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:5D7E5A8F
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:798A3728
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:0B9176C0
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:E3C56885
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:1A60DE96
< End of report >


MalwareBytes:

Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org
Versão da Base de Dados: v2012.10.21.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Zaninha :: ZANINHA-PC [administrador]
Proteção: Permitir
21/10/2012 14:59:32
mbam-log-2012-10-21 (14-59-32).txt
Tipo de Verificação: Verificação Rápida
Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opções de verificação desativadas: P2P
Objetos escaneados: 222435
Tempo decorrido: 5 minuto(s), 6 segundo(s)
Processos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)
Módulos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)
Chaves de Registro Detectadas: 5
HKCR\CLSID\{C1C92372-4705-4020-998B-D1E5E95716C3} (Adware.KorAd) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\TypeLib\{0BE71171-2362-4878-AFA5-E1BA6FC69230} (Adware.KorAd) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\Interface\{BAA2764B-4634-4039-B17C-BDBBE74C222F} (Adware.KorAd) -> Enviado para a Quarentena e deletado com sucesso.
HKCR\AppIsBHO.Bar (Adware.KorAd) -> Enviado para a Quarentena e deletado com sucesso.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39932A4E-63C1-400a-9F3D-3C1655DC5E00} (Adware.WebCompass) -> Enviado para a Quarentena e deletado com sucesso.
Valores de Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
Itens de Dados no Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
Pastas Detectadas: 0
(Não foram detectados ítens maliciosos)
Arquivos Detectados: 1
C:\Users\Zaninha\Favorites\11¹ø°¡.URL (Malware.Trace) -> Enviado para a Quarentena e deletado com sucesso.
(fim)
Wings
Wings Cyber Highlander Registrado
20.3K Mensagens 1.2K Curtidas
#6 Por Wings
21/10/2012 - 15:24
veja.png Execute o OTL. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

*Cole as linhas em azul no espaço abaixo de Exames Personalizados/Correções


:Reg
[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B4FA9FEA-2787-4C25-8BBE-24CB80F71842}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope" = ""
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope" = ""

:Commands
[reboot]


*Clique [Consertar]

Imagem

*Clique [OK] para reiniciar o PC

Imagem

*Cole o relatório apresentado


veja.png Faça um scan online com o NOD32

Imagem

*Ao término cole o relatório criado em C:\Program Files (x86)\ESET\ESET Online Scanner\log
© 1999-2024 Hardware.com.br. Todos os direitos reservados.
Imagem do Modal