Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.
Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14806 usuários registrados
O último membro registrado é King empero

Os nossos membros postaram um total de 36043 mensagens em 3684 assuntos
Últimos assuntos
» Possíveis vírus
por joram Sex 15 Mar 2024, 19:05

Quem está conectado?
14 usuários online :: 0 registrados, 0 invisíveis e 14 visitantes

Nenhum

O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
 
 

Resultados por:
 


Rechercher Pesquisa avançada

março 2024
SegTerQuaQuiSexSábDom
    123
45678910
11121314151617
18192021222324
25262728293031

Calendário Calendário


Kaspersky detecta baidu antivirus e não consigo removê-lo

2 participantes

Página 1 de 2 1, 2  Seguinte

Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 13:17

Ao tentar instalar o kaspersky, ele identifica software incompatível: baidu antivirus. Mas não consigo achá-lo para remover. O que faço? Meu pc está sem antivirus no momento.
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 13:57

Kaspersky detecta baidu antivirus e não consigo removê-lo 648673379  Oi Juliana. Seja bem vinda ao Fórum PC Brasil.

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309 Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 14:02

# AdwCleaner v3.023 - Relatório criado 12/04/2014 às 13:01:04
# Atualizado 01/04/2014 por Xplode
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : Juliana - NOTEBOOK
# Executando de : D:\Meus Documentos\Downloads\adwcleaner.exe
# Opção : Examinar

***** [ Serviços ] *****

Serviço Encontrado : IBUpdaterService
Serviço Encontrado : savesenselive
Serviço Encontrado : savesenselivem

***** [ Arquivos / Pastas ] *****

Arquivo Encontrado : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage
Arquivo Encontrado : C:\Users\Juliana\AppData\Local\mysearchdial-speeddial.crx
Arquivo Encontrado : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\searchplugins\Mysearchdial.xml
Arquivo Encontrado : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\user.js
Arquivo Encontrado : C:\Users\Juliana\AppData\Roaming\speedanalysis.ico
Pasta Encontrado : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Pasta Encontrado : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Pasta Encontrado : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\Extensions\{2d7886a0-85bb-4bf2-b684-ba92b4b21d23}
Pasta Encontrado : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
Pasta Encontrado C:\ProgramData\Ask
Pasta Encontrado C:\Users\Juliana\AppData\Local\Babylon
Pasta Encontrado C:\Users\Juliana\AppData\Local\Mobogenie
Pasta Encontrado C:\Users\Juliana\AppData\Local\PackageAware
Pasta Encontrado C:\Users\Juliana\AppData\Local\SaveSense
Pasta Encontrado C:\Users\Juliana\AppData\Local\SaveSenseLive
Pasta Encontrado C:\Users\Juliana\AppData\Local\Temp\AskSearch
Pasta Encontrado C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
Pasta Encontrado D:\Meus Documentos\Documents\Mobogenie

***** [ Atalhos ] *****


***** [ Registro ] *****

Chave Encontrada : HKCU\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Chave Encontrada : HKCU\Software\SaveSenseLive
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Encontrada : HKLM\SOFTWARE\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk
Chave Encontrada : HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Chave Encontrada : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Chave Encontrada : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Chave Encontrada : HKLM\Software\SaveSenseLive
Valor Encontrada : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.7600.17006


-\\ Mozilla Firefox v21.0 (pt-BR)

[ Arquivo : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6711 octets] - [12/04/2014 13:01:04]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6771 octets] ##########
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 14:05

Clique no botão Limpar para que o AdwCleaner remova os problemas encontrados. Depois disto poste o novo relatório que ele irá criar aqui no seu tópico.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 14:14

Já tinha clicado em limpar.

apareceu este outro relatório na pasta C:\AdwCleaner

# AdwCleaner v3.023 - Relatório criado 12/04/2014 às 13:02:24
# Atualizado 01/04/2014 por Xplode
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : Juliana - NOTEBOOK
# Executando de : D:\Meus Documentos\Downloads\adwcleaner.exe
# Opção : Examinar

***** [ Serviços ] *****

Serviço Encontrado : IBUpdaterService
Serviço Encontrado : savesenselive
Serviço Encontrado : savesenselivem

***** [ Arquivos / Pastas ] *****

Arquivo Encontrado : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage
Arquivo Encontrado : C:\Users\Juliana\AppData\Local\mysearchdial-speeddial.crx
Arquivo Encontrado : C:\Users\Juliana\AppData\Roaming\speedanalysis.ico
Pasta Encontrado : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Pasta Encontrado : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Pasta Encontrado : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\Extensions\{2d7886a0-85bb-4bf2-b684-ba92b4b21d23}
Pasta Encontrado : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
Pasta Encontrado C:\Users\Juliana\AppData\Local\Babylon
Pasta Encontrado C:\Users\Juliana\AppData\Local\Mobogenie
Pasta Encontrado C:\Users\Juliana\AppData\Local\PackageAware
Pasta Encontrado C:\Users\Juliana\AppData\Local\SaveSense
Pasta Encontrado C:\Users\Juliana\AppData\Local\SaveSenseLive
Pasta Encontrado C:\Users\Juliana\AppData\Local\Temp\AskSearch
Pasta Encontrado C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
Pasta Encontrado D:\Meus Documentos\Documents\Mobogenie

***** [ Atalhos ] *****


***** [ Registro ] *****

Chave Encontrada : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Encontrada : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Chave Encontrada : HKCU\Software\SaveSenseLive
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Chave Encontrada : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Encontrada : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
Chave Encontrada : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Chave Encontrada : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Chave Encontrada : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Chave Encontrada : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Chave Encontrada : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Chave Encontrada : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Chave Encontrada : HKLM\Software\SaveSenseLive

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.7600.17006


-\\ Mozilla Firefox v21.0 (pt-BR)

[ Arquivo : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6851 octets] - [12/04/2014 13:01:04]
AdwCleaner[R1].txt - [6103 octets] - [12/04/2014 13:02:24]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [6163 octets] ##########


JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 14:22

|- Clique com o botão direito do mouse em AdwCleaner.exe e escolha a opção Executar como administrador.

|- Caso surja uma mensagem do Windows com a pergunta "Deseja permitir que o programa a seguir faça alterações neste computador?" clique em Sim.

|-  Dê iní­cio ao escaneamento, clicando no botão Examinar como mostra esta imagem abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Assim que a verificação tiver sido concluída, clique no botão Limpar, como mostra esta imagem:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Surgirá, então, esta mensagem mostrada abaixo na qual você clicará no botão OK:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Depois dos procedimentos acima aparecerá esta última mensagem, onde você novamente clicará em OK:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Depois disto o PC será reiniciado. E aí é só você postar o relatório dele que estará em C:\AdwCleaner\AdwCleaner[S0].txt em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 14:30

# AdwCleaner v3.023 - Relatório criado 12/04/2014 às 13:03:09
# Atualizado 01/04/2014 por Xplode
# Sistema Operacional : Windows 7 Ultimate (32 bits)
# Usuário : Juliana - NOTEBOOK
# Executando de : D:\Meus Documentos\Downloads\adwcleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

[#] Serviço Deletada : IBUpdaterService
[#] Serviço Deletada : savesenselive
[#] Serviço Deletada : savesenselivem

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\Users\Juliana\AppData\Local\Babylon
Pasta Deletada : C:\Users\Juliana\AppData\Local\Mobogenie
Pasta Deletada : C:\Users\Juliana\AppData\Local\PackageAware
Pasta Deletada : C:\Users\Juliana\AppData\Local\SaveSense
Pasta Deletada : C:\Users\Juliana\AppData\Local\SaveSenseLive
Pasta Deletada : C:\Users\Juliana\AppData\Local\Temp\AskSearch
Pasta Deletada : C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
Pasta Deletada : D:\Meus Documentos\Documents\Mobogenie
Pasta Deletada : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\Extensions\{2d7886a0-85bb-4bf2-b684-ba92b4b21d23}
Pasta Deletada : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
Pasta Deletada : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Pasta Deletada : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Arquivo Deletada : C:\Users\Juliana\AppData\Local\mysearchdial-speeddial.crx
Arquivo Deletada : C:\Users\Juliana\AppData\Roaming\speedanalysis.ico
Arquivo Deletada : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage

***** [ Atalhos ] *****


***** [ Registro ] *****

Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Chave Deletedo : HKCU\Software\SaveSenseLive
Chave Deletedo : HKLM\Software\SaveSenseLive
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Chave Deletedo : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E

***** [ Navegadores ] *****

-\\ Internet Explorer v8.0.7600.17006


-\\ Mozilla Firefox v21.0 (pt-BR)

[ Arquivo : C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\prefs.js ]


-\\ Google Chrome v

[ Arquivo : C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6851 octets] - [12/04/2014 13:01:04]
AdwCleaner[S0].txt - [6083 octets] - [12/04/2014 14:29:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6143 octets] ##########
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 14:36

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309 Baixe o programa Junkware Removal Tool no link abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 14:46

Já tinha utilizado esse programa hoje mais cedo para tentar solucionar o problema, mas não resolveu.

olha o relatório que apareceu agora:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x86
Ran by Juliana on 12/04/2014 at 14:43:00,02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12/04/2014 at 14:45:18,40
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 14:48

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309  Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Selecione e copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.


Última edição por Power Max em Sáb 12 Abr 2014, 17:49, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 15:07


Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by Juliana on 12/04/2014 at 14:51:10,81.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: D:\Meus Documentos\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

12/04/2014 14:51:56 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\prefs.js:

Added to C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default

user.js not found
---- Lines mysearch removed from prefs.js ----
user_pref("extensions.irmysearch.aflt", "dsites0103");
user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutD0CyCtDyByCtDtAzyyEzzyC0D0B0A0CtN0D0Tzu0CyByCtAtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1
user_pref("extensions.irmysearch.cr", "198069055");
user_pref("extensions.irmysearch.instlRef", "");
---- FireFox user.js and prefs.js backups ----

prefs_042014_1459_.backup

==== Deleting Files \ Folders ======================

C:\Users\Juliana\daemonprocess.txt deleted
C:\Users\Juliana\.android deleted
C:\PROGRA~2\FileSplitUpLoad.dll deleted
C:\Users\Juliana\AppData\Local\cache deleted

==== Folders Found ======================

2014-02-01 16:41:46 2014-03-25 19:05:17 -------- d-----w- C:\Program Files\Baidu Security
2014-03-25 19:05:17 2014-03-26 10:52:57 -------- d-----w- C:\Program Files\Baidu Security\Baidu Antivirus
2014-02-01 16:41:46 2014-03-25 19:06:02 -------- d-----w- C:\ProgramData\Baidu Security
2014-02-01 16:41:46 2014-03-25 19:06:02 -------- d-----w- C:\Users\All Users\Baidu Security
2014-03-25 19:02:18 2014-03-25 19:02:18 -------- d-----w- C:\Users\Juliana\AppData\Local\Temp\baidu_secure
2014-02-01 16:48:25 2014-02-01 16:48:25 -------- d-----w- C:\Users\Juliana\AppData\Roaming\Baidu Security
2014-02-01 17:08:41 2014-02-01 17:08:41 -------- d-----w- C:\Users\Juliana\AppData\Roaming\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-02-01 17:08:41 2014-02-01 17:08:41 -------- d-----w- C:\Users\Juliana\AppData\Roaming\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK

==== Files Found ======================


--- C:\Users\Juliana\AppData\Local\Temp\Baidu_Secure_SystemUp_4.0.1.56634(1).exe ---
Company: Baidu, Inc.
File Description: PC Faster Setup
File Version: 4.0.1.56634
Product Name: Baidu PC Faster
Copyright: Copyright (C) 2013 Baidu, Inc. All Rights Reserved.
Original Filename:
File type: ----a-w-
File size: 18602568
Created time: 2014-02-08 13:47:53
Modified time: 2014-02-08 13:47:53
MD5: 4768D20F58E06A7F056AF36C20850C6F
SHA1: 96D1454EF09025663332072972E7C2B27040AC4D


--- C:\Users\Juliana\AppData\Local\Temp\Baidu_Secure_SystemUp_4.0.1.56634.exe ---
Company: Baidu, Inc.
File Description: PC Faster Setup
File Version: 4.0.1.56634
Product Name: Baidu PC Faster
Copyright: Copyright (C) 2013 Baidu, Inc. All Rights Reserved.
Original Filename:
File type: ----a-w-
File size: 18605480
Created time: 2014-02-01 16:41:56
Modified time: 2014-02-01 16:41:56
MD5: BACBCAE5F50EDD4601DB00CBDA7AF191
SHA1: 22F8B3663BB270BD99B2CA866A9FDB3C0A56683F


--- C:\Users\Juliana\AppData\Local\Temp\66D9F3D0-C257-11E3-8768-001F16BED135\Cleaner\baidu_av_4_0_3_57478.ini ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 227
Created time: 2014-04-12 15:30:46
Modified time: 2014-04-07 15:26:08
MD5: C9F2E09C386C9A6E5434D21A0200F6E0
SHA1: 442F80424FDDE56047D0E11824A66CCC37D89CE4


--- C:\Users\Juliana\AppData\Local\Temp\74BBD326-C254-11E3-835C-001F16BED135\Cleaner\baidu_av_4_0_3_57478.ini ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 227
Created time: 2014-04-12 15:09:43
Modified time: 2014-04-07 15:26:08
MD5: C9F2E09C386C9A6E5434D21A0200F6E0
SHA1: 442F80424FDDE56047D0E11824A66CCC37D89CE4


==== Registry Search Results for "Baidu" ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\Antivirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\LogLoc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\LogUp]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Processing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Temp]

"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PCFasterSvc-2014-02-01 02-03-10-0971-[0159].tmp"=""

"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PcfTray-2014-02-01 02-03-52-0795-[0297].tmp"=""

"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PCFasterSvc-2014-02-08 02-53-53-0788-[4782].tmp"=""

"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-Updater-2014-02-08 02-53-58-0390-[4799].tmp"=""

"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PCFasterSvc-2014-02-08 02-13-30-0924-[8626].tmp"=""

"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-pcftray-2014-02-08 02-13-32-0174-[8633].tmp"=""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"="baidubar.dll;BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"="baidubar.dll;BaiduBarX.dll;BaiduBarX.dll;BaiduBarX.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]

[HKEY_USERS\.DEFAULT\Software\Baidu]

[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug]

[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav]

[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log]

[HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]

[HKEY_USERS\.DEFAULT\Software\Baidu Security]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\092912-13946-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\120412-13884-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\121311-13774-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\121911-13821-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\MEMORY_130217787087648180.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\092912-13946-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\120412-13884-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\121311-13774-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\121911-13821-01.dmp]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\MEMORY_130217787087648180.dmp]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Install]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Statistic]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\UUReport]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]

"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=dword:00000001
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=dword:00000001

[HKEY_USERS\S-1-5-18\Software\Baidu]

[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug]

[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav]

[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log]

[HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]

[HKEY_USERS\S-1-5-18\Software\Baidu Security]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\092912-13946-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\120412-13884-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\121311-13774-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\121911-13821-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\MEMORY_130217787087648180.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"ucloud"="u.br.bav.baidu.com"

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"dcloud"="http://up.br.bav.baidu.com/cgi-bin/url_warnning/url_warnning.cgi"

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"rcloud"="http://up.br.bav.baidu.com/cgi-bin/url_visit_action.cgi"

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\092912-13946-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\120412-13884-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\121311-13774-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\121911-13821-01.dmp]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\MEMORY_130217787087648180.dmp]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U51
9B10927CFD0F7AD39E40C0E34005B1AD - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.510.13
F647D0BEA553C1D0C251CE07DA6A5511 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
DB988B4550DB9BCE86F9199D961057FC - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
711A2E6A55EC7BFD59B5F649D58B704B - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll - Silverlight Plug-In
7B40A8479A10E23E00BD58D32E1CC0A5 - C:\Users\Juliana\VLC\npvlc.dll - VLC Web Plugin
21A55BABD31DA624449F06A591AE73ED - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrlui.dll - Microsoft (R) Silverlight


==== Chrome Look ======================

Google Docs - Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Juliana\Desktop\BitComet FLV Converter.lnk - C:\Program Files\BitComet FLV Converter\FlvConverter.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartDraw CI.lnk - C:\SmartDraw CI\SmartDraw.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\Juliana\AppData\Local\Google\Chrome\Application\chrome.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenoPro.lnk - C:\Program Files\GenoPro\GenoPro.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bizagi\Bizagi Process Modeler\Bizagi Process Modeler.lnk - C:\Windows\Installer\{4D676D4A-B291-45C3-8A59-3584B39B2CF3}\BizagiProcessModel_5B508F3DCFF345E59FE2B4DCF7A0FC78.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk - C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe -ScParameter=65
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk - C:\Program Files\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Calculator.lnk - C:\Windows\system32\calc.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk - C:\Users\Juliana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Macromedia Fireworks MX.lnk - C:\Program Files\Macromedia\Fireworks MX\Fireworks.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Excel 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
C:\Users\Juliana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="192.168.3.85:3128"
"ProxyOverride"=""
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juliana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Juliana\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juliana\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juliana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Juliana\AppData\Local\Mozilla\Firefox\Profiles\w56elt9u.default\Cache will be emptied at reboot

==== Empty Chrome Cache ======================

C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=171 folders=20 4018299 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Juliana\AppData\Local\Temp will be emptied at reboot
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Juliana\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Juliana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on 12/04/2014 at 15:04:49,04 ======================
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 15:40

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Selecione e copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.


Última edição por Power Max em Sáb 12 Abr 2014, 17:49, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 16:09


Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by Juliana on 12/04/2014 at 15:58:50,73.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: D:\Meus Documentos\Downloads\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-04-12-180449.log 24523 bytes
C:\zoek-results2014-04-12-184701.log 493 bytes

==== System Restore Info ======================

12/04/2014 16:00:04 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\Antivirus]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\DuplicateRecord]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\LogLoc]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu Security\PC Faster\LogUp]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Baidu_Drp_pos\DRP\Processing]
"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PCFasterSvc-2014-02-01 02-03-10-0971-[0159].tmp"=-
"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PcfTray-2014-02-01 02-03-52-0795-[0297].tmp"=-
"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PCFasterSvc-2014-02-08 02-53-53-0788-[4782].tmp"=-
"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-Updater-2014-02-08 02-53-58-0390-[4799].tmp"=-
"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-PCFasterSvc-2014-02-08 02-13-30-0924-[8626].tmp"=-
"C:\\ProgramData\\Baidu Security\\RpData\\rpFile-pcftray-2014-02-08 02-13-32-0174-[8633].tmp"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{77FEF28E-EB96-44FF-B511-3185DEA48697}]
"DllName"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B580CF65-E151-49C3-B73F-70B13FCA8E86}]
"DllName"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Baidu Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log]
[-HKEY_USERS\.DEFAULT\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\092912-13946-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\120412-13884-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\121311-13774-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\121911-13821-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\bug\driver\MEMORY_130217787087648180.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\092912-13946-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\120412-13884-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\121311-13774-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\121911-13821-01.dmp]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\PC Faster\bug\driver\MEMORY_130217787087648180.dmp]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Install]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\alluser]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\curuser]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hkcu]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Run\Disable\hklm]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\Statistic]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\4.0.0.0\UUReport]
[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]
"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=-
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log]
[-HKEY_USERS\S-1-5-18\Software\Baidu\Application Bug\Bav\log\BavSvc.exe]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\092912-13946-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\120412-13884-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\121311-13774-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\121911-13821-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\bug\driver\MEMORY_130217787087648180.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"ucloud"=-
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"dcloud"=-
[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]
"rcloud"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\092912-13946-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\120412-13884-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\121311-13774-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\121911-13821-01.dmp]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\PC Faster\bug\driver\MEMORY_130217787087648180.dmp]

==== Deleting Files \ Folders ======================

C:\Users\Juliana\AppData\Local\Temp\baidu_secure not found
"C:\Users\Juliana\AppData\Local\Temp\Baidu_Secure_SystemUp_4.0.1.56634(1).exe" not found
"C:\Users\Juliana\AppData\Local\Temp\Baidu_Secure_SystemUp_4.0.1.56634.exe" not found
"C:\Users\Juliana\AppData\Local\Temp\66D9F3D0-C257-11E3-8768-001F16BED135\Cleaner\baidu_av_4_0_3_57478.ini" not found
"C:\Users\Juliana\AppData\Local\Temp\74BBD326-C254-11E3-835C-001F16BED135\Cleaner\baidu_av_4_0_3_57478.ini" not found
C:\Program Files\Baidu Security deleted
C:\ProgramData\Baidu Security deleted
C:\Users\Juliana\AppData\Roaming\Baidu Security deleted

==== Folders Found ======================

2014-04-12 19:00:47 2014-04-12 19:00:47 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security
2014-04-12 19:00:47 2014-03-26 10:52:57 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security_Baidu Antivirus
2014-04-12 19:00:47 2014-04-12 19:00:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Baidu Security
2014-04-12 19:00:48 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Baidu Security
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security_PC Faster_4.0.0.0_Uninstall_Baidu PC Faster Uninstall
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security_PC Faster_4.0.0.0_Uninstall_Baidu PC Faster Uninstall HK
2014-04-12 19:00:47 2014-03-26 10:52:57 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security\Baidu Antivirus
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK

==== Files Found ======================


==== Registry Search Results for "Baidu" ======================


[HKEY_USERS\.DEFAULT\Software\Baidu Security]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]

[HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]

"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=dword:00000001
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=dword:00000001

[HKEY_USERS\S-1-5-18\Software\Baidu Security]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]

[HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]

==== C:\zoek_backup content ======================

C:\zoek_backup (files=226 folders=64 51698346 bytes)

==== EOF on 12/04/2014 at 16:02:55,71 ======================
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 16:14

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Selecione e copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.


Última edição por Power Max em Sáb 12 Abr 2014, 17:50, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 16:21

Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by Juliana on 12/04/2014 at 16:19:38,15.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: D:\Meus Documentos\Downloads\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-04-12-180449.log 24523 bytes
C:\zoek-results2014-04-12-184701.log 493 bytes
C:\zoek-results2014-04-12-190255.log 11707 bytes

==== System Restore Info ======================

12/04/2014 16:20:03 Zoek.exe System Restore Point Created Succesfully.

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_USERS\.DEFAULT\Software\Baidu Security]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus]
[-HKEY_USERS\.DEFAULT\Software\Baidu Security\Antivirus\web]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\Antivirus\web]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]
[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]
"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=-
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=-
[-HKEY_USERS\S-1-5-18\Software\Baidu Security]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus]
[-HKEY_USERS\S-1-5-18\Software\Baidu Security\Antivirus\web]

==== Folders Found ======================

2014-04-12 19:00:47 2014-04-12 19:00:47 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security
2014-04-12 19:00:47 2014-03-26 10:52:57 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security_Baidu Antivirus
2014-04-12 19:00:47 2014-04-12 19:00:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Baidu Security
2014-04-12 19:00:48 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Baidu Security
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security_PC Faster_4.0.0.0_Uninstall_Baidu PC Faster Uninstall
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security_PC Faster_4.0.0.0_Uninstall_Baidu PC Faster Uninstall HK
2014-04-12 19:00:47 2014-03-26 10:52:57 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security\Baidu Antivirus
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK

==== Files Found ======================


==== Registry Search Results for "Baidu" ======================


[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]

"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=dword:00000001
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=dword:00000001

==== C:\zoek_backup content ======================

C:\zoek_backup (files=226 folders=64 51698346 bytes)

==== EOF on 12/04/2014 at 16:21:08,06 ======================
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 16:29

*Clique com o botão direito do mouse no Zoek.exe e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

* Selecione e copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.


Última edição por Power Max em Sáb 12 Abr 2014, 17:48, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 16:44

Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by Juliana on 12/04/2014 at 16:40:35,70.
Microsoft Windows 7 Ultimate 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: D:\Meus Documentos\Downloads\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-04-12-180449.log 24523 bytes
C:\zoek-results2014-04-12-184701.log 493 bytes
C:\zoek-results2014-04-12-190255.log 11707 bytes
C:\zoek-results2014-04-12-192108.log 3972 bytes
C:\zoek-results2014-04-12-193314.log 1237 bytes

==== System Restore Info ======================

12/04/2014 16:41:45 Zoek.exe System Restore Point Created Succesfully.

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]
[-HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]
[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]
"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=-
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=-

==== Folders Found ======================

2014-04-12 19:00:47 2014-04-12 19:00:47 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security
2014-04-12 19:00:47 2014-03-26 10:52:57 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security_Baidu Antivirus
2014-04-12 19:00:47 2014-04-12 19:00:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Baidu Security
2014-04-12 19:00:48 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Baidu Security
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security_PC Faster_4.0.0.0_Uninstall_Baidu PC Faster Uninstall
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security_PC Faster_4.0.0.0_Uninstall_Baidu PC Faster Uninstall HK
2014-04-12 19:00:47 2014-03-26 10:52:57 -------- d---a-w- C:\zoek_backup\C_Program Files_Baidu Security\Baidu Antivirus
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall
2014-04-12 19:00:49 2014-04-12 19:00:49 -------- d---a-w- C:\zoek_backup\C_Users_Juliana_AppData_Roaming_Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK

==== Files Found ======================


==== Registry Search Results for "Baidu" ======================


[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster]

[HKEY_USERS\S-1-5-21-986619870-42941217-946953159-1000\Software\Baidu Security\PC Faster\Setup]

"C:\\Users\\Juliana\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\U0JLS9E8\\Firefox%20Setup%2019.0.2[1].exe"=dword:00000001
"C:\\Users\\Juliana\\AppData\\Local\\Temp\\Baidu_Secure_SystemUp_4.0.1.56634(1).exe"=dword:00000001

==== C:\zoek_backup content ======================

C:\zoek_backup (files=226 folders=64 51698346 bytes)

==== EOF on 12/04/2014 at 16:44:05,45 ======================
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 16:47

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309  Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e salve-o no Desktop (Área de Trabalho)

Obs: Ao acessar o link acima, clique no botão Download Now 32-Bit Version

*Execute o FRST e aceite o contrato

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Clique [Scan]

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Ao término clique [OK] > [OK]

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Serão criados dois relatórios no Desktop: FRST.txt e Addition.txt

Poste estes dois relatórios em sua próxima resposta. (Obs: se não couber em uma só resposta, pode dividi-la em mais postagens).

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 16:52

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-04-2014 01
Ran by Juliana (administrator) on NOTEBOOK on 12-04-2014 16:50:09
Running from D:\Meus Documentos\Desktop
Microsoft Windows 7 Ultimate (X86) OS Language: Portuguese Brazilian
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Download link for 64-Bit Version: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

==================== Processes (Whitelisted) =================

(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
(Google Inc.) C:\Users\Juliana\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Juliana\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Juliana\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NeroFilterCheck] - C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [1836328 2007-09-20] (Nero AG)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [196608 2009-01-10] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-07-10] (Synaptics, Inc.)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2012-05-12] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-986619870-42941217-946953159-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-09-20] (Nero AG)
HKU\S-1-5-21-986619870-42941217-946953159-1000\...\Run: [Google Update] - C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-11-01] (Google Inc.)
HKU\S-1-5-21-986619870-42941217-946953159-1000\...\MountPoints2: G - G:\LaunchU3.exe -a
HKU\S-1-5-21-986619870-42941217-946953159-1000\...\MountPoints2: {d844bcd9-a9de-11e3-a031-001f16bed135} - G:\LaunchU3.exe -a
Startup: C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de tela e Iniciador do OneNote 2007.lnk
ShortcutTarget: Recorte de tela e Iniciador do OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-br
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Juliana\AppData\Roaming\Mozilla\Firefox\Profiles\w56elt9u.default
FF NewTab: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF Keyword.URL: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
FF NetworkProxy: "http", "192.168.3.85"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "type", 1
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.0 - C:\Users\Juliana\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Juliana\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Juliana\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-br.xml

Chrome:
=======
CHR DefaultSearchKeyword: google.com.br
CHR Extension: (Google Docs) - C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-04-13]
CHR Extension: (Google Drive) - C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-13]
CHR Extension: (YouTube) - C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-13]
CHR Extension: (Pesquisa do Google) - C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-13]
CHR Extension: (Google Wallet) - C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Juliana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-13]
CHR StartMenuInternet: Google Chrome - C:\Users\Juliana\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================


==================== Drivers (Whitelisted) ====================

R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-13] (Atheros Communications, Inc.)
R2 npf; C:\Windows\System32\drivers\npf.sys [50704 2010-01-26] (CACE Technologies, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-12 16:50 - 2014-04-12 16:50 - 00000000 ____D () C:\FRST
2014-04-12 16:41 - 2014-04-12 16:33 - 00001237 _____ () C:\zoek-results2014-04-12-193314.log
2014-04-12 16:32 - 2014-04-12 16:21 - 00003972 _____ () C:\zoek-results2014-04-12-192108.log
2014-04-12 16:19 - 2014-04-12 16:02 - 00011707 _____ () C:\zoek-results2014-04-12-190255.log
2014-04-12 15:59 - 2014-04-12 15:47 - 00000493 _____ () C:\zoek-results2014-04-12-184701.log
2014-04-12 15:46 - 2014-04-12 15:04 - 00024523 _____ () C:\zoek-results2014-04-12-180449.log
2014-04-12 15:02 - 2014-04-12 15:02 - 00000084 _____ () C:\folders.txt
2014-04-12 14:51 - 2014-04-12 16:44 - 00003538 _____ () C:\zoek-results.log
2014-04-12 14:50 - 2014-04-12 16:00 - 00000000 ____D () C:\zoek_backup
2014-04-12 14:45 - 2014-04-12 14:45 - 00000623 _____ () C:\Users\Juliana\Desktop\JRT.txt
2014-04-12 13:00 - 2014-04-12 14:31 - 00000000 ____D () C:\AdwCleaner
2014-04-12 12:59 - 2014-04-12 12:59 - 00000000 ____D () C:\Windows\ERUNT
2014-04-12 12:20 - 2014-04-12 12:20 - 00000000 ____D () C:\Users\Juliana\AppData\Roaming\InstallShield
2014-04-12 12:08 - 2014-04-12 12:08 - 00000000 ____D () C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2014-04-12 12:08 - 2014-04-12 12:08 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-04-07 17:03 - 2014-04-07 17:03 - 00145992 _____ () C:\Windows\Minidump\040714-17253-01.dmp
2014-03-25 17:18 - 2014-03-25 17:20 - 00000000 ____D () C:\Users\Juliana\AppData\Roaming\SmartDraw
2014-03-25 17:18 - 2014-03-25 17:18 - 00000670 _____ () C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartDraw CI.lnk
2014-03-25 17:18 - 2014-03-25 17:18 - 00000000 ____D () C:\Users\Juliana\AppData\System
2014-03-25 16:37 - 2014-03-25 16:37 - 00000000 ____D () C:\Program Files\Bizagi
2014-03-25 16:35 - 2014-03-25 16:35 - 00000000 ____D () C:\Program Files\GenoPro
2014-03-25 16:06 - 2014-03-25 16:06 - 00000029 _____ () C:\Windows\system32\config.ini

==================== One Month Modified Files and Folders =======

2014-04-12 16:50 - 2014-04-12 16:50 - 00000000 ____D () C:\FRST
2014-04-12 16:46 - 2009-07-14 01:34 - 00017168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-12 16:46 - 2009-07-14 01:34 - 00017168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-12 16:44 - 2014-04-12 14:51 - 00003538 _____ () C:\zoek-results.log
2014-04-12 16:39 - 2009-07-14 01:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-12 16:38 - 2011-10-31 18:12 - 00426174 _____ () C:\Windows\PFRO.log
2014-04-12 16:38 - 2009-07-14 01:39 - 00214342 _____ () C:\Windows\setupact.log
2014-04-12 16:33 - 2014-04-12 16:41 - 00001237 _____ () C:\zoek-results2014-04-12-193314.log
2014-04-12 16:29 - 2013-03-02 11:05 - 00000902 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-12 16:21 - 2014-04-12 16:32 - 00003972 _____ () C:\zoek-results2014-04-12-192108.log
2014-04-12 16:11 - 2011-11-01 15:58 - 00001086 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-986619870-42941217-946953159-1000UA.job
2014-04-12 16:02 - 2014-04-12 16:19 - 00011707 _____ () C:\zoek-results2014-04-12-190255.log
2014-04-12 16:00 - 2014-04-12 14:50 - 00000000 ____D () C:\zoek_backup
2014-04-12 15:47 - 2014-04-12 15:59 - 00000493 _____ () C:\zoek-results2014-04-12-184701.log
2014-04-12 15:11 - 2011-11-01 15:58 - 00001034 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-986619870-42941217-946953159-1000Core.job
2014-04-12 15:04 - 2014-04-12 15:46 - 00024523 _____ () C:\zoek-results2014-04-12-180449.log
2014-04-12 15:02 - 2014-04-12 15:02 - 00000084 _____ () C:\folders.txt
2014-04-12 14:59 - 2011-10-31 17:17 - 00000000 ____D () C:\Users\Juliana
2014-04-12 14:45 - 2014-04-12 14:45 - 00000623 _____ () C:\Users\Juliana\Desktop\JRT.txt
2014-04-12 14:31 - 2014-04-12 13:00 - 00000000 ____D () C:\AdwCleaner
2014-04-12 13:09 - 2012-07-07 21:59 - 00000000 ____D () C:\Users\Juliana\AppData\Local\Facebook
2014-04-12 13:04 - 2009-07-14 01:53 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-12 12:59 - 2014-04-12 12:59 - 00000000 ____D () C:\Windows\ERUNT
2014-04-12 12:28 - 2014-03-08 14:58 - 00000000 ___HD () C:\Program Files\InstallJammer Registry
2014-04-12 12:24 - 2011-11-30 11:54 - 00000000 ____D () C:\Program Files\Macromedia
2014-04-12 12:24 - 2011-11-30 11:54 - 00000000 ____D () C:\Program Files\Common Files\Macromedia
2014-04-12 12:24 - 2011-11-10 13:19 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-04-12 12:21 - 2011-11-10 13:19 - 00000000 ____D () C:\Program Files\Brother
2014-04-12 12:20 - 2014-04-12 12:20 - 00000000 ____D () C:\Users\Juliana\AppData\Roaming\InstallShield
2014-04-12 12:08 - 2014-04-12 12:08 - 00000000 ____D () C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2014-04-12 12:08 - 2014-04-12 12:08 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-04-11 08:29 - 2011-10-31 17:22 - 01626900 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-11 08:29 - 2009-07-29 15:46 - 00703080 _____ () C:\Windows\system32\prfh0416.dat
2014-04-11 08:29 - 2009-07-29 15:46 - 00145866 _____ () C:\Windows\system32\prfc0416.dat
2014-04-07 17:03 - 2014-04-07 17:03 - 00145992 _____ () C:\Windows\Minidump\040714-17253-01.dmp
2014-04-07 17:03 - 2011-12-13 12:40 - 269123644 _____ () C:\Windows\MEMORY.DMP
2014-04-07 17:03 - 2011-12-13 12:40 - 00000000 ____D () C:\Windows\Minidump
2014-04-02 22:42 - 2012-01-02 20:22 - 00018944 _____ () C:\Users\Juliana\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-02 22:41 - 2012-01-02 19:02 - 00000000 ____D () C:\Users\Juliana\AppData\Local\WMTools Downloaded Files
2014-04-02 22:34 - 2012-08-30 23:07 - 00000000 ____D () C:\Users\Juliana\AppData\Roaming\vlc
2014-03-26 07:53 - 2009-07-14 01:33 - 00417832 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-25 17:20 - 2014-03-25 17:18 - 00000000 ____D () C:\Users\Juliana\AppData\Roaming\SmartDraw
2014-03-25 17:18 - 2014-03-25 17:18 - 00000670 _____ () C:\Users\Juliana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartDraw CI.lnk
2014-03-25 17:18 - 2014-03-25 17:18 - 00000000 ____D () C:\Users\Juliana\AppData\System
2014-03-25 17:09 - 2012-02-14 10:37 - 00000000 ____D () C:\Users\Juliana\AppData\Roaming\IsolatedStorage
2014-03-25 17:09 - 2011-10-31 17:43 - 00109656 _____ () C:\Users\Juliana\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-25 16:48 - 2009-07-13 23:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-03-25 16:37 - 2014-03-25 16:37 - 00000000 ____D () C:\Program Files\Bizagi
2014-03-25 16:35 - 2014-03-25 16:35 - 00000000 ____D () C:\Program Files\GenoPro
2014-03-25 16:35 - 2012-02-14 10:36 - 00000000 ____D () C:\Users\Juliana\AppData\Local\Downloaded Installations
2014-03-25 16:34 - 2011-10-31 17:08 - 01411009 _____ () C:\Windows\WindowsUpdate.log
2014-03-25 16:30 - 2011-10-31 18:07 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-03-25 16:06 - 2014-03-25 16:06 - 00000029 _____ () C:\Windows\system32\config.ini

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-09 08:54

==================== End Of Log ============================





Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-04-2014 01
Ran by Juliana at 2014-04-12 16:50:53
Running from D:\Meus Documentos\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
Acer Crystal Eye webcam Ver:1.1.74.216 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.74.216 - Chicony Electronics Co.,Ltd.)
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.6) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.6 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - Alps Electric)
Arquivo do WinRAR (HKLM\...\WinRAR archiver) (Version: - )
Atualização do produto Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0416-0000-0000000FF1CE}_ENTERPRISE_{717C9095-8AAE-41CB-B046-BD6E8399F4F3}) (Version: - Microsoft)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0416-0000-0000000FF1CE}_ENTERPRISE_{5016CB22-B9A7-44FB-AA72-AF28B27B15EA}) (Version: - Microsoft)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0416-0000-0000000FF1CE}_ENTERPRISE_{BE3A7C0C-0081-4694-B5F9-980DD66BDDF8}) (Version: - Microsoft)
Atualização do produto Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0416-0000-0000000FF1CE}_ENTERPRISE_{7297E3A9-FCD4-4E0E-A306-7A90359E50E3}) (Version: - Microsoft)
Bizagi Process Modeler (HKLM\...\InstallShield_{4D676D4A-B291-45C3-8A59-3584B39B2CF3}) (Version: 2.6.04 - Bizagi Limited)
Bizagi Process Modeler (Version: 2.6.04 - Bizagi Limited) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
GenoPro 2.5.4.1 (HKLM\...\GenoPro) (Version: - GenoPro Inc.)
Google Chrome (HKCU\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Update Helper (Version: 1.3.23.0 - SaveSense) Hidden <==== ATTENTION
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Macromedia Fireworks MX (HKLM\...\{930B2432-43D4-11D5-9871-00C04F8EEB39}) (Version: 6 - Macromedia)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Portuguese (Brazil)) 2007 (Version: 12.0.4518.1019 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Mozilla Firefox 21.0 (x86 pt-BR) (HKLM\...\Mozilla Firefox 21.0 (x86 pt-BR)) (Version: 21.0 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 8 (HKLM\...\{B944FA21-81AF-4A77-8328-CE4F4CC51046}) (Version: 8.10.26 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
OKI Network Extension (HKLM\...\{38ADB9A6-798C-11D6-A855-00105A80791C}) (Version: 1.00.000 - Okidata)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.3 - Frank Heindörfer, Philip Chinery)
Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform)
Skype™️ 6.6 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.6.106 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.1.22.0 - Synaptics)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B5B7C5DB-74C3-43E0-8413-0C6C1CA4DED0}) (Version: - Microsoft)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VLC media player 2.0.0 (HKLM\...\VLC media player) (Version: 2.0.0 - VideoLAN)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)

==================== Restore Points =========================

02-04-2014 20:36:45 Ponto de Verificação Agendado
11-04-2014 14:03:19 Ponto de Verificação Agendado
12-04-2014 15:18:36 Removed Facebook Video Calling 2.0.0.447
12-04-2014 15:19:49 Removido MFL-Pro Suite
12-04-2014 15:20:56 Removido Brother Software Suite
12-04-2014 15:21:55 Removido Dreamweaver MX
12-04-2014 15:23:19 Removido Flash
12-04-2014 15:24:17 Removido Extension Manager
12-04-2014 15:25:11 Installed FreeHand
12-04-2014 16:53:39 zoek.exe restore point
12-04-2014 17:51:41 zoek.exe restore point
12-04-2014 18:46:47 zoek.exe restore point
12-04-2014 18:59:44 zoek.exe restore point
12-04-2014 19:19:53 zoek.exe restore point
12-04-2014 19:32:57 zoek.exe restore point
12-04-2014 19:41:23 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-13 23:04 - 2014-04-12 14:52 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {38E75C90-8B92-47A0-9798-F94BA9BDEED9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {8950FD90-1821-4518-A033-78C93CF1AC23} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-986619870-42941217-946953159-1000UA => C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-01] (Google Inc.)
Task: {9D894C85-F682-4E56-BEBA-4C1F26AC56D1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-986619870-42941217-946953159-1000Core => C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-01] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-986619870-42941217-946953159-1000Core.job => C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-986619870-42941217-946953159-1000UA.job => C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-05-12 22:57 - 2012-05-12 22:57 - 00200704 _____ () C:\Windows\PLFSetI.exe
2014-04-11 14:16 - 2014-04-01 22:57 - 00065352 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll
2014-04-11 14:17 - 2014-04-01 22:57 - 00674632 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
2014-04-11 14:17 - 2014-04-01 22:57 - 00093000 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\Application\34.0.1847.116\libegl.dll
2014-04-11 14:17 - 2014-04-01 22:57 - 04081480 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\Application\34.0.1847.116\pdf.dll
2014-04-11 14:17 - 2014-04-01 22:58 - 00390472 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
2014-04-11 14:17 - 2014-04-01 22:57 - 01647432 _____ () C:\Users\Juliana\AppData\Local\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (04/12/2014 04:40:05 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)

Error: (04/12/2014 03:57:53 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)

Error: (04/12/2014 03:04:45 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)

Error: (04/12/2014 02:59:34 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/12/2014 02:59:33 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/12/2014 02:59:33 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/12/2014 02:59:32 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/12/2014 02:59:32 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.


Microsoft Office Sessions:
=========================
Error: (03/09/2014 09:34:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2814 seconds with 540 seconds of active time. This session ended with a crash.

Error: (02/20/2014 11:22:40 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2050 seconds with 1500 seconds of active time. This session ended with a crash.

Error: (07/04/2013 10:39:08 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/27/2013 02:14:03 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2016 seconds with 1500 seconds of active time. This session ended with a crash.

Error: (01/21/2013 10:03:11 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2265 seconds with 960 seconds of active time. This session ended with a crash.

Error: (02/24/2012 09:21:46 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3277 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (01/22/2012 09:51:56 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 36368 seconds with 18840 seconds of active time. This session ended with a crash.


==================== Memory info ===========================

Percentage of memory in use: 36%
Total physical RAM: 3000.84 MB
Available physical RAM: 1913.38 MB
Total Pagefile: 5999.96 MB
Available Pagefile: 4890.86 MB
Total Virtual: 2047.88 MB
Available Virtual: 1883.73 MB

==================== Drives ================================

Drive c: (Sistema) (Fixed) (Total:97.56 GB) (Free:70.68 GB) NTFS
Drive d: (Dados) (Fixed) (Total:135.23 GB) (Free:98.65 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Cool (Size: 233 GB) (Disk ID: 2C87CE92)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=98 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=135 GB) - (Type=07 NTFS)

==================== End Of Log ============================

JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 17:08

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309  Baixe o arquivo fixlist.txt que está anexado nesta postagem e salve-o no desktop (área de trabalho).

Execute o FRST. Clique no botão Fix.

Aguarde e ao final, o log Fixlog.txt será salvo no seu desktop.

Selecione, copie e cole o conteúdo deste Fixlog.txt em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 17:12

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 12-04-2014 01
Ran by Juliana at 2014-04-12 17:12:21 Run:1
Running from D:\Meus Documentos\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
SearchScopes: HKLM - DefaultScope value is missing.
end
*****************

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.

==== End of Fixlog ====
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 17:13

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309  Faça o download do Usbfix [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (ao acessar a página clique no botão representado nesta imagem (na parte direita da página) para baixá-lo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Utilize o USBFix conforme é mostrado nesta postagem:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
_______________________________________________________________________________________________________

Faça o download do [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Kaspersky detecta baidu antivirus e não consigo removê-lo 772309  Instale-o e utilize-o seguindo as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Na sua próxima resposta poste o relatório do McShield Anti-Malware Tool que terá o nome MCShield-AllScans.txt, o qual estará na área de trabalho (Desktop) de seu PC juntamente com o log (relatório) do Usbfix que estará em C:\UsbFix.txt em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 17:40

############################## | UsbFix V 7.169 | [Supressão]

Usuário: Juliana (Administrador) # NOTEBOOK
Atualizado em 31/03/2014 por El Desaparecido - Team SosVirus
Começou em 17:27:10 | 12/04/2014

Site : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Changelog : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Support : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Upload Malware : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Contato : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

PC: Acer (HM41 )
CPU: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz
RAM -> [Total : 3001 Mo| Free : 2360 Mo]
Bios: Phoenix Technologies LTD
Boot: Normal boot

OS: Microsoft Windows 7 Ultimate (6.1.7600 32-Bit)
WB: Windows Internet Explorer : 8.0.7600.16385
WB: Mozilla Firefox : 21.0

SC: Security Center [Enabled]
WU: Windows Update [(!) Disabled]
AS: Windows Defender [(!) Disabled | (!) Outdated]
FW: Windows FireWall [(!) Disabled]

C:\ (%systemdrive%) -> Disco fixo # 98 Gb (71 Mb livre - 72%) [Sistema] # NTFS
D:\ -> Disco fixo # 135 Gb (99 Mb livre - 73%) [Dados] # NTFS
E:\ -> CD-ROM

################## | Processos Ativos |

C:\Windows\system32\csrss.exe (ID: 348 |ParentID: 332)
C:\Windows\system32\wininit.exe (ID: 400 |ParentID: 332)
C:\Windows\system32\csrss.exe (ID: 408 |ParentID: 392)
C:\Windows\system32\services.exe (ID: 456 |ParentID: 400)
C:\Windows\system32\lsass.exe (ID: 476 |ParentID: 400)
C:\Windows\system32\lsm.exe (ID: 484 |ParentID: 400)
C:\Windows\system32\svchost.exe (ID: 588 |ParentID: 456)
C:\Windows\system32\winlogon.exe (ID: 664 |ParentID: 392)
C:\Windows\system32\svchost.exe (ID: 716 |ParentID: 456)
C:\Windows\System32\svchost.exe (ID: 760 |ParentID: 456)
C:\Windows\System32\svchost.exe (ID: 852 |ParentID: 456)
C:\Windows\system32\svchost.exe (ID: 900 |ParentID: 456)
C:\Windows\system32\svchost.exe (ID: 1012 |ParentID: 456)
C:\Windows\system32\svchost.exe (ID: 1148 |ParentID: 456)
C:\Windows\System32\spoolsv.exe (ID: 1336 |ParentID: 456)
C:\Windows\system32\svchost.exe (ID: 1364 |ParentID: 456)
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1448 |ParentID: 456)
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (ID: 1580 |ParentID: 456)
C:\Windows\system32\Dwm.exe (ID: 1608 |ParentID: 852)
C:\Windows\system32\taskhost.exe (ID: 1684 |ParentID: 456)
C:\Windows\Explorer.EXE (ID: 1736 |ParentID: 1592)
C:\Program Files\Skype\Updater\Updater.exe (ID: 1816 |ParentID: 456)
C:\Windows\system32\svchost.exe (ID: 1860 |ParentID: 456)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 1928 |ParentID: 456)
C:\Windows\system32\runonce.exe (ID: 296 |ParentID: 1736)
C:\Windows\system32\PrintIsolationHost.exe (ID: 336 |ParentID: 588)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 1240 |ParentID: 1928)
C:\Windows\system32\svchost.exe (ID: 1640 |ParentID: 456)
C:\Windows\System32\rundll32.exe (ID: 2376 |ParentID: 588)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 2508 |ParentID: 588)

################## | Procura genérica |

Supprimido ! C:\Win

(!) Ficheiros temporários suprimido.

################## | Registro |

Supprimido ! HKU\S-1-5-21-986619870-42941217-946953159-1000\Software\.\.\.\.\Mountpoints2\G
Supprimido ! HKU\S-1-5-21-986619870-42941217-946953159-1000\Software\.\.\.\.\Mountpoints2\{d844bcd9-a9de-11e3-a031-001f16bed135}

################## | Regedit Run |

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
04 - HKCU\..\Run : [Google Update] "C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKLM\..\Run : [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
04 - HKLM\..\Run : [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
04 - HKLM\..\Run : [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
04 - HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [Apoint] C:\Program Files\Apoint2K\Apoint.exe
04 - HKLM\..\Run : [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM\..\Run : [PLFSetI] C:\Windows\PLFSetI.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-986619870-42941217-946953159-1000\..\Run : [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
04 - HKU\S-1-5-21-986619870-42941217-946953159-1000\..\Run : [Google Update] "C:\Users\Juliana\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe

################## | Listing |

[08/12/2011 - 13:34:27 | D] - C:\$AVG
[12/04/2014 - 15:04:55 | SHD] - C:\$RECYCLE.BIN
[12/04/2014 - 14:31:17 | D] - C:\AdwCleaner
[31/10/2011 - 17:17:37 | D] - C:\Arquivos de Programas
[08/03/2014 - 15:01:03 | D] - C:\Arquivos de Programas RFB
[11/09/2013 - 10:24:04 | D] - C:\ATI
[03/03/2014 - 13:43:39 | D] - C:\ATLAS
[10/06/2009 - 18:42:20 | A | 0 Ko] - C:\autoexec.bat
[10/06/2009 - 18:42:20 | N | 0 Ko] - C:\config.sys
[14/07/2009 - 01:53:55 | SHD] - C:\Documents and Settings
[12/04/2014 - 15:02:39 | N | 0 Ko | E5D9FE2F0F3113BAB50156E1A913AA1F] - C:\folders.txt
[12/04/2014 - 17:12:21 | D] - C:\FRST
[12/04/2014 - 17:26:22 | ASH | 2304644 Ko] - C:\hiberfil.sys
[07/02/2012 - 10:54:28 | D] - C:\Intel
[07/01/2013 - 20:35:54 | RASH | 0 Ko] - C:\IO.SYS
[07/01/2013 - 20:35:54 | RASH | 0 Ko] - C:\MSDOS.SYS
[31/10/2011 - 18:05:47 | RHD] - C:\MSOCache
[12/04/2014 - 17:26:26 | ASH | 3072860 Ko] - C:\pagefile.sys
[13/07/2009 - 23:37:05 | D] - C:\PerfLogs
[12/04/2014 - 16:00:50 | D] - C:\Program Files
[12/04/2014 - 16:00:50 | HD] - C:\ProgramData
[31/10/2011 - 17:17:38 | SHD] - C:\Recovery
[31/01/2013 - 20:17:53 | D] - C:\SMBX
[12/04/2014 - 16:41:38 | SHD] - C:\System Volume Information
[12/04/2014 - 17:24:10 | D] - C:\UsbFix
[12/04/2014 - 17:28:06 | A | 7 Ko | DF0E8962CF316F69532C9F93CC79650D] - C:\UsbFix [Clean 2] NOTEBOOK.txt
[31/10/2011 - 17:17:47 | D] - C:\Users
[28/02/2013 - 21:13:10 | D] - C:\VritualRoot
[12/04/2014 - 16:50:05 | D] - C:\Windows
[12/04/2014 - 16:44:05 | N | 3 Ko] - C:\zoek-results.log
[12/04/2014 - 15:04:49 | N | 24 Ko] - C:\zoek-results2014-04-12-180449.log
[12/04/2014 - 15:47:01 | N | 0 Ko] - C:\zoek-results2014-04-12-184701.log
[12/04/2014 - 16:02:55 | N | 11 Ko] - C:\zoek-results2014-04-12-190255.log
[12/04/2014 - 16:21:08 | N | 4 Ko] - C:\zoek-results2014-04-12-192108.log
[12/04/2014 - 16:33:14 | N | 1 Ko] - C:\zoek-results2014-04-12-193314.log
[12/04/2014 - 16:00:49 | D] - C:\zoek_backup
[31/10/2011 - 17:18:10 | SHD] - D:\$RECYCLE.BIN
[04/07/2012 - 11:57:37 | D] - D:\Associação Criadores de Cavalos de Raça de Catalão
[02/03/2013 - 11:18:45 | D] - D:\Cadernos de Atenção Básica
[05/10/2011 - 21:29:57 | D] - D:\cd macromedia
[31/03/2014 - 14:17:05 | D] - D:\Ceen
[01/02/2013 - 11:50:03 | D] - D:\Config.Msi
[31/01/2013 - 13:10:08 | D] - D:\Corel Draw x4
[20/10/2013 - 06:11:46 | D] - D:\Curriculum
[31/03/2014 - 14:06:43 | D] - D:\Enfermagem do Trabalho
[13/08/2011 - 11:13:33 | D] - D:\Faculdade
[15/01/2014 - 09:33:31 | D] - D:\Fotos
[20/10/2013 - 06:12:19 | D] - D:\GPS
[15/03/2014 - 20:34:39 | D] - D:\Meus Documentos
[24/08/2013 - 13:09:40 | D] - D:\Musicas
[25/12/2012 - 00:09:05 | D] - D:\Para reflexão
[20/12/2012 - 15:56:09 | D] - D:\Programas
[27/10/2009 - 08:47:57 | SHD] - D:\System Volume Information

################## | Vaccin |

D:\Autorun.inf -> Vacina criada por UsbFix (El Desaparecido)

################## | E.O.F | [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] |












>>> MCShield AllScans.txt <<<

-----------------------------




MCShield ::Anti-Malware Tool:: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

>>> v 3.0.5.28 / DB: 2014.4.12.1 / Windows 7 <<<


12/04/2014 17:35:24 > Unidade C: - escaneamento iniciado (Sistema ~98 GB, NTFS HDD )...



=> A unidade está limpa.


12/04/2014 17:35:24 > Unidade D: - escaneamento iniciado (Dados ~135 GB, NTFS HDD )...



=> A unidade está limpa.




JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Power Max Sáb 12 Abr 2014, 17:41

Como está o PC após estas limpezas?

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por JulianaGRosa Sáb 12 Abr 2014, 17:45

Está ótimo!!!

Muito obrigada! Finalmente estou conseguindo instalar o kaspersky sem aparecer o tal do baidu antivirus como software incompatível!

Muito obrigada mesmo!
JulianaGRosa
JulianaGRosa
Iniciante
Iniciante

Mensagens : 15
Reputação : 0
Data de inscrição : 12/04/2014

Ir para o topo Ir para baixo

Kaspersky detecta baidu antivirus e não consigo removê-lo Empty Re: Kaspersky detecta baidu antivirus e não consigo removê-lo

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Ir para o topo Ir para baixo

Página 1 de 2 1, 2  Seguinte

Ir para o topo

- Tópicos semelhantes

 
Permissões neste sub-fórum
Não podes responder a tópicos