Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking Digg  Social bookmarking Delicious  Social bookmarking Reddit  Social bookmarking Stumbleupon  Social bookmarking Slashdot  Social bookmarking Yahoo  Social bookmarking Google  Social bookmarking Blinklist  Social bookmarking Blogmarks  Social bookmarking Technorati  

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14443 usuários registrados
O último usuário registrado atende pelo nome de Caio Flavio

Os nossos membros postaram um total de 35198 mensagens em 3565 assuntos
Últimos assuntos
» Notebook lento, acho que está com virus
por joram Ontem à(s) 18:38

Quem está conectado
1 usuário online :: Nenhum usuário registrado, Nenhum Invisível e 1 Visitante

Nenhum

O recorde de usuários online foi de 108 em Qui 15 Maio 2014, 21:18
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Novembro 2017
SegTerQuaQuiSexSabDom
  12345
6789101112
13141516171819
20212223242526
27282930   

Calendário Calendário


Certificado CE_UmbrellaCert

Ver o tópico anterior Ver o tópico seguinte Ir em baixo

Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Dom 27 Jul 2014, 14:33

Estou com o mesmo problema.. Sempre aparece este certificado. Como faço para removê-lo? Obrigado
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Dom 27 Jul 2014, 14:49

Oi Camilinha. Seja bem vinda ao Fórum PC Brasil.

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Dom 27 Jul 2014, 14:58

Coloquei em anexo
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Dom 27 Jul 2014, 15:05

Desative temporariamente seu antivírus para evitar conflitos.

* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Você precisa estar registrado e conectado para ver este link.]

Para executá-lo corretamente siga as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Seg 28 Jul 2014, 20:07

Não estou conseguindo utilizar o Zoek.exe

Quando tento executar o arquivo, aparece a msg "Zoek.exe não é um aplicativo Win32 válido".

Já desativei o antivírus.

Tentei executar como administrador, mas sempre aparece essa msg.
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Seg 28 Jul 2014, 20:29

inicie o PC em Modo Seguro com rede (apertando a tecla F8 (ou a tecla F5 em alguns computadores) repetidas vezes quando o computador estiver iniciando e escolhendo a opção Modo Seguro com rede (ou Modo seguro). Quando o PC estiver em modo seguro com rede faça a limpeza com o Zoek como lhe passei.

Se mesmo assim não for possível, me avise.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Seg 28 Jul 2014, 22:29

Consegui

Segue o arquivo em anexo
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Ter 29 Jul 2014, 09:45

Baixe o programa Junkware Removal Tool no link abaixo:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Ter 29 Jul 2014, 20:40

Feito
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Ter 29 Jul 2014, 20:44

Faça o download do Malwarebytes em um destes links abaixo:
[Você precisa estar registrado e conectado para ver este link.]
[Você precisa estar registrado e conectado para ver este link.]

Para instalá-lo e executá-lo corretamente siga, por gentileza, as dicas desta postagem:

[Você precisa estar registrado e conectado para ver este link.]

Na sua próxima resposta poste este log (relatório) do Malwarebytes.

Ficamos no aguardo.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Ter 29 Jul 2014, 23:37

Malwarebytes Anti-Malware
[Você precisa estar registrado e conectado para ver este link.]

Data de Verificação: 29/07/2014
Hora da Verificação: 21:37:30
Logfile: Log de Verificação.txt
Administrador: Sim

Versão: 2.00.2.1012
Malware Database: v2014.07.29.09
Rootkit Database: v2014.07.17.01
Licença: Trial
Proteção de Malware: Desabilitado
Proteção de Site Malicioso: Desabilitado
Self-protection: Desabilitado

OS: Windows 7 Service Pack 1
CPU: x64
Sistema de Arquivo: NTFS
Usuário: kadu

Tipo da Verificação: Verificação Personalizada
Resultado: Completado
Arquivos Verificados: 478690
Tempo Decorrido: 1 hr, 40 min, 32 seg

Memória: Enabled
Inicialização: Enabled
Filesystem: Enabled
Arquivos: Enabled
Rootkits: Desabilitado
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processos: 0
(No malicious items detected)

Módulos: 0
(No malicious items detected)

Chaves de Registro: 32
PUP.Optional.AdPeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\AllDaySavingsService64, Quarantined, [a2ab416418638da9b67b3f6df60ef40c],
PUP.Optional.AdPeak, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\netfilter64, Quarantined, [123b1c891467300612c5b4eedc256d93],
PUP.Optional.AllDaySavings.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3b463cef-68b0-a5a8-a573-40c0814bd091}, Quarantined, [35189213e09be5513c05a1bc0df5ce32],
PUP.Optional.AllDaySavings.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3B463CEF-68B0-A5A8-A573-40C0814BD091}, Quarantined, [35189213e09be5513c05a1bc0df5ce32],
PUP.Optional.AllDaySavings.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3B463CEF-68B0-A5A8-A573-40C0814BD091}, Quarantined, [35189213e09be5513c05a1bc0df5ce32],
PUP.Optional.AllDaySavings.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3B463CEF-68B0-A5A8-A573-40C0814BD091}, Quarantined, [35189213e09be5513c05a1bc0df5ce32],
PUP.Optional.SaveSense.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{71e129ff-6c2a-4984-818c-7e2c998b8d99}, Quarantined, [73da396c76053cfa0c27a9b829d9d22e],
PUP.Optional.WebCake.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}, Quarantined, [87c6772eb3c8122434f9f96c53af6997],
PUP.Optional.WebCake.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}, Quarantined, [87c6772eb3c8122434f9f96c53af6997],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Quarantined, [36177a2bafcc4aeceb085608847e1ee2],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Quarantined, [36177a2bafcc4aeceb085608847e1ee2],
PUP.Optional.SearchQu, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, Quarantined, [39146243fb80280e5448a5bf8b776a96],
PUP.Optional.SearchQu, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, Quarantined, [39146243fb80280e5448a5bf8b776a96],
PUP.Optional.Bandoo.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9D717F81-9148-4F12-8568-69135F087DB0}, Quarantined, [84c94065443748ee69f5e5b22cd68c74],
PUP.Optional.Bandoo.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9D717F81-9148-4F12-8568-69135F087DB0}, Quarantined, [84c94065443748ee69f5e5b22cd68c74],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}, Quarantined, [f657c4e10e6dbc7a15df0a549a68c838],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}, Quarantined, [f657c4e10e6dbc7a15df0a549a68c838],
PUP.Optional.PricePeep.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}, Quarantined, [98b5a10482f9e551b4d4672fee14cd33],
PUP.Optional.PricePeep.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}, Quarantined, [98b5a10482f9e551b4d4672fee14cd33],
PUP.Optional.ContentExplorer.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ContentExplorer, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.Adpeak.A, HKLM\SOFTWARE\AllDay Savings, Quarantined, [c28b7233c3b855e1561cb31a50b216ea],
PUP.Optional.Adpeak.A, HKLM\SOFTWARE\AllDaySavings, Quarantined, [430accd9473400367a62e0ed1de501ff],
PUP.Optional.Adpeak.A, HKLM\SOFTWARE\WOW6432NODE\AllDaySavings, Quarantined, [0a434560cead5bdb2fad606daf5351af],
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Feven 1.1, Quarantined, [ed60d9cce992c175353c0ce61ce68779],
PUP.Optional.PlusHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-3.2, Quarantined, [232af7ae97e4c96d1b3d668424dece32],
PUP.Optional.SuperFish.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Quarantined, [5df0a500047739fdca75ce0555ad6898],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [fd50d3d284f755e1cdb531f05ea67d83],
PUP.Optional.Feven.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Feven 1.1, Quarantined, [ff4e1293b7c4c076a4cd0ce627db8f71],
PUP.Optional.PlusHD.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-2.5, Quarantined, [7fce83225e1d4cea441424c6bb474fb1],
PUP.Optional.PlusHD.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-3.2, Quarantined, [df6e6b3aa9d294a2c593e406a45e768a],
PUP.Optional.PricePeep.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\PricePeep, Quarantined, [e46930752e4d7fb7f40a5c9db15117e9],
PUP.Optional.OMG.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\OMG Music!, Quarantined, [ee5ffca97dfe56e0fe28ccf1020009f7],

Valores de Registro: 5
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{338B4DFE-2E2C-4338-9E41-E176D497299E}, ä·¾ã??⸬ä?¸ä??ç?¡é??鸩, Quarantined, [36177a2bafcc4aeceb085608847e1ee2]
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Quarantined, [7cd1f0b5c5b6e35315deaeb0669c0af6],
PUP.Optional.Softomate.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{CA3EB689-8F09-4026-AA10-B9534C691CE0}, Quarantined, [113c663f740774c2c11d104dec1610f0],
PUP.Optional.Softomate.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{CA3EB689-8F09-4026-AA10-B9534C691CE0}, Quarantined, [113c663f740774c2c11d104dec1610f0],
PUP.Optional.ContentExplorer.A, HKU\S-1-5-21-1652419620-2839120189-1845671815-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ContentExplorer, "C:\Users\kadu\AppData\Roaming\ContentExplorer\ContentExplorer.exe", Quarantined, [9db0178e7704da5c27f9bc2dde24ce32]

Dados do Registro: 0
(No malicious items detected)

Pastas: 5
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.OMG.A, C:\Program Files (x86)\OMG Music!, Quarantined, [ee5ffca97dfe56e0fe28ccf1020009f7],
PUP.Optional.Adpeak.A, C:\Program Files\AllDaySavings, Quarantined, [cd8003a25c1f9d9968f9d6f02dd546ba],
PUP.Optional.Adpeak.A, C:\Program Files\AllDaySavings\SSL, Quarantined, [cd8003a25c1f9d9968f9d6f02dd546ba],

Arquivos: 120
PUP.Optional.AdPeak.A, C:\Program Files (x86)\D20A6820-7C28-4015-945F-09F8551FCE45\skwdldhvtp64.exe, No Action By User, [a2ab416418638da9b67b3f6df60ef40c],
PUP.Optional.AdPeak, C:\Windows\System32\drivers\netfilter64.sys, Quarantined, [123b1c891467300612c5b4eedc256d93],
PUP.Optional.AllDaySavings.A, C:\Program Files\D20A6820-7C28-4015-945F-09F8551FCE45\qlotcjgnnn.dll, Quarantined, [35189213e09be5513c05a1bc0df5ce32],
PUP.Optional.DomaIQ, C:\AdwCleaner\Quarantine\C\Program Files\Uninstaller\Uninstall.exe.vir, Quarantined, [3b125352fa818ea88f4471136f95659b],
PUP.Optional.WebCake.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Betcat\WBDesktop.Updater.exe.vir, Quarantined, [1b32b5f05d1e0b2b8c7ae52e41c0f30d],
PUP.Optional.AdLyrics, C:\AdwCleaner\Quarantine\C\Program Files (x86)\FindLyrics\Uninstall.exe.vir, Quarantined, [92bb198c9ae1191d31e82908b54cb749],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptimizerPro.exe.vir, Quarantined, [91bc01a4413add594652e04755ab3cc4],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProGuard.exe.vir, Quarantined, [55f8b6efde9de1555cbebc750ef3cf31],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProReminder.exe.vir, Quarantined, [fd50ebba83f8c472849670c104fd24dc],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSchedule.exe.vir, Quarantined, [3e0fedb8691254e2d14ac26fe21fe21e],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe.vir, Quarantined, [93ba22837b0083b3859757da99686e92],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-bg.exe.vir, Quarantined, [6edfdbca54273600246b6eb6f60bca36],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho.dll.vir, Quarantined, [de6f1a8bd4a7d75f375842e231d06a96],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-buttonutil.exe.vir, Quarantined, [c28bc3e24b30b482c0cf9193bf4257a9],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-buttonutil64.exe.vir, Quarantined, [2528b4f1502b4de9038ca2829e63f60a],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-2.5\utils.exe.vir, Quarantined, [2d20fbaa7cff1224d8b773b14bb622de],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-3.2\Plus-HD-3.2-bg.exe.vir, Quarantined, [420b91146b1067cfc3cc2df733ced927],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-3.2\Plus-HD-3.2-bho.dll.vir, Quarantined, [ef5eaafbd5a62d09d0bfed37e61b16ea],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-3.2\Plus-HD-3.2-bho64.dll.vir, Quarantined, [1835bde8a0db7abc6728af758f723dc3],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-3.2\Plus-HD-3.2-buttonutil.exe.vir, Quarantined, [a8a574318cef60d60a8526fec0416997],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Plus-HD-3.2\Plus-HD-3.2-buttonutil64.exe.vir, Quarantined, [301d25806b1052e4147b2ff5a55c19e7],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe.vir, Quarantined, [3617683daccf89ade8fa3045956c3cc4],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_cs.dll.vir, Quarantined, [81cc396c1e5d68ce7f634b2aa95821df],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_da.dll.vir, Quarantined, [ea63881d8dee73c3a240561fbf42d927],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_de.dll.vir, Quarantined, [34191a8b4a31db5bfbe71f56f40dad53],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_el.dll.vir, Quarantined, [0845fbaa9fdccd696c768de808f93fc1],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en-GB.dll.vir, Quarantined, [6be2bfe61e5ded49439f7ef7c839ad53],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en.dll.vir, Quarantined, [321bb7eef78441f55d85ff76758c8a76],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es-419.dll.vir, Quarantined, [3f0ee2c3b2c9ab8bebf7bbba55acdc24],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es.dll.vir, Quarantined, [3e0f3273c3b80d292fb3e68f837e4fb1],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_et.dll.vir, Quarantined, [e06d6342601b72c4855db7be4db419e7],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fa.dll.vir, Quarantined, [143991146e0d6fc712d04d28b44dd927],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fi.dll.vir, Quarantined, [ff4e644154275cda7969334229d828d8],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fil.dll.vir, Quarantined, [c984ced7e7942b0bb32f61144db4e21e],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fr.dll.vir, Quarantined, [c38a366f304b4fe7756d2f46a8591de3],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_gu.dll.vir, Quarantined, [80cd4b5a88f3d561b42ea1d49968936d],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hi.dll.vir, Quarantined, [dc71aff6dc9f5cda05dd41344eb326da],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hu.dll.vir, Quarantined, [a6a700a5413afe380ad855207f82659b],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_id.dll.vir, Quarantined, [87c672339cdf0a2c11d15e179071d729],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_is.dll.vir, Quarantined, [f35a357099e250e67f63afc6d62b15eb],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_it.dll.vir, Quarantined, [b19c1293e89341f5f8ea1f5655ac47b9],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_iw.dll.vir, Quarantined, [cc81564f84f71a1cd70b5e17659c27d9],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ja.dll.vir, Quarantined, [e26b8124413ad264ad35660f2dd442be],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_kn.dll.vir, Quarantined, [08456045e09b85b121c1b0c53ec3be42],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ko.dll.vir, Quarantined, [d37a772e512a1a1c974ba7ce5ea351af],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lt.dll.vir, Quarantined, [fc51980d46353600eff3720312eff709],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lv.dll.vir, Quarantined, [5cf1e7be1a6189ad01e1175e60a1e818],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ml.dll.vir, Quarantined, [61ec762f3b4062d47270d89d21e026da],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_mr.dll.vir, Quarantined, [ff4e871eeb901224c220294cf20f7b85],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ms.dll.vir, Quarantined, [52fb970ebfbc6bcb865c83f2f20f44bc],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_nl.dll.vir, Quarantined, [b994b3f2631820167072007538c954ac],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_no.dll.vir, Quarantined, [7bd20b9a790237ff1ac85124da27b050],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdate.dll.vir, Quarantined, [cd801293750683b3e6fc274e11f025db],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_am.dll.vir, Quarantined, [c28b5b4af487d75fa9398bea06fbb34d],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ar.dll.vir, Quarantined, [0449ccd9ee8dc96d4a9879fca65b8d73],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bg.dll.vir, Quarantined, [2d20eabb512aae88f8eaacc927da20e0],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bn.dll.vir, Quarantined, [6ce1a302037855e137ab2e4731d0b947],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-BR.dll.vir, Quarantined, [57f60f96275465d1da08b5c043bec13f],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-PT.dll.vir, Quarantined, [1637f6af89f21e1822c0babb976a5fa1],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ro.dll.vir, Quarantined, [d37a92134f2c6fc7cc16205537ca3ec2],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ru.dll.vir, Quarantined, [ec61ebba4d2e9e98934f6d0852afa65a],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sk.dll.vir, Quarantined, [b79603a23a41999d5e84047151b0c739],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sl.dll.vir, Quarantined, [133a4b5a265561d57e642a4b2dd4ee12],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sr.dll.vir, Quarantined, [113c74310a7165d11fc31c59a35ef10f],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sv.dll.vir, Quarantined, [4904ebba28536acc3ca684f10af77f81],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sw.dll.vir, Quarantined, [a5a8b6ef9edd9a9cb42efa7bfc05847c],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ta.dll.vir, Quarantined, [39146a3baad173c37e64d0a55ca5c937],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_te.dll.vir, Quarantined, [212caef7ed8e3afc6b7791e43bc658a8],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_th.dll.vir, Quarantined, [52fb1e878af12c0a9c462c492dd4a25e],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_tr.dll.vir, Quarantined, [ec618322007b56e002e0d5a008f926da],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_uk.dll.vir, Quarantined, [4a0300a56813f1458161beb747ba1ee2],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ur.dll.vir, Quarantined, [f558fea75c1f91a55e84631256abbb45],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ca.dll.vir, Quarantined, [a9a4c8dd522971c5af33de970af79868],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hr.dll.vir, Quarantined, [35184c59790273c3f7eb512424dd2dd3],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pl.dll.vir, Quarantined, [9eaf7a2b007b3bfb855d3a3bed1422de],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_vi.dll.vir, Quarantined, [cb821a8bf487d95d875b581dc839e51b],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-CN.dll.vir, Quarantined, [bd90792c770476c02eb48ee71ce57c84],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-TW.dll.vir, Quarantined, [19344d58b2c96acc776b6312b64b19e7],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll.vir, Quarantined, [e26ba30284f748ee7270de97ba47c937],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psmachine.dll.vir, Quarantined, [54f96441ee8db6804d956213b051956b],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psuser.dll.vir, Quarantined, [88c52580c8b3f4424f93670ec8398977],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLive.exe.vir, Quarantined, [f954f8ad3c3f280eedf54431e21f09f7],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveBroker.exe.vir, Quarantined, [7ecf564f5e1d6ec8b32f2d488879be42],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHandler.exe.vir, Quarantined, [3716584d7a01f1453ba76d08aa57ff01],
PUP.Optional.SaveSense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveOnDemand.exe.vir, Quarantined, [80cdf3b2ee8de056fce6a2d3f11025db],
PUP.Optional.WebCake.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Web Cake\WADesktop.Updater.exe.vir, Quarantined, [222b3a6b7cff9c9a08fee72c7190a65a],
PUP.Optional.OptChrome.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\WebCake\OptChrome.exe.vir, Quarantined, [3a13396c2259b284bef254cae41c6d93],
Adware.WebCake, C:\AdwCleaner\Quarantine\C\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe.vir, Quarantined, [3f0e396c8bf072c40b9b4995df2523dd],
PUP.Optional.SaveSence.A, C:\AdwCleaner\Quarantine\C\Users\kadu\AppData\Local\SaveSense\SaveSenseIE.dll.vir, Quarantined, [3e0fe3c204772f07e976f9ebc44048b8],
PUP.Optional.WebCake.A, C:\AdwCleaner\Quarantine\C\Users\kadu\AppData\Roaming\Betcat\WebCakeDesktop.exe.vir, Quarantined, [3b12198c196226103314b46ab54b46ba],
PUP.Optional.DigitalSites.A, C:\AdwCleaner\Quarantine\C\Users\kadu\AppData\Roaming\DSite\UpdateProc\UpdateTask.exe.vir, Quarantined, [1b32ebba98e3e35354830c2e11f03dc3],
PUP.Optional.WebCake.A, C:\AdwCleaner\Quarantine\C\Users\kadu\AppData\Roaming\Web Cake\WebCakeDesktop.exe.vir, Quarantined, [c38a2c79700b62d40f3828f6e0207c84],
Adware.WebCake, C:\AdwCleaner\Quarantine\C\Users\kadu\AppData\Roaming\WebCake\WebCakeDesktop.exe.vir, Quarantined, [4706aafb0378ad891294627c3aca5ea2],
PUP.Optional.Softonic.A, C:\zoek_backup\C_Users_kadu_Downloads_SoftonicDownloader_para_autocad.exe.vir, Quarantined, [f15c703522595dd9013502272cd58878],
PUP.Optional.Softonic.A, C:\zoek_backup\C_Users_kadu_Downloads_SoftonicDownloader_para_logomaker.exe.vir, Quarantined, [7ad3b8ed4f2c2b0bc76fd8511de4c838],
PUP.Optional.AirAdInstaller, C:\Users\kadu\Desktop\SoftwareUpdate.exe, Quarantined, [aca12b7a80fb62d459cede5c87796997],
PUP.Optional.InstallCore, C:\Users\kadu\Desktop\JavaSetup.exe, Quarantined, [fe4f891cbebd37ff5c6bedbc0cf8bd43],
PUP.Optional.Firseria, C:\Users\kadu\Downloads\GIMP.exe, Quarantined, [a3aad5d096e5ce68b0c69748ad57a55b],
PUP.Optional.InstallCore, C:\Users\kadu\Downloads\ImageResizerSetup.exe, Quarantined, [cf7e9f0688f32610d5eb8303cf354fb1],
PUP.Optional.iBryte, C:\Users\kadu\Downloads\java_setup (1).exe, Quarantined, [5af3228312692c0a6895c2df8f72748c],
PUP.Optional.OptimumInstaller.A, C:\Users\kadu\Downloads\java_setup.exe, Quarantined, [9ab3cbda59220c2a43907fd7768b26da],
PUP.Optional.Somoto.A, C:\Users\kadu\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe, Quarantined, [123b20856714ee4886733ce4cf329e62],
PUP.Optional.MySearchDial.A, C:\Users\kadu\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_start.mysearchdial.com_0.localstorage, Quarantined, [89c4eeb7bebdf442a182b51a0bf74cb4],
PUP.Optional.MySearchDial.A, C:\Users\kadu\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_start.mysearchdial.com_0.localstorage-journal, Quarantined, [3419d2d3017a80b60b181cb3a26002fe],
PUP.Optional.Superfish.A, C:\Users\kadu\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, Delete-on-Reboot, [e766e9bce6956bcb95671fbf16ec3ac6],
PUP.Optional.Superfish.A, C:\Users\kadu\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, Quarantined, [0a439b0ab8c3ac8ac53704daff03a35d],
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer\ContentExplorer.exe, Quarantined, [9db0178e7704da5c27f9bc2dde24ce32],
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer\RootCert.cer, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer\loader.dat, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer\makecert.exe, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer\storage.bin, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.ContentExplorer.A, C:\Users\kadu\AppData\Roaming\ContentExplorer\uninstall.exe, Quarantined, [6fded7cef7847eb88c958f5a9c664ab6],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p2172.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p452.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p4676.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p7468.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p8844.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p9224.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.Feven.A, C:\Users\kadu\AppData\LocalLow\Feven 1.1\DTFProxyToServerSect_bCrossriderApp0038524_p9424.dat, Quarantined, [bc91c7de017ad75f395ef8b520e258a8],
PUP.Optional.OMG.A, C:\Program Files (x86)\OMG Music!\Uninstall.exe, Quarantined, [ee5ffca97dfe56e0fe28ccf1020009f7],

Physical Sectors: 0
(No malicious items detected)


(end)
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Ter 29 Jul 2014, 23:55

Faça o download do < [Você precisa estar registrado e conectado para ver este link.] > < [Você precisa estar registrado e conectado para ver esta imagem.]> ( ... de Nicolas Coolman )

Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPDiag para baixá-lo, tal como mostra a imagem abaixo:

[Você precisa estar registrado e conectado para ver esta imagem.]

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

[Você precisa estar registrado e conectado para ver este link.]

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Qua 30 Jul 2014, 21:05

~ Relatório do ZHPDiag v2014.7.30.111 - Nicolas Coolman (30/07/2014)
~ Iniciado por kadu (30/07/2014 21:02:38)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Endereço do Webforum : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão : Versão atualizada.
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Deactivate by user


---\\ Navegadores Internet
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 7 Home Basic, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Softwares de proteçao do sistema
Malwarebytes Anti-Malware versão 2.0.2.1012
Windows Defender W7 (Deactivate)

---\\ Softwares d'optimização do sistema

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Flash Player 14 ActiveX
Adobe Reader X
Java 7 Update 45

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 4004 MB (77% free)
System Restore: Activé (Enable)
System drive C: has 525 GB (89%) free of 584 GB

---\\ Modo de conexão ao sistema
~ Computer Name: KADU-PC
~ User Name: kadu
~ All Users Names: kadu, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\kadu\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\kadu\AppData\Roaming\
~ %Desktop% : C:\Users\kadu\Desktop\
~ %Favorites% : C:\Users\kadu\Favorites\
~ %LocalAppData% : C:\Users\kadu\AppData\Local\
~ %StartMenu% : C:\Users\kadu\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 525 Go of 584 Go)
D: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) (.18/08/2011 - 10:50:48.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.14/07/2009 - 01:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.563C71A913CAC0C3DE5FFCD36EDB43A0] - (.Microsoft Corporation - Internet Extensions para Win32.) (.05/04/2013 - 01:00:30.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.21/11/2010 - 03:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/11/2010 - 03:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 03:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 01:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 23:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 03:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 03:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 03:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) (.13/07/2009 - 23:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 02:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 03:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.12/04/2013 - 14:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) (.14/07/2009 - 00:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 03:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 03:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.21/11/2010 - 03:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 2/730
~ Mes Videos (My Videos) : 1/7
~ Mes Favoris (My Favorites) : 1/4
~ Mes Documents (My Documents) : 3/324
~ Mon Bureau (My Desktop) : 2/1978
~ Menu demarrer (Programs) : 1/35
~ Hidden Files: Scanned in 00mn 05s



---\\ Processos lançados
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Users\kadu\AppData\Local\Google\Chrome\Application\chrome.exe [863184] [PID.2600]
[MD5.B3593D56E802DE2C61B755B85669B2B4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8083968] [PID.2380]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\kadu\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 16 Legitimates Filtered in 00mn 03s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files\mcafee\msc\npMcSnFFPl64.dll
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn] - (.GAS Tecnologia - Internet Banking Helper.) -- C:\Users\kadu\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll
P2 - FPN: [HKCU] [vitzo.com/VDownloader] - (.Vitzo - VDownloader browser plug-in.) -- C:\Program Files\VDownloader\Addons\npVDownloader.dll
~ Firefox Browser: 9 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Barras do Internet Explorer (03))
O3 - Toolbar: McAfee SiteAdvisor Toolbar - [HKLM]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [Public]: Google.lnk . (...) -- C:\Program Files (x86)\baidu\Spark26.5.9999.3313\Spark.exe (.not file.)
~ Global Startup: 1 Legitimates Filtered in 00mn 04s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [DellStage] . (.No owner - Dell Stage.) -- C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
O4 - HKLM\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_A68AA3A1C4170EFD8B4FE48A1B4FA91D] . (.Google Inc. - Google Chrome.) -- C:\Users\kadu\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - HKLM\..\Wow6432Node\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [mcpltui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1652419620-2839120189-1845671815-1000\..\Run: [GoogleChromeAutoLaunch_A68AA3A1C4170EFD8B4FE48A1B4FA91D] . (.Google Inc. - Google Chrome.) -- C:\Users\kadu\AppData\Local\Google\Chrome\Application\chrome.exe
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Chave orfã
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A6478C5C-DB65-44D2-9294-4C6CD21E9670}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DD0A1933-970D-4DDE-83D2-7F37E778961A}: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{A6478C5C-DB65-44D2-9294-4C6CD21E9670}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DD0A1933-970D-4DDE-83D2-7F37E778961A}: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{A6478C5C-DB65-44D2-9294-4C6CD21E9670}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DD0A1933-970D-4DDE-83D2-7F37E778961A}: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: PSafeLockBoxSvc (PSafeLockBoxSvc) . (.PSafe - PSafe CategoryFinder.) - C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe
O23 - Service: Baidu Spark Service (SparkSvc) . (...) - C:\Program Files (x86)\baidu\Spark26.5.9999.3313\sparkservice.exe (.not file.)
~ Services: 25 Legitimates Filtered in 00mn 06s



---\\ Tarefas planificadas automaticamente (039)
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [902]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000Core [1048]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000UA [1070]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000Core [1022]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000UA [1074]
~ Scheduled Task: 5 Legitimates Filtered in 00mn 00s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver: (360FltOEM) . (.360.cn - 360HipsOEM.) - C:\Windows\System32\DRIVERS\360FltOEM.sys
O41 - Driver: (Bfilter) . (. - .) - C:\Windows\system32\drivers\Bfilter.sys (.not file.)
O41 - Driver: (Bfmon) . (. - .) - C:\Windows\system32\drivers\Bfmon.sys (.not file.)
O41 - Driver: (Bnbase) . (. - .) - C:\Windows\System32\drivers\bnbasex64.sys (.not file.)
O41 - Driver: (Bndef) . (. - .) - C:\Windows\system32\drivers\bndef64.sys (.not file.)
O41 - Driver: (Bprotect) . (. - .) - C:\Windows\system32\drivers\Bprotect.sys (.not file.)
~ Drivers: 78 Legitimates Filtered in 00mn 15s



---\\ Software instalados (042)
O42 - Logiciel: Image Resizer Packages - (...) [HKCU][64Bits] -- Image Resizer Packages
O42 - Logiciel: Módulo de Proteção - Banco Santander (Brasil) S.A. - (...) [HKLM][64Bits] -- {83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1
O42 - Logiciel: allday savings - (.allday savings.) [HKLM][64Bits] -- D20A6820-7C28-4015-945F-09F8551FCE45
~ Logic: 10 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\38524InstEnd]
[HKCU\Software\Alterdata]
[HKCU\Software\Baidu Security]
[HKCU\Software\ContentExplorer] =>PUP.ContentExplorer
[HKCU\Software\GbAs]
[HKCU\Software\superdownloads.com.br]
[HKLM\Software\AllDaySavings ]
[HKLM\Software\Baidu Security]
[HKLM\Software\Wow6432Node\360Safe]
[HKLM\Software\Wow6432Node\Alterdata]
[HKLM\Software\Wow6432Node\Baidu Security]
[HKLM\Software\Wow6432Node\Baidu_Drp_pos]
[HKLM\Software\Wow6432Node\Deskmedia]
[HKLM\Software\Wow6432Node\VBMZ] =>PUP.Duuqu
~ Key Software: 277 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/05/2013 - 13:36:41 - [] ----D C:\Program Files (x86)\Alterdata
O43 - CFD: 07/11/2013 - 00:17:39 - [] ----D C:\Program Files (x86)\Baidu Security
O43 - CFD: 29/07/2014 - 23:39:19 - [] ----D C:\Program Files (x86)\D20A6820-7C28-4015-945F-09F8551FCE45
O43 - CFD: 24/06/2012 - 17:17:33 - [] ----D C:\Program Files (x86)\mstrgen
O43 - CFD: 15/06/2012 - 00:28:48 - [] ----D C:\Program Files (x86)\Oi
O43 - CFD: 19/05/2013 - 13:38:21 - [] ----D C:\ProgramData\Alterdata
O43 - CFD: 28/07/2014 - 19:54:35 - [] ----D C:\ProgramData\Baidu Security
O43 - CFD: 30/07/2014 - 19:18:10 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 14/06/2012 - 16:42:41 - [] ----D C:\ProgramData\Oi
O43 - CFD: 25/08/2013 - 15:22:23 - [] ----D C:\Users\kadu\AppData\Roaming\Baidu Security
~ Program Folder: 214 Legitimates Filtered in 00mn 02s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.E08FA8D93287F02832E8DCE672D00DCD] - 28/07/2014 - 21:09:58 ---A- . (...) -- C:\zoek-results2014-07-28-210958.log [1292]
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 28/07/2014 - 21:55:53 ---A- . (...) -- C:\Windows\zoek-delete.exe [24064]
O44 - LFC:[MD5.F2C90086AA068AA6181F78E64C5091D3] - 28/07/2014 - 22:22:49 ---A- . (...) -- C:\zoek-results.log [28058]
O44 - LFC:[MD5.0B09957E126AA28B63BA4D7D58AD835C] - 30/07/2014 - 19:20:58 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [146578]
O44 - LFC:[MD5.5F15C02135769E29C19462E661F95C7A] - 30/07/2014 - 19:20:58 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [703792]
O44 - LFC:[MD5.77BF70BC1CF204350B7E8AEF5EB22620] - 30/07/2014 - 19:23:14 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [21072]
O44 - LFC:[MD5.77BF70BC1CF204350B7E8AEF5EB22620] - 30/07/2014 - 19:23:14 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [21072]
O44 - LFC:[MD5.958515377B4A101DACCDD2F512320708] - 30/07/2014 - 20:54:14 ---A- . (...) -- C:\Windows\ntbtlog.txt [344278]
~ Files: 19 Legitimates Filtered in 00mn 06s



---\\ Chave do registo Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{a9ea35fd-cc55-11e3-8d1c-3859f93ea79f}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{c2b5c1f6-7f69-11e3-9c1f-3859f93ea7a0}\AutoRun\command. (...) -- E:\AutoRun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enumeração das chaves do registo StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\PSafeSysTray [Key] . (.PSafe - PSafe System Tray.) -- C:\Program Files (x86)\PSafe\PSafeSysTray.exe
O53 - SMSR:HKLM\...\startupreg\VDownloader [Key] . (.Vitzo - VDownloader.) -- C:\Program Files\VDownloader\VDownloader.exe
~ SMSR Keys: 4 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 20 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:01/06/2012 - 00:21:04 R--A- . (.360.cn - 360HipsOEM.) -- C:\Windows\System32\Drivers\360FltOEM.sys [289952]
O58 - SDL:27/05/2014 - 06:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) -- C:\Windows\System32\Drivers\Bnbasex.sys [91616]
O58 - SDL:13/06/2014 - 02:11:05 ---A- . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) -- C:\Windows\System32\Drivers\Bndef.sys [70912]
O58 - SDL:14/07/2009 - 01:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:10/06/2009 - 20:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:14/07/2009 - 01:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:17/03/2011 - 11:14:56 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [521728]
~ Drivers: 82 Legitimates Filtered in 00mn 04s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Lista dos serviços Legacy du registo (064)
~ Legacy: 96 Legitimates Filtered in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (...) -- C:\Program Files (x86)\baidu\Spark26.5.9999.3313\Spark.exe
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\baidu\Spark26.5.9999.3313\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\kadu\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\baidu\Spark\Spark.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] Web - (Web) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} [DefaultScope] - (Google) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.49B3DA8940D357F6280D0990BFD5FD5E] [SPRF][20/06/2014] (...) -- C:\Users\kadu\AppData\Roaming\unins000.dat [28265]
[MD5.C14FC68CD6B89313DA3266210BC73B1F] [SPRF][17/07/2014] (.The GIMP Team - GIMP Setup.) -- C:\Users\kadu\Desktop\156-gimp-2.8.10-setup.exe [90396104]
[MD5.7F169C8147AE10858DCEADF85BB7EE13] [SPRF][22/07/2014] (...) -- C:\Users\kadu\Desktop\chromeinstall-7u65.exe [918952]
[MD5.72B60F86C1884AD204651AFEE610819A] [SPRF][09/07/2003] (.WebEx - atgpcdec.) -- C:\Windows\Downloaded Program Files\atgpcdec.dll [13824]
[MD5.87E35CD9C855F2C345C685C02DA55489] [SPRF][08/09/2003] (.Webex - atgpcext.) -- C:\Windows\Downloaded Program Files\atgpcext.dll [94208]
[MD5.AC0952DE18DF659E1A9EE0D43F383AC6] [SPRF][09/07/2003] (.No owner - Download manager.) -- C:\Windows\Downloaded Program Files\ieatgpc.dll [62464]
~ Files: 10 Legitimates Filtered in 00mn 03s



---\\ Listagem dos dados da chave NameSpace (MNS) (O92)
O92 - MNS: PSafe LockBox - {35B6525E-071A-4EA9-B3BD-F6A742572F08}
~ MNS: 1 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.A43D98F5A2B54F22C2B8191CBF27B438] [WIS][07/03/2014] (.SaveSense - Google Update Helper.) -- C:\Windows\Installer\802a2.msi [40960] =>PUP.SaveSense
~ WIS: 1 Legitimates Filtered in 00mn 05s



---\\ Search Tracing Registry Key (O100)
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\ContentExplorer_RASAPI32 =>PUP.ContentExplorer
HKLM\SOFTWARE\Microsoft\Tracing\ContentExplorer_RASMANCS =>PUP.ContentExplorer
HKLM\SOFTWARE\Microsoft\Tracing\InstTracker_RASAPI32 =>Adware.PredictAd
HKLM\SOFTWARE\Microsoft\Tracing\InstTracker_RASMANCS =>Adware.PredictAd
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Feven 1_RASAPI32 =>PUP.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Feven 1_RASMANCS =>PUP.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LollipopInstaller_RASAPI32 =>Adware.Lollipop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LollipopInstaller_RASMANCS =>Adware.Lollipop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Plus-HD-3_RASAPI32 =>Adware.PlusHD
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Plus-HD-3_RASMANCS =>Adware.PlusHD
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\vbmz_RASAPI32 =>PUP.Duuqu
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\vbmz_RASMANCS =>PUP.Duuqu
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\visualbee-bg_RASAPI32 =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\visualbee-bg_RASMANCS =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-codedownloader_RASAPI32 =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-codedownloader_RASMANCS =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-updater_RASAPI32 =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-updater_RASMANCS =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VOPackage_RASAPI32 =>Adware.Downware
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VOPackage_RASMANCS =>Adware.Downware
~ BTK: 500 Legitimates Filtered in 00mn 01s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 08/07/2014 262320 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 03/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe
SS - | Disabled 10/07/1658 0 | (Alterdata Updater) . (...) - C:\Program Files (x86)\Alterdata\Updater\bin\AlterdataAutoUpdate.exe =>PUP.CrossRider
SS - | Auto 16/02/2011 135168 | (Atheros Bt&Wlan Coex Agent) . (.Atheros.) - C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe
SS - | Auto 31/03/2011 77984 | (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
SS - | Auto 18/05/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SS - | Auto 30/07/2013 328928 | (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SS - | Auto 12/05/2014 1809720 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - | Auto 12/05/2014 860472 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SS - | Auto 31/08/2012 201304 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SS - | Auto 25/04/2014 178528 | (McAPExe) . (.McAfee, Inc..) - C:\Program Files\McAfee\MSC\McAPexe.exe
SS - | Demand 08/03/2011 224704 | (McAWFwk) . (.McAfee, Inc..) - C:\Program Files\mcafee\msc\McAWFwk.exe
SS - | Auto 30/07/2013 328928 | (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SS - | Demand 02/08/2013 602944 | (McODS) . (.McAfee, Inc..) - C:\Program Files\mcafee\VirusScan\mcods.exe
SS - | Disabled 31/08/2012 201304 | (McOobeSv) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SS - | Auto 30/07/2013 328928 | (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SS - | Auto 30/07/2013 328928 | (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SS - | Auto 09/04/2014 4357488 | (NOBU) . (.Dell, Inc..) - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
SS - | Auto 27/03/2014 581568 | (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
SS - | Auto 10/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SS - | Auto 10/07/1658 0 | (PnkBstrB) . (...) - C:\Windows\system32\PnkBstrB.exe
SS - | Auto 17/09/2012 1279240 | (PSafeLockBoxSvc) . (.PSafe.) - C:\Program Files (x86)\PSafe\PSafeCategoryFinder.exe
SS - | Demand 17/09/2012 1599752 | (PSafeSVC) . (.PSafe S/A.) - C:\Program Files (x86)\PSafe\PSafesvc.exe
SS - | Demand 17/09/2012 250632 | (PSafeWD) . (.PSafe.) - C:\Program Files (x86)\PSafe\PSafeWD.exe
SS - | Demand 25/11/2010 1116656 | (RoxMediaDB12OEM) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
SS - | Auto 25/11/2010 219632 | (RoxWatch12) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
SS - | Auto 18/08/2011 1692480 | (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
SS - | Auto 01/03/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Auto 10/07/1658 0 | (SparkSvc) . (...) - C:\Program Files (x86)\baidu\Spark26.5.9999.3313\sparkservice.exe
SS - | Demand 10/07/1658 0 | (SparkUpdater) . (...) - C:\Program Files (x86)\Baidu\SparkUpdate\Sparkupdate.exe
SS - | Auto 17/03/2011 297984 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SS - | Demand 08/11/2010 74392 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Disabled 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 30/07/2013 328928 | (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 30/07/2013 328928 | (mcpltsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 18/03/2014 1041192 | (mfecore) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
SR - | Auto 03/04/2014 219752 | (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
SR - | Auto 03/04/2014 189912 | (mfevtp) . (.McAfee, Inc..) - C:\Windows\system32\mfevtps.exe
~ Services: Scanned in 00mn 21s



---\\ Scâner Aditional (088)
Database Version : 13026 - (30/07/2014)
Clés trouvées (Keys found) : 4
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 2

[HKLM\Software\Wow6432Node\VBMZ] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKLM\Software\Wow6432Node\360Safe] =>Trojan.Lozavita
[HKCU\Software\ContentExplorer] =>PUP.ContentExplorer^
C:\Windows\Installer\802a2.msi =>PUP.SaveSense^
~ Additionnel Scan: 296288 Items scanned in 01mn 08s



---\\ Informações complémentaires do módulos
~ [Você precisa estar registrado e conectado para ver este link.] =>.Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
~ [Você precisa estar registrado e conectado para ver este link.] =>.Internet Explorer, Gestão do Proxy (R5)
~ [Você precisa estar registrado e conectado para ver este link.] =>.Barras do Internet Explorer (03))
~ [Você precisa estar registrado e conectado para ver este link.] =>.Aplicações iniciadas por registo & pastas (04)
~ [Você precisa estar registrado e conectado para ver este link.] =>.Chave do registo Shell MountPoints2 (MPKS) (O51)
~ AMI: 5 Legitimates Filtered in 00mn 00s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.] =>PUP.ContentExplorer
[Você precisa estar registrado e conectado para ver este link.] =>PUP.Duuqu
[Você precisa estar registrado e conectado para ver este link.] =>PUP.SaveSense
[Você precisa estar registrado e conectado para ver este link.] =>PUP.MyPCBackup
[Você precisa estar registrado e conectado para ver este link.] =>Adware.PredictAd
[Você precisa estar registrado e conectado para ver este link.] =>PUP.CrossRider
[Você precisa estar registrado e conectado para ver este link.] =>Adware.Lollipop
[Você precisa estar registrado e conectado para ver este link.] =>Adware.PlusHD
[Você precisa estar registrado e conectado para ver este link.] =>Adware.VisualBeeToolbar
[Você precisa estar registrado e conectado para ver este link.] =>Adware.Downware
[Você precisa estar registrado e conectado para ver este link.] =>Toolbar.Conduit
[Você precisa estar registrado e conectado para ver este link.] =>PUP.Tarma
[Você precisa estar registrado e conectado para ver este link.] =>Trojan.Lozavita
~ MSI: 13 link(s) detected in 00mn 00s



~ 893 Legitimates filtered by white list
End of the scan (526 lines in 02mn 57s)(0)
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Qui 31 Jul 2014, 16:34

 Há programas desnecessários iniciando junto com o Windows, o que torna o seu PC mais lento. Para corrigir isto, siga as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

De preferência deixe apenas os programas de segurança (anti-vírus/anti-spywares/firewall) iniciarem junto com o Windows.

Use também o programa Ccleaner, indicado neste tutorial acima, para fazer uma limpeza e otimização do PC.
______________________________________________________________________________________

 Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta.


Última edição por Power Max em Qua 13 Ago 2014, 10:31, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Qui 31 Jul 2014, 18:54

Rapport de ZHPFix 2014.7.27.5 par Nicolas Coolman, Update du 27/07/2014
Fichier d'export Registre :
Run by kadu at 31/07/2014 18:55:55
High Elevated Privileges : OK
Windows 7 Home Basic Edition, 64-bit Service Pack 1 (Build 7601)

Reciclagem vazia (00mn 05s)
Reparação de atalhos do navegador

========== Chaves do Registo ==========
ELIMINÉ: Service: PSafeLockBoxSvc
ELIMINÉ: Service: SparkSvc
ELIMINÉ Driver Key: Bfilter
ELIMINÉ Driver Key: Bfmon
ELIMINÉ Driver Key: Bnbase
ELIMINÉ Driver Key: Bndef
ELIMINÉ Driver Key: Bprotect
ELIMINÉ: HKCU\Software\Baidu Security
ELIMINÉ: HKCU\Software\ContentExplorer
ELIMINÉ:* HKLM\Software\AllDaySavings
ELIMINÉ:* HKLM\Software\Baidu Security
ELIMINÉ: HKLM\Software\Wow6432Node\360Safe
ELIMINÉ: HKLM\Software\Wow6432Node\Baidu_Drp_pos
ELIMINÉ: HKLM\Software\Wow6432Node\VBMZ
ELIMINÉ:* StartupReg: PSafeSysTray
ELIMINÉ:* CLSID NameSpace: {35B6525E-071A-4EA9-B3BD-F6A742572F08}
ELIMINÉ: [HKLM\SOFTWARE\Classes\CLSID\{35B6525E-071A-4EA9-B3BD-F6A742572F08}]
ELIMINÉ:* HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32
ELIMINÉ:* HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
ELIMINÉ:* HKLM\SOFTWARE\Microsoft\Tracing\ContentExplorer_RASAPI32
ELIMINÉ:* HKLM\SOFTWARE\Microsoft\Tracing\ContentExplorer_RASMANCS
ELIMINÉ:* HKLM\SOFTWARE\Microsoft\Tracing\InstTracker_RASAPI32
ELIMINÉ:* HKLM\SOFTWARE\Microsoft\Tracing\InstTracker_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Feven 1_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Feven 1_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LollipopInstaller_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LollipopInstaller_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Plus-HD-3_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Plus-HD-3_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\vbmz_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\vbmz_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\visualbee-bg_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\visualbee-bg_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-codedownloader_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-codedownloader_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-updater_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBee-updater_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VOPackage_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VOPackage_RASMANCS
ELIMINÉ: Service: Alterdata Updater
ELIMINÉ: Service: PSafeSVC
ELIMINÉ: Service: PSafeWD
ELIMINÉ: Service: SparkUpdater
ELIMINÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
ELIMINÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINÉ: c:\users\public\desktop\google.lnk
ELIMINA REINICIAR: c:\program files (x86)\psafe\psafecategoryfinder.exe
ELIMINÉ: c:\program files (x86)\psafe\psafesystray.exe
ELIMINA REINICIAR: c:\windows\system32\drivers\bnbasex.sys
ELIMINA REINICIAR: c:\windows\system32\drivers\bndef.sys
ELIMINÉ: C:\Windows\Installer\802a2.msi
ELIMINÉ Temporários windows (5) (1.070 octets)
ELIMINÉ Flash Cookies (0) (0 octets)

========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso


========== Recapitulativo ==========
45 : Chaves do Registo
1 : Pastas
8 : Ficheiros
1 : Restauração Sistema


End of clean in 02mn 13s

========== Caminho do ficheiro do relatório ==========
C:\Users\kadu\AppData\Roaming\ZHP\ZHPFix[R1].txt - 31/07/2014 18:56:01 [3854]
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Qui 31 Jul 2014, 20:03

Reinicie o PC.

Depois de ter reiniciado o PC, faça o seguinte :

 Abra novamente o ( ZHPDiag )

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique "SEARCH" ou "PESQUISAR" e aguarde a conclusão.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique OK e, ao concluir, poste o relatório ZHPDiag.txt

[Você precisa estar registrado e conectado para ver esta imagem.]

Obs : como estou acessando pelo celular, amanhã te passo o próximo procedimento.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Sex 01 Ago 2014, 17:06

~ Relatório do ZHPDiag v2014.7.30.111 - Nicolas Coolman (30/07/2014)
~ Iniciado por kadu (01/08/2014 17:01:43)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Endereço do Webforum : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão : Versão atualizada.
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Deactivate by user


---\\ Navegadores Internet
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 7 Home Basic, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Softwares de proteçao do sistema
Malwarebytes Anti-Malware versão 2.0.2.1012
Windows Defender W7 (Deactivate)

---\\ Softwares d'optimização do sistema
CCleaner v4.16

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Flash Player 14 ActiveX
Adobe Reader X
Java 7 Update 45

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4004 MB (61% free)
System Restore: Activé (Enable)
System drive C: has 525 GB (89%) free of 584 GB

---\\ Modo de conexão ao sistema
~ Computer Name: KADU-PC
~ User Name: kadu
~ All Users Names: kadu, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\kadu\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\kadu\AppData\Roaming\
~ %Desktop% : C:\Users\kadu\Desktop\
~ %Favorites% : C:\Users\kadu\Favorites\
~ %LocalAppData% : C:\Users\kadu\AppData\Local\
~ %StartMenu% : C:\Users\kadu\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 525 Go of 584 Go)
D: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) (.18/08/2011 - 10:50:48.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.14/07/2009 - 01:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.563C71A913CAC0C3DE5FFCD36EDB43A0] - (.Microsoft Corporation - Internet Extensions para Win32.) (.05/04/2013 - 01:00:30.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.21/11/2010 - 03:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/11/2010 - 03:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 03:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 01:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 23:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 03:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 03:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 03:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) (.13/07/2009 - 23:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 02:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 03:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.12/04/2013 - 14:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) (.14/07/2009 - 00:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 03:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 03:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.21/11/2010 - 03:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 02s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 2/730
~ Mes Videos (My Videos) : 1/7
~ Mes Favoris (My Favorites) : 1/4
~ Mes Documents (My Documents) : 3/320
~ Mon Bureau (My Desktop) : 2/1979
~ Menu demarrer (Programs) : 1/35
~ Hidden Files: Scanned in 00mn 07s



---\\ Processos lançados
[MD5.4FBC630768570E6AC35C3DE8F6EC79F5] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [6970168] [PID.3304]
[MD5.EBDD3032297EF6832A1D6D3AA6DC3537] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.exe [4259648] [PID.2196]
[MD5.CD4F7B90CB09831BCDEDE0A206CCDB35] - (.No owner - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.exe [2751808] [PID.4020]
[MD5.09890A2F032B138A74B5DF2C1233FB1D] - (.SoftThinks - Dell - DataSafe Update Launcher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe [460096] [PID.4024]
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Users\kadu\AppData\Local\Google\Chrome\Application\chrome.exe [863184] [PID.1164]
[MD5.B3593D56E802DE2C61B755B85669B2B4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8083968] [PID.6580]
[MD5.833095B04EC9FB2A9E6F7C1F8D45058D] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe [135168] [PID.1568]
[MD5.5AB58C337AC65837FE404462AD6265AB] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.1768]
[MD5.D84AEA3F3329D622DFC1297DDDF6163B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720] [PID.1808]
[MD5.4F45ED469906494F9BF754E476390DBD] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472] [PID.1916]
[MD5.B3E5887095F1DE8737DA3441D29F60E4] - (.RealNetworks, Inc. - Online Games Manager.) -- C:\Program Files (x86)\Online Games Manager\ogmservice.exe [581568] [PID.1192]
[MD5.831883B107684301F48ACE752C963984] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [66872] [PID.1516]
[MD5.E24106A5EAECDDFF00B25497049DD65F] - (...) -- C:\Windows\SysWOW64\PnkBstrB.exe [107832] [PID.1580]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\rundll32.exe [0] [PID.596]
[MD5.74EC60E20516AAA573BE74F31175270F] - (.SoftThinks SAS - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe [1692480] [PID.2120]
[MD5.875B04A71869D34A415CC8B4D4673EC4] - (.Skype Technologies - Skype Updater Service.) -- C:\Program Files (x86)\Skype\Updater\Updater.exe [161384] [PID.2144]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\kadu\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 16 Legitimates Filtered in 00mn 02s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files\mcafee\msc\npMcSnFFPl64.dll
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn] - (.GAS Tecnologia - Internet Banking Helper.) -- C:\Users\kadu\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll
P2 - FPN: [HKCU] [vitzo.com/VDownloader] - (.Vitzo - VDownloader browser plug-in.) -- C:\Program Files\VDownloader\Addons\npVDownloader.dll
~ Firefox Browser: 9 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Barras do Internet Explorer (03))
O3 - Toolbar: McAfee SiteAdvisor Toolbar - [HKLM]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [DellStage] . (.No owner - Dell Stage.) -- C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
O4 - HKLM\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [mcpltui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Chave orfã
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A6478C5C-DB65-44D2-9294-4C6CD21E9670}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DD0A1933-970D-4DDE-83D2-7F37E778961A}: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{A6478C5C-DB65-44D2-9294-4C6CD21E9670}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DD0A1933-970D-4DDE-83D2-7F37E778961A}: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{A6478C5C-DB65-44D2-9294-4C6CD21E9670}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DD0A1933-970D-4DDE-83D2-7F37E778961A}: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Tarefas planificadas automaticamente (039)
[MD5.00000000000000000000000000000000] [APT] [SparkUpdater] (...) -- C:\Program Files (x86)\baidu\Spark26.5.9999.3313\SparkUpdate.exe (.not file.) [0]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [902]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000Core [1048]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000UA [1070]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000Core [1022]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1652419620-2839120189-1845671815-1000UA [1074]
~ Scheduled Task: 18 Legitimates Filtered in 00mn 08s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver: (360FltOEM) . (.360.cn - 360HipsOEM.) - C:\Windows\System32\DRIVERS\360FltOEM.sys
~ Drivers: 63 Legitimates Filtered in 00mn 00s



---\\ Software instalados (042)
O42 - Logiciel: Image Resizer Packages - (...) [HKCU][64Bits] -- Image Resizer Packages
O42 - Logiciel: Módulo de Proteção - Banco Santander (Brasil) S.A. - (...) [HKLM][64Bits] -- {83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1
O42 - Logiciel: allday savings - (.allday savings.) [HKLM][64Bits] -- D20A6820-7C28-4015-945F-09F8551FCE45
~ Logic: 10 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\38524InstEnd]
[HKCU\Software\Alterdata]
[HKCU\Software\GbAs]
[HKCU\Software\superdownloads.com.br]
[HKLM\Software\Wow6432Node\Alterdata]
[HKLM\Software\Wow6432Node\Deskmedia]
~ Key Software: 274 Legitimates Filtered in 00mn 00s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/05/2013 - 13:36:41 - [] ----D C:\Program Files (x86)\Alterdata
O43 - CFD: 24/06/2012 - 17:17:33 - [] ----D C:\Program Files (x86)\mstrgen
O43 - CFD: 15/06/2012 - 00:28:48 - [] ----D C:\Program Files (x86)\Oi
O43 - CFD: 19/05/2013 - 13:38:21 - [] ----D C:\ProgramData\Alterdata
O43 - CFD: 01/08/2014 - 17:02:25 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 14/06/2012 - 16:42:41 - [] ----D C:\ProgramData\Oi
~ Program Folder: 210 Legitimates Filtered in 00mn 03s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.45642282153093670076674B752DD91E] - 01/08/2014 - 16:59:36 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [142308]
O44 - LFC:[MD5.BA41DAD4DAB3EFD75804A5D4D5563523] - 01/08/2014 - 16:59:36 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [699330]
O44 - LFC:[MD5.E08FA8D93287F02832E8DCE672D00DCD] - 28/07/2014 - 21:09:58 ---A- . (...) -- C:\zoek-results2014-07-28-210958.log [1292]
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 28/07/2014 - 21:55:53 ---A- . (...) -- C:\Windows\zoek-delete.exe [24064]
O44 - LFC:[MD5.F2C90086AA068AA6181F78E64C5091D3] - 28/07/2014 - 22:22:49 ---A- . (...) -- C:\zoek-results.log [28058]
O44 - LFC:[MD5.B8D50CF66064B51EC0832FD2B9A9BC65] - 31/07/2014 - 18:44:22 ---A- . (...) -- C:\Windows\wininit.ini [114]
~ Files: 17 Legitimates Filtered in 00mn 18s



---\\ Chave do registo Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{a9ea35fd-cc55-11e3-8d1c-3859f93ea79f}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{c2b5c1f6-7f69-11e3-9c1f-3859f93ea7a0}\AutoRun\command. (...) -- E:\AutoRun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enumeração das chaves do registo StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\VDownloader [Key] . (.Vitzo - VDownloader.) -- C:\Program Files\VDownloader\VDownloader.exe
~ SMSR Keys: 4 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 20 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:01/06/2012 - 00:21:04 R--A- . (.360.cn - 360HipsOEM.) -- C:\Windows\System32\Drivers\360FltOEM.sys [289952]
O58 - SDL:27/05/2014 - 06:19:38 ---A- . (.Baidu, Inc. - Baidu Antivirus NetBase Driver.) -- C:\Windows\System32\Drivers\Bnbasex.sys [91616]
O58 - SDL:13/06/2014 - 02:11:05 ---A- . (.Baidu, Inc. - Baidu Antivirus NetDefense Driver.) -- C:\Windows\System32\Drivers\Bndef.sys [70912]
O58 - SDL:14/07/2009 - 01:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:10/06/2009 - 20:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:14/07/2009 - 01:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:17/03/2011 - 11:14:56 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [521728]
~ Drivers: 82 Legitimates Filtered in 00mn 07s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Lista dos serviços Legacy du registo (064)
O64 - Services: CurCS - 01/06/2012 - C:\Windows\System32\DRIVERS\360FltOEM.sys (360FltOEM) .(.360.cn - 360HipsOEM.) - LEGACY_360FLTOEM
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Legacy: 97 Legitimates Filtered in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (...) -- C:\Program Files (x86)\baidu\Spark26.5.9999.3313\Spark.exe
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\baidu\Spark26.5.9999.3313\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\kadu\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\baidu\Spark\Spark.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] Web - (Web) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} [DefaultScope] - (Google) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.49B3DA8940D357F6280D0990BFD5FD5E] [SPRF][20/06/2014] (...) -- C:\Users\kadu\AppData\Roaming\unins000.dat [28265]
[MD5.C14FC68CD6B89313DA3266210BC73B1F] [SPRF][17/07/2014] (.The GIMP Team - GIMP Setup.) -- C:\Users\kadu\Desktop\156-gimp-2.8.10-setup.exe [90396104]
[MD5.7F169C8147AE10858DCEADF85BB7EE13] [SPRF][22/07/2014] (...) -- C:\Users\kadu\Desktop\chromeinstall-7u65.exe [918952]
[MD5.72B60F86C1884AD204651AFEE610819A] [SPRF][09/07/2003] (.WebEx - atgpcdec.) -- C:\Windows\Downloaded Program Files\atgpcdec.dll [13824]
[MD5.87E35CD9C855F2C345C685C02DA55489] [SPRF][08/09/2003] (.Webex - atgpcext.) -- C:\Windows\Downloaded Program Files\atgpcext.dll [94208]
[MD5.AC0952DE18DF659E1A9EE0D43F383AC6] [SPRF][09/07/2003] (.No owner - Download manager.) -- C:\Windows\Downloaded Program Files\ieatgpc.dll [62464]
~ Files: 10 Legitimates Filtered in 00mn 04s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 08/07/2014 262320 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 03/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SS - | Demand 08/03/2011 224704 | (McAWFwk) . (.McAfee, Inc..) - C:\Program Files\mcafee\msc\McAWFwk.exe
SS - | Demand 02/08/2013 602944 | (McODS) . (.McAfee, Inc..) - C:\Program Files\mcafee\VirusScan\mcods.exe
SS - | Disabled 31/08/2012 201304 | (McOobeSv) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SS - | Demand 25/11/2010 1116656 | (RoxMediaDB12OEM) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
SS - | Auto 25/11/2010 219632 | (RoxWatch12) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
SS - | Auto 01/03/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 08/11/2010 74392 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Disabled 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 16/02/2011 135168 | (Atheros Bt&Wlan Coex Agent) . (.Atheros.) - C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe
SR - | Auto 31/03/2011 77984 | (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
SR - | Auto 18/05/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - | Auto 30/07/2013 328928 | (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 12/05/2014 1809720 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
SR - | Auto 12/05/2014 860472 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SR - | Auto 31/08/2012 201304 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 25/04/2014 178528 | (McAPExe) . (.McAfee, Inc..) - C:\Program Files\McAfee\MSC\McAPexe.exe
SR - | Auto 30/07/2013 328928 | (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 30/07/2013 328928 | (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 30/07/2013 328928 | (mcpltsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 30/07/2013 328928 | (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 18/03/2014 1041192 | (mfecore) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
SR - | Auto 03/04/2014 219752 | (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
SR - | Auto 03/04/2014 189912 | (mfevtp) . (.McAfee, Inc..) - C:\Windows\system32\mfevtps.exe
SR - | Auto 30/07/2013 328928 | (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 09/04/2014 4357488 | (NOBU) . (.Dell, Inc..) - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
SR - | Auto 27/03/2014 581568 | (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
SR - | Auto 10/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto 10/07/1658 0 | (PnkBstrB) . (...) - C:\Windows\system32\PnkBstrB.exe
SR - | Auto 18/08/2011 1692480 | (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
SR - | Auto 17/03/2011 297984 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
~ Services: Scanned in 00mn 14s



---\\ Scâner Aditional (088)
Database Version : 13026 - (30/07/2014)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0

~ Additionnel Scan: 295808 Items scanned in 01mn 04s



---\\ Informações complémentaires do módulos
~ [Você precisa estar registrado e conectado para ver este link.] =>.Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
~ [Você precisa estar registrado e conectado para ver este link.] =>.Internet Explorer, Gestão do Proxy (R5)
~ [Você precisa estar registrado e conectado para ver este link.] =>.Barras do Internet Explorer (03))
~ [Você precisa estar registrado e conectado para ver este link.] =>.Aplicações iniciadas por registo & pastas (04)
~ [Você precisa estar registrado e conectado para ver este link.] =>.Chave do registo Shell MountPoints2 (MPKS) (O51)
~ AMI: 5 Legitimates Filtered in 00mn 00s



~ 880 Legitimates filtered by white list
End of the scan (440 lines in 03mn 46s)(0)
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Sab 02 Ago 2014, 09:07

 Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta.


Última edição por Power Max em Qua 13 Ago 2014, 10:30, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Ter 05 Ago 2014, 20:08

Rapport de ZHPFix 2014.7.27.5 par Nicolas Coolman, Update du 27/07/2014
Fichier d'export Registre :
Run by kadu at 05/08/2014 20:09:52
High Elevated Privileges : OK
Windows 7 Home Basic Edition, 64-bit Service Pack 1 (Build 7601)

Reciclagem vazia (00mn 04s)
Reparação de atalhos do navegador

========== Estado dos serviços ==========
360FLTOEM Parado

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINA REINICIAR: c:\windows\system32\drivers\bnbasex.sys
ELIMINA REINICIAR: c:\windows\system32\drivers\bndef.sys
ELIMINÉ Temporários windows (12) (5.590 octets)
ELIMINÉ Flash Cookies (0) (0 octets)

========== Tarefa planificada ==========
ELIMINÉ: SparkUpdater
ELIMINÉ: SparkUpdater

========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso


========== Recapitulativo ==========
1 : Pastas
4 : Ficheiros
1 : Estado dos serviços
2 : Tarefa planificada
1 : Restauração Sistema


End of clean in 01mn 06s

========== Caminho do ficheiro do relatório ==========
C:\Users\kadu\AppData\Roaming\ZHP\ZHPFix[R1].txt - 31/07/2014 18:56:01 [3933]
C:\Users\kadu\AppData\Roaming\ZHP\ZHPFix[R2].txt - 05/08/2014 20:09:57 [1175]
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Ter 05 Ago 2014, 22:54

Como está o PC?

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Camilinha_B em Qua 06 Ago 2014, 20:32

O PC está bem mais rápido e a solicitação do Certificado CE_UmbrellaCert não aparece mais    
avatar
Camilinha_B
Iniciante
Iniciante

Mensagens : 11
Reputação : 2
Data de inscrição : 27/07/2014

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Qua 06 Ago 2014, 20:34

isso aí!  Fico feliz que o problema tenha sido resolvido.

 Só para finalizar siga estes tutoriais abaixo, por gentileza:

[Você precisa estar registrado e conectado para ver este link.]

[Você precisa estar registrado e conectado para ver este link.]
_______________________________________________________________________________________________________________________

 Para remover os programas usados na limpeza deste PC e criar um novo ponto de restauração seguro e sem problemas, utilize o DelFix seguindo as dicas [Você precisa estar registrado e conectado para ver este link.].
_______________________________________________________________________________________________________________________

 Foi um prazer ajudar. Conte sempre conosco!

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Power Max em Qua 13 Ago 2014, 10:32

CASO RESOLVIDO

Caso a autora do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Você precisa estar registrado e conectado para ver este link.] solicitando o desbloqueio.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Certificado CE_UmbrellaCert

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Ver o tópico anterior Ver o tópico seguinte Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum