Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.
Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14807 usuários registrados
O último membro registrado é Costa24

Os nossos membros postaram um total de 36044 mensagens em 3685 assuntos
Últimos assuntos
» Problema no disco rígido do Windows 11
por Costa24 Hoje à(s) 10:19

Quem está conectado?
20 usuários online :: 0 registrados, 0 invisíveis e 20 visitantes

Nenhum

O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
 
 

Resultados por:
 


Rechercher Pesquisa avançada

março 2024
SegTerQuaQuiSexSábDom
    123
45678910
11121314151617
18192021222324
25262728293031

Calendário Calendário


wpennybeed.exe Erro de aplicação

2 participantes

Página 1 de 2 1, 2  Seguinte

Ir para baixo

wpennybeed.exe  Erro de aplicação Empty wpennybeed.exe Erro de aplicação

Mensagem por Euvk Dom 24 Ago 2014, 14:52

Olá,bons dias a todos

Começou a aparecer no meu pc a seguinte mensagem

A instrução no 0x0040f411 fez referencia a memoria no 0x00000001. A memoria não pode ser read.
Clique em ok para terminar o programa
Clique em cancelar para depurar o programa

Alguem me pode ajudar/explicar a eliminar este aborrecido popup??

Desde já o meu obrigado
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Dom 24 Ago 2014, 17:08

Olá.

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Dom 24 Ago 2014, 19:16

Ola Poderoso Max
Obrigado pela atenção,antes de fazer o que me pede,pode-me explicar a que se deve esse erro?
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Dom 24 Ago 2014, 19:26

Este arquivo que está causando o erro pertence ao PennyBee, que é um adware. E o AdwCleaner é um programa usado para remover adwares.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Seg 25 Ago 2014, 18:16

Ola de novo,depois de correr o Adwcleaner,a mensagem deixou de aparecer,possivelmente resultou

Deixo o relatorio,como me foi pedido
Aguardo.....

# AdwCleaner v3.308 - Report created 25/08/2014 at 21:58:41
# Updated 20/08/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : user - 35EE44FD754F4AA
# Running from : C:\Documents and Settings\user\Os meus documentos\Downloads\AdwCleaner (2).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[!] Folder Deleted : C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Documents and Settings\All Users\Menu Iniciar\Programas\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Documents and Settings\user\Menu Iniciar\Programas\Internet Explorer.lnk
Shortcut Disinfected : C:\Documents and Settings\user\Menu Iniciar\Programas\Pesquisa do Google.lnk
Shortcut Disinfected : C:\Documents and Settings\user\Menu Iniciar\Programas\Acessórios\Ferramentas do Sistema\Internet Explorer (Sem Suplementos).lnk
Shortcut Disinfected : C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Pesquisa do Google.lnk

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ocr@babylon.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic
Key Deleted : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bgnnidmnbdkmhfkjgdnngciimpdgohok
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hidjnkeodmholilgafgdlgmgggbhnigl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Key Deleted : HKCU\Software\Microsoft\Office\Powerpoint\Addins\babylonofficeaddin.officeaddin
Key Deleted : HKCU\Software\Microsoft\Office\Word\Addins\babylonofficeaddin.officeaddin
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\FilesFrog Update Checker
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\.bdc
Key Deleted : HKLM\SOFTWARE\Classes\.bgl
Key Deleted : HKLM\SOFTWARE\Classes\.bof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\BabyDict
Key Deleted : HKLM\SOFTWARE\Classes\BabyGloss
Key Deleted : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Key Deleted : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Key Deleted : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Key Deleted : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Key Deleted : HKLM\SOFTWARE\Classes\BabyOptFile
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\f
Key Deleted : HKLM\SOFTWARE\Classes\MoviesToolbarHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\MoviesToolbarHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO
Key Deleted : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Key Deleted : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033036.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033036.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033036.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033036.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2434356
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2727622
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE69C007-C452-4D3E-86D2-1730DF8BC871}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{140AFDC9-061F-4B86-8C58-42994309768F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF971472-C32D-44B6-905C-4D93708F3ED1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355305536}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366306636}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{140AFDC9-061F-4B86-8C58-42994309768F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48909954-14FB-4971-A7B3-47E7AF10B38A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5848763C-2668-44CA-ADBE-2999A6EE2858}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{78BA36C9-6036-482B-B48D-ECCA6F964B84}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{807DF5E0-4EF7-48A8-A405-239F3E29FFA9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE69C007-C452-4D3E-86D2-1730DF8BC871}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{140AFDC9-061F-4B86-8C58-42994309768F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF971472-C32D-44B6-905C-4D93708F3ED1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48909954-14FB-4971-A7B3-47E7AF10B38A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5848763C-2668-44CA-ADBE-2999A6EE2858}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78BA36C9-6036-482B-B48D-ECCA6F964B84}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE69C007-C452-4D3E-86D2-1730DF8BC871}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{140AFDC9-061F-4B86-8C58-42994309768F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF971472-C32D-44B6-905C-4D93708F3ED1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{FE69C007-C452-4D3E-86D2-1730DF8BC871}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{807DF5E0-4EF7-48A8-A405-239F3E29FFA9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BE8EB180-51F8-42D6-97FA-41CDDFE7CC2E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0FAAE416-91B5-47C8-87DD-F040505CEE56}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{110A9EA2-8810-4C04-B916-CFD4E9427FEC}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{110A9EA2-8810-4C04-B916-CFD4E9427FEC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3444C3C5-6C56-4A16-A453-832B05BF6EA4}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FE69C007-C452-4D3E-86D2-1730DF8BC871}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{140AFDC9-061F-4B86-8C58-42994309768F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{140AFDC9-061F-4B86-8C58-42994309768F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FE69C007-C452-4D3E-86D2-1730DF8BC871}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FE69C007-C452-4D3E-86D2-1730DF8BC871}]
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\chrome.exe\shell\open\command
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Application Data\pennybee\pennybee.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Programas\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Application Data\pennybee\pennybee.exe]
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Babylon
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Crossrider
Key Deleted : HKCU\Software\Funmoods
Key Deleted : HKCU\Software\IB Updater
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Plus-HD-2.2
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\SafetyNut
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\somotomoviestoolbar1
Key Deleted : HKCU\Software\Speedchecker Limited
Key Deleted : HKCU\Software\speedypc software
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKCU\Software\Tune
Key Deleted : HKCU\Software\IncrediMail_MediaBar_Portugues_2
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Babylon
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Desksvc
Key Deleted : HKLM\SOFTWARE\Funmoods
Key Deleted : HKLM\SOFTWARE\hdcode
Key Deleted : HKLM\SOFTWARE\IB Updater
Key Deleted : HKLM\SOFTWARE\IePlugin
Key Deleted : HKLM\SOFTWARE\ImInstaller
Key Deleted : HKLM\SOFTWARE\nationzoomSoftware
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\Plus-HD-2.2
Key Deleted : HKLM\SOFTWARE\SafetyNut
Key Deleted : HKLM\SOFTWARE\SimilarSites
Key Deleted : HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : HKLM\SOFTWARE\speedypc software
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\supWPM
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Key Deleted : HKLM\SOFTWARE\Tune
Key Deleted : HKLM\SOFTWARE\webssearchesSoftware
Key Deleted : HKLM\SOFTWARE\winzipersvc
Key Deleted : HKLM\SOFTWARE\Wpm
Key Deleted : HKLM\SOFTWARE\IncrediMail_MediaBar_Portugues_2
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PCSU-SL_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.2
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SimilarSites
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\somotomoviestoolbar1FF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SupTab
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IncrediMail_MediaBar_Portugues_2 Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FLV Player
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Babylon
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\iSafe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PCSU-SL_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Plus-HD-2.2
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceGong
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SimilarSites
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\somotomoviestoolbar1FF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SupTab
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\winzipper
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wpm
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IncrediMail_MediaBar_Portugues_2 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]

-\\ Mozilla Firefox v

[ File : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\prefs.js ]


-\\ Google Chrome v34.0.1847.131

[ File : C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] 10:47:13&v=11.0.0.10&sap=dsp&q={searchTerms}
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Search Provider] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Startup_urls] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Startup_urls] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Startup_urls] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Startup_urls] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Startup_urls] : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Deleted [Extension] : bbjciahceamgodcoidkjpchnokgfpphh
Deleted [Extension] : hidjnkeodmholilgafgdlgmgggbhnigl
Deleted [Extension] : pelmeidfhdlhlbjimpabfcbnnojbboma

*************************

AdwCleaner[R0].txt - [44456 octets] - [24/08/2014 21:49:26]
AdwCleaner[R1].txt - [44521 octets] - [24/08/2014 22:53:46]
AdwCleaner[R2].txt - [31677 octets] - [25/08/2014 21:51:04]
AdwCleaner[S0].txt - [11898 octets] - [24/08/2014 22:59:30]
AdwCleaner[S1].txt - [31749 octets] - [25/08/2014 21:58:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [31810 octets] ##########
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Seg 25 Ago 2014, 19:43

Desative temporariamente seu antivírus para evitar conflitos.

* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

 Para executá-lo corretamente siga as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 09:25


Zoek.exe v5.0.0.0 Updated 26-08-2014
Tool run by user on 26-08-2014 at 12:42:01,77.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\user\Os meus documentos\Downloads\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

26-08-2014 12:45:54 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Programas\FreeTime deleted successfully
C:\Programas\MSXML 4.0 deleted successfully
C:\Documents and Settings\user\Menu Iniciar\Programas\Thoosje Windows Sevenbar deleted successfully
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Atheros deleted successfully
C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted successfully
C:\Documents and Settings\user\Application Data\FTWeak deleted successfully
C:\Documents and Settings\user\Application Data\Vso deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-682003330-854245398-1957994488-1003\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} deleted successfully
HKEY_USERS\S-1-5-21-682003330-854245398-1957994488-1003\Software\Microsoft\Internet Explorer\SearchScopes\{83308A0B-BD0A-4D82-910D-2A7EFD3ABBB4} deleted successfully
HKEY_USERS\S-1-5-21-682003330-854245398-1957994488-1003\Software\Microsoft\Internet Explorer\SearchScopes\{9A5AFD67-88F4-4424-B87F-A574BDA7521B} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.9 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater18.1.9 deleted successfully

==== FireFox Fix ======================

Deleted from C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\prefs.js:

Added to C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} not found
C:\Documents and Settings\user\.android deleted
C:\Programas\ComPlus Applications deleted
C:\Programas\NewFreeScreensavers deleted
C:\Documents and Settings\user\Application Data\bearsharetoolbargaw deleted
C:\Documents and Settings\user\Application Data\IObit Apps deleted
C:\WINDOWS\system32\config\systemprofile\Application Data\isafe deleted
C:\Documents and Settings\user\TempWmicBatchFile.bat deleted
C:\DOCUME~1\ALLUSE~1\APPLIC~1\boost_interprocess deleted
C:\WINDOWS\tasks\Plus-HD-2.2-chromeinstaller.job deleted
C:\WINDOWS\tasks\Plus-HD-2.2-codedownloader.job deleted
C:\WINDOWS\tasks\Plus-HD-2.2-enabler.job deleted
C:\WINDOWS\tasks\Plus-HD-2.2-firefoxinstaller.job deleted
C:\WINDOWS\tasks\Plus-HD-2.2-updater.job deleted
C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job deleted
C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job deleted
C:\WINDOWS\System32\SET13D.tmp deleted
C:\WINDOWS\System32\SET13E.tmp deleted
C:\WINDOWS\System32\SET13F.tmp deleted
C:\WINDOWS\System32\SET140.tmp deleted
C:\WINDOWS\System32\SET141.tmp deleted
C:\WINDOWS\System32\SET142.tmp deleted
C:\WINDOWS\System32\SET143.tmp deleted
C:\WINDOWS\System32\SET144.tmp deleted
C:\WINDOWS\System32\SET145.tmp deleted
C:\WINDOWS\System32\SET146.tmp deleted
C:\WINDOWS\System32\SET147.tmp deleted
C:\WINDOWS\System32\SET148.tmp deleted
C:\WINDOWS\System32\SET149.tmp deleted
C:\WINDOWS\System32\SET14A.tmp deleted
C:\WINDOWS\System32\SET14B.tmp deleted
C:\WINDOWS\System32\SET14C.tmp deleted
C:\WINDOWS\System32\SET14D.tmp deleted
C:\WINDOWS\System32\SET14E.tmp deleted
C:\WINDOWS\System32\SET14F.tmp deleted
C:\WINDOWS\System32\SET150.tmp deleted
C:\WINDOWS\System32\SET151.tmp deleted
C:\WINDOWS\System32\SET152.tmp deleted
C:\WINDOWS\System32\SET153.tmp deleted
C:\WINDOWS\System32\SET154.tmp deleted
C:\WINDOWS\System32\SET155.tmp deleted
C:\WINDOWS\System32\SET156.tmp deleted
C:\WINDOWS\System32\SET157.tmp deleted
C:\WINDOWS\System32\SET158.tmp deleted
C:\WINDOWS\System32\SET159.tmp deleted
C:\WINDOWS\System32\SET15A.tmp deleted
C:\WINDOWS\System32\SET15B.tmp deleted
C:\WINDOWS\System32\SET18F.tmp deleted
C:\WINDOWS\System32\SET190.tmp deleted
C:\WINDOWS\System32\SET191.tmp deleted
C:\WINDOWS\System32\SET192.tmp deleted
C:\WINDOWS\System32\SET193.tmp deleted
C:\WINDOWS\System32\SET194.tmp deleted
C:\WINDOWS\System32\SET195.tmp deleted
C:\WINDOWS\System32\SET196.tmp deleted
C:\WINDOWS\System32\SET197.tmp deleted
C:\WINDOWS\System32\SET198.tmp deleted
C:\WINDOWS\System32\SET199.tmp deleted
C:\WINDOWS\System32\SET19A.tmp deleted
C:\WINDOWS\System32\SET19B.tmp deleted
C:\WINDOWS\System32\SET19C.tmp deleted
C:\WINDOWS\System32\SET19D.tmp deleted
C:\WINDOWS\System32\SET19E.tmp deleted
C:\WINDOWS\System32\SET19F.tmp deleted
C:\WINDOWS\System32\SET1A0.tmp deleted
C:\WINDOWS\System32\SET1A1.tmp deleted
C:\WINDOWS\System32\SET1A2.tmp deleted
C:\WINDOWS\System32\SET1A3.tmp deleted
C:\WINDOWS\System32\SET1A4.tmp deleted
C:\WINDOWS\System32\SET1A5.tmp deleted
C:\WINDOWS\System32\SET1A6.tmp deleted
C:\WINDOWS\System32\SET1A7.tmp deleted
C:\WINDOWS\System32\SET1A8.tmp deleted
C:\WINDOWS\System32\SET1A9.tmp deleted
C:\WINDOWS\System32\SET1AA.tmp deleted
C:\WINDOWS\System32\SET1AB.tmp deleted
C:\WINDOWS\System32\SET1AC.tmp deleted
C:\WINDOWS\System32\SET1AD.tmp deleted
C:\WINDOWS\System32\SET38B.tmp deleted
C:\WINDOWS\System32\SET38C.tmp deleted
C:\WINDOWS\System32\SET38D.tmp deleted
C:\WINDOWS\System32\SET38E.tmp deleted
C:\WINDOWS\System32\SET38F.tmp deleted
C:\WINDOWS\System32\SET390.tmp deleted
C:\WINDOWS\System32\SET391.tmp deleted
C:\WINDOWS\System32\SET392.tmp deleted
C:\WINDOWS\System32\SET393.tmp deleted
C:\WINDOWS\System32\SET394.tmp deleted
C:\WINDOWS\System32\SET395.tmp deleted
C:\WINDOWS\System32\SET396.tmp deleted
C:\WINDOWS\System32\SET397.tmp deleted
C:\WINDOWS\System32\SET398.tmp deleted
C:\WINDOWS\System32\SET399.tmp deleted
C:\WINDOWS\System32\SET39A.tmp deleted
C:\WINDOWS\System32\SET39B.tmp deleted
C:\WINDOWS\System32\SET39C.tmp deleted
C:\WINDOWS\System32\SET39D.tmp deleted
C:\WINDOWS\System32\SET39E.tmp deleted
C:\WINDOWS\System32\SET39F.tmp deleted
C:\WINDOWS\System32\SET3A0.tmp deleted
C:\WINDOWS\System32\SET3A1.tmp deleted
C:\WINDOWS\System32\SET3A2.tmp deleted
C:\WINDOWS\System32\SET3A3.tmp deleted
C:\WINDOWS\System32\SET3A4.tmp deleted
C:\WINDOWS\System32\SET3A5.tmp deleted
C:\WINDOWS\System32\SET3A6.tmp deleted
C:\WINDOWS\System32\SET3A7.tmp deleted
C:\WINDOWS\System32\SET3A8.tmp deleted
C:\WINDOWS\System32\SET3A9.tmp deleted
C:\WINDOWS\System32\SET4D6.tmp deleted
C:\WINDOWS\System32\SET4DB.tmp deleted
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\bearsharetoolbargaw deleted
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\extensions\staged deleted
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\extensions\4fdacf00-e9c4-4ad5-b4cf-bf9800f184f6@36857116-74e0-4973-936f-860cd2a102a9.com deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [18-10-2013 10:57]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{336D0C35-8A85-403a-B9D2-65C292C39087}"="C:\Programas\IB Updater\Firefox" []
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Programas\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [30-11-2012 16:27]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default
- Undetermined - %ProfilePath%\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Programas\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U51
D654525C0902C21118AD29217E4ECB49 - C:\Programas\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
F1E63FCDF5307F75209F4FE773BE1A89 - C:\Programas\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
1A28667F48E7BE84123E39AE2084ECBA - C:\Programas\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
3F6A7869B5D873C90E617AD38FFB9FD0 - C:\Programas\Windows Media Player\npdrmv2.dll - Microsoft® DRM
F51ECBBA611C75E47578295D5241630F - C:\Programas\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
C7D787DDAC2AF97BD20CEB7D62004762 - C:\WINDOWS\system32\npptools.dll - Sistema operativo Microsoft® Windows®


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ceinkbgepmlklmaffnhopafmjanmoeid - C:\Documents and Settings\user\Defini‡äes locais\Application Data\CRE\ceinkbgepmlklmaffnhopafmjanmoeid.crx[]
dopemniaeocfenlpnoannaefnhfcjcgi - C:\Documents and Settings\user\Defini‡äes locais\Application Data\Google\Chrome\User Data\Default\Extensions\searchswitch.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ceinkbgepmlklmaffnhopafmjanmoeid - C:\Documents and Settings\user\Defini‡äes locais\Application Data\CRE\ceinkbgepmlklmaffnhopafmjanmoeid.crx[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
"CustomizeSearch"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-682003330-854245398-1957994488-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

==== shortcuts on All Users Desktop ======================

C:\Documents and Settings\All Users\Ambiente de trabalho\AVG 2014.lnk - C:\Programas\AVG\AVG2014\avgui.exe
C:\Documents and Settings\All Users\Ambiente de trabalho\CCleaner.lnk - C:\Programas\CCleaner\CCleaner.exe

==== shortcuts in Users Start Menu ======================

C:\Documents and Settings\user\Menu Iniciar\Programas\Internet Explorer.lnk - C:\Programas\Internet Explorer\iexplore.exe
C:\Documents and Settings\user\Menu Iniciar\Programas\Pesquisa do Google.lnk - C:\Programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\user\Menu Iniciar\Programas\Acessórios\Ferramentas do Sistema\Internet Explorer (Sem Suplementos).lnk -

==== shortcuts in All Users Start Menu ======================

C:\Documents and Settings\All Users\Menu Iniciar\Programas\AVG\AVG 2014.lnk - C:\Programas\AVG\AVG2014\avgui.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Google Chrome\Google Chrome.lnk - C:\Programas\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\All Users\Menu Iniciar\Programas\Jogos\Solitário.lnk -

==== shortcuts in Quick Launch ======================

C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\DVD Decrypter.lnk - C:\Programas\DVD Decrypter\DVDDecrypter.exe
C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Pesquisa do Google.lnk - C:\Programas\Google\Chrome\Application\chrome.exe

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ceinkbgepmlklmaffnhopafmjanmoeid deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dopemniaeocfenlpnoannaefnhfcjcgi deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ceinkbgepmlklmaffnhopafmjanmoeid deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\somotomoviestoolbar1CR deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\somotomoviestoolbar1IE deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Definições locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\user\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Definições locais\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=210 folders=27 20566468 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\user\DEFINI~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== EOF on 26-08-2014 at 13:11:53,80 ======================
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Ter 26 Ago 2014, 09:31

Baixe o programa Junkware Removal Tool no link abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 12:08

Corri o Junkware,e no final fiz REBOOT,como o programa me pediu.
Depois do pc reiniciar, o programa abriu novamente mas não apareceu nada nele,nem ficou nenhum relatorio salvo na area de trabalho!!!!
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Ter 26 Ago 2014, 12:14

Pode deixar o Junkware de lado, o importante é que ele fez a limpeza dele.
______________________________________________________________

wpennybeed.exe  Erro de aplicação 772309 Faça o download do Malwarebytes em um destes links abaixo:
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Para instalá-lo e executá-lo corretamente siga, por gentileza, as dicas desta postagem:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Na sua próxima resposta poste este log (relatório) do Malwarebytes.

Ficamos no aguardo.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 14:15

Feito,mas não tenho nenhum relatorio para mostrar,aos 5minutos já tinha detetado 30 objetos,mas quando terminou era suposto estar o log ao lado do relogio,e não apareceu nada.
Depois abri o programa e fui verificar ao HISTORICO»»LOG DE APLICATIVOS»»LOG DE VERIFICAÇÃO.
E o que me aparece é LOG DE PROTEÇÃO e na quarentena não está nada.

Proximo passo,sff
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Ter 26 Ago 2014, 14:18

Euvk escreveu:na quarentena não está nada.
Se na quarentena não tem nada é porque ele não removeu nada. Seria bom fazer uma nova verificação com ele seguindo o passo a passo que está no tutorial, remover todos os problemas que ele encontrar e postar depois o novo relatório de verificação que ele deverá criar.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 14:20

Ok,vou fazer novamente wpennybeed.exe  Erro de aplicação 404338
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 14:24

Ele diz que tem uma nova actualização,instá-lo?
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Ter 26 Ago 2014, 14:33

Sim, pode atualizar ele.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 17:56

Depois de quase 3 horas,ei-lo

Malwarebytes Anti-Malware
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Data de Verificação: 26-08-2014
Hora da Verificação: 18:32:08
Logfile: log.txt
Administrador: Sim

Versão: 2.00.2.1012
Malware Database: v2014.08.26.05
Rootkit Database: v2014.08.21.01
Licença: Grátis
Proteção de Malware: Desabilitado
Proteção de Site Malicioso: Desabilitado
Self-protection: Desabilitado

OS: Windows XP Service Pack 3
CPU: x86
Sistema de Arquivo: NTFS
Usuário: user

Tipo da Verificação: Verificação Personalizada
Resultado: Completado
Arquivos Verificados: 514457
Tempo Decorrido: 2 hr, 43 min, 15 seg

Memória: Enabled
Inicialização: Enabled
Filesystem: Enabled
Arquivos: Enabled
Rootkits: Desabilitado
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processos: 0
(No malicious items detected)

Módulos: 0
(No malicious items detected)

Chaves de Registro: 6
PUP.Optional.Incredibar.A, HKLM\SOFTWARE\WOW6432NODE\IB Updater, Quarantined, [d05d606b2b5072c4869da6606c97669a],
PUP.Optional.Incredibar.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\dlnembnfbcpjnepmfjmngjenhhajpdfd, Quarantined, [69c4606b7209b87e44de2cda2dd68977],
PUP.Optional.Incredibar.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\IB Updater, Quarantined, [101db01bafccb086d94b4db94db632ce],
PUP.Optional.PlusHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Plus-HD-2.2, Quarantined, [50dd89424c2f1f17a6a03be0778cb848],
PUP.Optional.Linkury.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\pennybee, Quarantined, [b17c1ab14d2ec96d52fa7c6e05fdc838],
PUP.Optional.Linkury.A, HKU\S-1-5-21-682003330-854245398-1957994488-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\pennybee, Quarantined, [65c876558cef270f94b8806a9969ad53],

Valores de Registro: 0
(No malicious items detected)

Dados do Registro: 3
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|AntiVirusDisableNotify, 1, Good: (0), Bad: (1),Replaced,[48e545869cdf55e1fc5652897193c43c]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|FirewallDisableNotify, 1, Good: (0), Bad: (1),Replaced,[b578676454279f97ed6699425ca8966a]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Good: (0), Bad: (1),Replaced,[66c7f9d282f92e0859fb895272928c74]

Pastas: 78
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\dialog, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\dialog\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\dialog\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\extensions, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\extensions\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\extensions\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\guide, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\guide\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\lastVisited, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\lastVisited\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\lastVisited\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\notice, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\notice\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\played, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\played\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\played\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\de, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\en, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\es, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\es_419, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\fr, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\it, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\ja, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\pl, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\pt_BR, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\pt_PT, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\ru, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\tr, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\vi, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\zh_CN, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\zh_TW, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_metadata, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\cache, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\logs, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\TrayIcons, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],

Arquivos: 268
PUP.Optional.IePluginService.A, C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginService\PluginService.exe.vir, Quarantined, [f835fbd0d3a81a1cd80d392960a16799],
PUP.Optional.WPM.A, C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe.vir, Quarantined, [4ce125a612698bab6f875e3754ad38c8],
PUP.Optional.Desk365.A, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Desk 365\components\component_libcef_1.1364.1123.exe.vir, Quarantined, [f03d9d2e92e939fd78fa12f4a2638779],
Adware.ADON, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Desktopicon\eBayShortcuts.exe.vir, Quarantined, [6cc1b813b5c6b086a2cfe8ffec182ed2],
PUP.Optional.PriceGong.A, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\yst0ucr0.default\Extensions\{8A9386B4-E958-4C4C-ADF4-8F26DB3E4829}\plugins\npPriceGong_FF.dll.vir, Quarantined, [7eafd2f9c6b5ab8b33a4a9c2728fd828],
PUP.Optional.SupTab.A, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\SupTab\SupTab.dll.vir, Quarantined, [3df023a896e5261079040332f01021df],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\Conduit\CT2727622\IncrediMail_MediaBar_Portugues_2AutoUpdateHelper.exe.vir, Quarantined, [9f8ee6e5fa81f5417937c26d2ed205fb],
PUP.Optional.Somoto, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\FilesFrog Update Checker\uninstall.exe.vir, Quarantined, [989510bb77048bab66be8e995fa1cb35],
PUP.Optional.PriceGong.A, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\5.6.12_1\plugins\npPriceGong_CH.dll.vir, Quarantined, [2a031bb0e09b1323f9dea0cbc63b0bf5],
PUP.Optional.ClientConnect, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\ceinkbgepmlklmaffnhopafmjanmoeid\10.31.4.510_0\APISupport\APISupport.dll.vir, Quarantined, [e84508c31665be7811d75952b34e8f71],
PUP.Optional.ClientConnect, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\ceinkbgepmlklmaffnhopafmjanmoeid\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe.vir, Quarantined, [b77668634932be7844a4911a04fd5ca4],
PUP.Optional.ClientConnect, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\ceinkbgepmlklmaffnhopafmjanmoeid\10.31.4.510_0\plugins\ChromeApiPlugin.dll.vir, Quarantined, [ed4015b60279f93d4f997f2c7091e020],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\IncrediMail_MediaBar_Portugues_2\hk64tbInc2.dll.vir, Quarantined, [fe2f319a710aac8abcf4c56a966aef11],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\IncrediMail_MediaBar_Portugues_2\hktbInc2.dll.vir, Quarantined, [53da814acab1989eae02f53afb05936d],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\IncrediMail_MediaBar_Portugues_2\ldrtbInc2.dll.vir, Quarantined, [b37a408b017a999db7f946e91ce4946c],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Definições locais\Application Data\IncrediMail_MediaBar_Portugues_2\tbInc2.dll.vir, Quarantined, [79b453785625a78f3080ef40b749639d],
PUP.Optional.BabylonToolBar.A, C:\AdwCleaner\Quarantine\C\Programas\Babylon\Babylon-Pro\Utils\MyBabylonTB.exe.vir, Quarantined, [40ed5279cfaca78f0b15f92b629f18e8],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Programas\Conduit\Community Alerts\Alert.dll.vir, Quarantined, [b37a3e8d18633204575aa7887a86f10f],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\ldrtbInc2.dll.vir, Quarantined, [7bb28f3ced8e5ed81b95191630d0fb05],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\hk64tbInc2.dll.vir, Quarantined, [2409eae16d0ebb7b1997022dda26e719],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\hktbInc2.dll.vir, Quarantined, [8da0aa213e3dde58317fbb7402fe05fb],
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\IncrediMail_MediaBar_Portugues_2ToolbarHelper.exe.vir, Quarantined, [6dc0309b601b979f4f12c25c966abd43],
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\IncrediMail_MediaBar_Portugues_2ToolbarHelper1.exe.vir, Quarantined, [76b7e4e7e4970234d58c5ec0ce32c838],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\prxtbInc2.dll.vir, Quarantined, [be6ff6d55c1fe551981887a8b24e659b],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Programas\IncrediMail_MediaBar_Portugues_2\tbInc2.dll.vir, Quarantined, [73ba87447cffac8ab5fbf33c639d34cc],
PUP.Optional.MoviesToolBar.A, C:\AdwCleaner\Quarantine\C\Programas\Movies Toolbar\SafetyNut\SRTOOL~1\uninstall.exe.vir, Quarantined, [d05de5e67803ba7cfd4646c259ac34cc],
PUP.Optional.MoviesToolBar.A, C:\AdwCleaner\Quarantine\C\Programas\Movies Toolbar\SafetyNut\SRTOOL~1\GC\uninstall.exe.vir, Quarantined, [0528e8e347340d29281bac5c877e45bb],
PUP.Optional.MoviesToolBar.A, C:\AdwCleaner\Quarantine\C\Programas\Movies Toolbar\SafetyNut\SRTOOL~1\IE\uninstall.exe.vir, Quarantined, [51dc7e4d1b60a09613305cac8c797c84],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Programas\Plus-HD-2.2\Plus-HD-2.2-chromeinstaller.exe.vir, Quarantined, [61ccccffef8cac8a857b60c833ceb14f],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Programas\Plus-HD-2.2\Plus-HD-2.2-codedownloader.exe.vir, Quarantined, [1a139635c1ba5cdad32dea3ef011a25e],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Programas\Plus-HD-2.2\Plus-HD-2.2-firefoxinstaller.exe.vir, Quarantined, [65c814b7de9db581827e6cbcb74a748c],
PUP.Optional.PlusHD.A, C:\AdwCleaner\Quarantine\C\Programas\Plus-HD-2.2\Plus-HD-2.2-updater.exe.vir, Quarantined, [220b9d2e87f4d462d8280028cd34f010],
PUP.Optional.CrossRider.A, C:\AdwCleaner\Quarantine\C\Programas\Plus-HD-2.2\utils.exe.vir, Quarantined, [111ccffc5823d165729fa69abe422fd1],
PUP.Optional.PriceGong.A, C:\AdwCleaner\Quarantine\C\Programas\PriceGong\uninst.exe.vir, Quarantined, [2c01af1ce09bde58a037204ba25f4bb5],
PUP.Optional.PriceGong.A, C:\AdwCleaner\Quarantine\C\Programas\PriceGong\2.6.12\PriceGongIE.dll.vir, Quarantined, [909d1caf3a4111257a5d67045ba6b34d],
PUP.Optional.SupTab.A, C:\AdwCleaner\Quarantine\C\Programas\SupTab\SupTab.dll.vir, Quarantined, [002d27a4ee8d4ceae19c88adc739847c],
PUP.Optional.OpenCandy, C:\Documents and Settings\user\Ambiente de trabalho\Os meus documentosCONVERTIDAS\Downloads\MediaInfo_GUI_0.7.64_Windows.exe, Quarantined, [1419be0df784c57119b73ec7ad581ae6],
PUP.Optional.OpenCandy, C:\Documents and Settings\user\Ambiente de trabalho\Os meus documentosCONVERTIDAS\Downloads\veetle-0.9.19.exe, Quarantined, [0d2000cb205b88ae27a934d1877eff01],
PUP.Optional.OneClickDownloader.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\File System\000\t\00\00000000, Quarantined, [bf6e9734552630064b51918d7e8329d7],
PUP.Optional.OneClickDownloader.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\File System\000\t\00\00000001, Quarantined, [5fce2d9ebdbee056217b3de129d86d93],
PUP.Optional.InstallCore, C:\Documents and Settings\user\Os meus documentos\Downloads\ccleaner-4-16-4736-32-bits.exe, Quarantined, [8e9f7d4e86f5be78a96916490cf8d927],
PUP.Optional.BabylonToolBar.A, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Application Data\Mozilla\Firefox\Profiles\yaswyl7o.default\extensions\ffxtlbr@babylon.com\components\FFHst.dll, Quarantined, [68c5c00b6318e155f42c1a0a0bf6ec14],
PUP.Optional.BabylonToolBar.A, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Application Data\Babylon\Setup\MyBabylonTB.exe, Quarantined, [cf5e507be7940135d946ce56a9589868],
PUP.Optional.SweetIM, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Application Data\Google\Chrome\User Data\Default\Cache\f_006507, Quarantined, [0f1ef3d823588caa154cdb2a46bf847c],
PUP.Optional.DefaultTab.A, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\DefaultTabSetup2.exe, Quarantined, [6ebf606b93e8ee480b44b47341c08d73],
PUP.Optional.SweetIM, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\mgsqlite3.7z, Quarantined, [f934fad1c7b447efbca506ff1aebad53],
PUP.Optional.SweetIM, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\mgsqlite3.dll, Quarantined, [200d24a7245794a2c69bb84d06ff16ea],
PUP.Optional.SweetIM, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\Shortcut_WinRARSDM (1).exe, Quarantined, [45e8be0d69129b9b64fd788d3fc6b749],
PUP.Optional.Dealply, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\SIMBundleInstaller.exe, Quarantined, [999436954b301c1a198bf41121e4ec14],
Adware.Agent, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\10065500.Uninstall\Uninstall.exe, Quarantined, [7eaf943783f8b97d8ec40e7b4cb4d22e],
PUP.Optional.BabylonToolBar.A, C:\Documents and Settings\user\Os meus documentos\MUITOS\Seguranças\Definições locais\Temp\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbar4ie.exe, Quarantined, [be6f65669cdf231338e769bb18e9a15f],
PUP.Optional.MoviesToolBar.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190074.exe, Quarantined, [2706f6d522592a0ceb58f41408fd7f81],
PUP.Optional.IePluginService.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190000.exe, Quarantined, [73baae1dbdbef442a540065c54adc937],
PUP.Optional.WPM.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190016.exe, Quarantined, [84a94784017acc6a985edeb749b8817f],
PUP.Optional.BabylonToolBar.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190058.exe, Quarantined, [d65707c4bac1aa8c9987e24291707b85],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190061.dll, Quarantined, [09245675a0db49ed426f9d92b8487f81],
PUP.Optional.MoviesToolBar.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190071.exe, Quarantined, [b07dc40719625bdbac97b1579273c040],
PUP.Optional.MoviesToolBar.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190078.exe, Quarantined, [ba735477156690a6fc47e622996cc040],
PUP.Optional.PlusHD.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190080.exe, Quarantined, [ec41319a84f7f145ee123bed857c9a66],
PUP.Optional.PlusHD.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190081.exe, Quarantined, [7cb1c7045922979f2bd5c068d42d2ad6],
PUP.Optional.PlusHD.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190082.exe, Quarantined, [0627d3f892e9171f39c750d806fbe21e],
PUP.Optional.PlusHD.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190084.exe, Quarantined, [81ac3695ea917cba8c740a1e7e83fe02],
PUP.Optional.CrossRider.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190087.exe, Quarantined, [012cebe07b0076c080915ce44fb1b24e],
PUP.Optional.PriceGong.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190088.exe, Quarantined, [e74626a5e5961f17a631165514ed9070],
PUP.Optional.PriceGong.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190089.dll, Quarantined, [919cbb1056250b2bc90e026917eab947],
PUP.Optional.SupTab.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190097.dll, Quarantined, [87a629a2e09b1d19afce2b0af808ab55],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190101.dll, Quarantined, [34f95f6ca8d3fc3a3e723ff0a45cb44c],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190103.dll, Quarantined, [151872598af1eb4bc5eb5fd015ebe719],
PUP.Optional.Conduit.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190104.exe, Quarantined, [97965576c0bb88ae9bc65bc37d839070],
PUP.Optional.Conduit.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190105.exe, Quarantined, [012ce5e6fa81b08686db9e800ff121df],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190107.dll, Quarantined, [ea437a51cfac62d4a20efc33ef1156aa],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190110.dll, Quarantined, [98959536c1baae886e42fe31ac5452ae],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190113.dll, Quarantined, [35f80cbf9fdc7db9199748e73dc3af51],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190322.dll, Quarantined, [b37ac6054c2f45f1773954db966ae020],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190315.exe, Quarantined, [c568c209592235017838e84750b0a957],
PUP.Optional.Somoto, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190318.exe, Quarantined, [2c01884390ebe1559d8757d032ce956b],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190320.dll, Quarantined, [0f1eb516e59649ed169a2c03ec14a35d],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190324.dll, Quarantined, [9a93e0eb2a51ba7c08a85fd08e7201ff],
PUP.Optional.Conduit, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190328.dll, Quarantined, [1d10903b04774de9357be34c000058a8],
PUP.Optional.Desk365.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190379.exe, Quarantined, [0b2226a50d6e3204076b3bcb21e4e917],
Adware.ADON, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190390.exe, Quarantined, [58d5b912285389ad224fe70045bff808],
PUP.Optional.SupTab.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190468.dll, Quarantined, [a5888249e9921e18bfbe5ed713edcc34],
PUP.Optional.PriceGong.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190475.dll, Quarantined, [d558be0de9922f073b9cd3983dc4f40c],
PUP.Optional.PriceGong.A, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190485.dll, Quarantined, [d657517a8af17bbb9443cc9f966b1de3],
PUP.Optional.ClientConnect, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190492.dll, Quarantined, [d95417b492e977bfb3357437bf426c94],
PUP.Optional.ClientConnect, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190493.exe, Quarantined, [4edf9c2fb2c9d6600ade901be021c040],
PUP.Optional.ClientConnect, C:\System Volume Information\_restore{5A706299-D1D3-4BF0-9333-22B514A04BCA}\RP234\A0190494.dll, Quarantined, [cc6113b866150333a3456942d031e719],
PUP.Optional.BabylonToolBar.A, I:\Os meus documentos\Documents and Settings\manueltomas\Application Data\Mozilla\Firefox\Profiles\yaswyl7o.default\extensions\ffxtlbr@babylon.com\components\FFHst.dll, Quarantined, [a984b01bcbb071c551cfef35e021c33d],
PUP.Optional.BabylonToolBar.A, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Application Data\Babylon\Setup\MyBabylonTB.exe, Quarantined, [7db027a42259b1859b8469bb3ac74eb2],
PUP.Optional.SweetIM, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Application Data\Google\Chrome\User Data\Default\Cache\f_006507, Quarantined, [1e0f63686d0ec57196cb09fc7095cc34],
PUP.Optional.SweetIM, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\mgsqlite3.7z, Quarantined, [2ffe498276057fb783de689d6f962ed2],
PUP.Optional.SweetIM, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\mgsqlite3.dll, Quarantined, [ab82cefd4c2fe94dd78ac243af5646ba],
PUP.Optional.DefaultTab.A, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\DefaultTabSetup2.exe, Quarantined, [0528f0db6e0d9b9bc58a73b40ef37a86],
PUP.Optional.SweetIM, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\Shortcut_WinRARSDM (1).exe, Quarantined, [f5384a81b9c20036372a22e330d5f10f],
PUP.Optional.Dealply, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\SIMBundleInstaller.exe, Quarantined, [ac81587392e9cd69a30130d509fc1de3],
PUP.Optional.BabylonToolBar.A, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbar4ie.exe, Quarantined, [f53872597cff1224c85733f18a7730d0],
Adware.Agent, I:\Os meus documentos\Documents and Settings\manueltomas\Definições locais\Temp\10065500.Uninstall\Uninstall.exe, Quarantined, [a28b4784ff7cbe7869e926633bc5dc24],
PUP.Optional.Softonic.A, i:\os meus documentos\documents and settings\manueltomas\os meus documentos \os meus documentos\downloads\softonicdownloader_para_tuneup-utilities.exe, Quarantined, [6cc1ebe0601ba0964463e8445ea3ae52],
PUP.Optional.Spigot.A, I:\Programas\Application Updater\ApplicationUpdater.exe, Quarantined, [84a9f5d6b4c7c670a4f2e1ad7e8324dc],
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 17:57

Falta a 2 segunda parte,porque não consegui enviar tudo
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Ter 26 Ago 2014, 18:02

[84a9f5d6b4c7c670a4f2e1ad7e8324dc],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.4.31.2\BabylonToolbarApp.dll, Quarantined, [f03dfad1a9d21f1737e914102ad7966a],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.4.31.2\BabylonToolbarEng.dll, Quarantined, [88a507c407744de92ef22004dc2557a9],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.4.31.2\BabylonToolbarsrv.exe, Quarantined, [9c91f3d88eedf046ae72e63e639e05fb],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.4.31.2\BabylonToolbarTlbr.dll, Quarantined, [ae7f1cafe09b0a2c4ad632f21fe2718f],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.4.31.2\uninstall.exe, Quarantined, [210cdfecd3a889adc659b56fae53946c],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarApp.dll, Quarantined, [1518c605007b360028f88d97aa573dc3],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarEng.dll, Quarantined, [2b02795289f2c86eaf71d74df8095da3],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarsrv.exe, Quarantined, [0f1e09c203784fe7140c12127e8304fc],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll, Quarantined, [210c78530576bd793be50b19748dce32],
PUP.Optional.BabylonToolBar.A, I:\Programas\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe, Quarantined, [eb42eae12a51ee48da45ae766a979d63],
PUP.Optional.Conduit, I:\Programas\Conduit\Community Alerts\Alert.dll, Quarantined, [0a2396353b401a1ce9c8cb6422ded32d],
PUP.Optional.DealioTB.A, I:\WINDOWS\Temp\DealioToolbar.exe, Quarantined, [82aba02b0f6ccb6b922808e91fe5b24e],
PUP.Optional.Linkury.A, C:\WINDOWS\Tasks\pennybee Runner.job, Quarantined, [26074d7e7cffc571f07201e904fed22e],
PUP.Optional.WebSearchs.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage, Quarantined, [55d88f3c87f491a50ab038b838ca15eb],
PUP.Optional.WebSearchs.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage-journal, Quarantined, [37f624a7077464d202b805eb09f9de22],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage, Delete-on-Reboot, [58d5319a67149e9859563a132ed69a66],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage-journal, Delete-on-Reboot, [b17cc10a98e37bbb2689f05d31d37a86],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\background.html, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\index.html, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\jump.html, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\manifest.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks\bookmarks.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\bookmarks\img\searchButton.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\classification.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\img\skin\del.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\img\skin\main.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\classification\img\skin\selected.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\cloud.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\cloudApp.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\cloudWebsite.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\createWebsite.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\buttonBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\categoryBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\icons.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\searchBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\searchButton.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\searchLeft.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\selected.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\cloud\img\skin\tabsBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\dialog\img\skin\headerBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\extensions\extensions.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\extensions\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\extensions\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\gameCenter.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\img\star.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\img\star_bg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\gameCenter\img\time.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\guide\guide.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\guide\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\lastVisited\lastVisited.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\lastVisited\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\lastVisited\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\notice\notice.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\notice\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\played\played.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\played\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\search.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\img\google-new-logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\img\searchicon.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\search\img\searchicon2.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\setup.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\img\skin\dialBoxStyle.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\setup\img\skin\icons.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts\img\oBookmarks.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts\img\oDownloads.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts\img\oExtensions.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts\img\oHistory.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\shortcuts\img\oNewtab.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\cloudWallpaper.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\skins.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\skin\categoryBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\skin\delete.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\skin\download.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\skin\icons.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\skins\img\skin\loading.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\weather.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\css\style.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img\logo.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img\skin\line.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img\skin\locationIcon.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img\skin\searchButton.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\app\weather\img\skin\weather.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\css\all.css, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\game.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\icon_128.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\icon_16.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\icon_48.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\NEW.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\shopping.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\weather.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\webstore.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\default.jpg, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\iconsprite.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\idialog_s.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\ios5_button.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\left.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\loading.gif, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\loading2.gif, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\qBoxBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\q_bg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\q_bg0.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\q_left.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\q_left0.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\q_right.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\q_right0.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\right.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\selected.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\img\skin\titleBg.png, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\all.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\background.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\ga.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\jq.mobi.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\jump.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\pop.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\redirect.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\js\xagainit.js, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\de\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\en\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\es\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\es_419\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\fr\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\it\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\ja\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\pl\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\pt_BR\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\pt_PT\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\ru\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\tr\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\vi\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\zh_CN\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_locales\zh_TW\messages.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.QuickStart.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\4.5.8_0\_metadata\verified_contents.json, Quarantined, [9c9107c4d2a91e1885b115b1ee147c84],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\000005.sst, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\007682.log, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\CURRENT, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\LOCK, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\LOG, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\LOG.old, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj\MANIFEST-007681, Quarantined, [3eef38935526ec4a52e7daf941c128d8],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\000005.sst, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\007670.log, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\CURRENT, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\LOCK, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\LOG, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\LOG.old, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Spigot.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp\MANIFEST-007669, Quarantined, [ba7302c9a3d858de46f42fa433cf738d],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\dgapi.js, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\dgmain_app_bg.js, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\dgmain_app_cs.js, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\jquery4toolbar.js, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\cache\73f82623658278cf03c2acf12426f916, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\cache\73f82623658278cf03c2acf12426f916_expire, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\cache\73f82623658278cf03c2acf12426f916_gb, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.Linkury.A, C:\Documents and Settings\user\Local Settings\Application Data\pennybee\content\TrayIcons\logo.ico, Quarantined, [d9541ab1d7a485b15bd68b574db559a7],
PUP.Optional.WebsSearches.A, C:\Documents and Settings\user\Definições locais\Application Data\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://www.mysearchresults.com/?c=3502&t=07", "http://mystart.incredimail.com/?a=6OyUNfzxdp", "http://searchfunmoods.com/?f=1&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1Qzu0DzzyD0DyE0Czz0DtByC0FtDyBtDyBtCtN0D0Tzu0CtAtAtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=977109864", "http://mystart.incredimail.com?a=6OyUNfzxdp", "http://www.search.ask.com/?o=APN10640A&gct=hp&d=473-104&v=a11465-225&t=4", "http://istart.webssearches.com/?type=hp&ts=1406543892&from=pcm&uid=SAMSUNGXSP0411N_S01JJ60X770222" ],), Replaced,[9c911cafd3a8a492c4062fe215f0a45c]

Physical Sectors: 0
(No malicious items detected)


(end)
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Ter 26 Ago 2014, 23:47

Faça o download do < [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] >  < [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]> ( ... de Nicolas Coolman )

Obs: Ao acessar o link acima clique no botão Télécharger referente ao ZHPDiag para baixá-lo, tal como mostra a imagem abaixo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Qua 27 Ago 2014, 08:09

Bom dia poderoso!!
Aqui está o log

~ Relatório do ZHPDiag v2014.8.25.124 - Nicolas Coolman (25-08-2014)
~ Iniciado por user (27-08-2014 12:02:23)
~ Endereço do Website : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Endereço do Webforum : [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Tradução pelo utilizador
~ Estatuto da versão : Versão atualizada.
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Not Found


---\\ Navegadores Internet
MSIE: Internet Explorer v8.0.6001.18702
GCIE: Google Chrome v34.0.1847.131 (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Microsoft Windows XP, 32-bit Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ Softwares de proteçao do sistema
AVG 2014 v14.0.4745
Malwarebytes Anti-Malware versão 2.0.2.1012

---\\ Softwares d'optimização do sistema
CCleaner v4.16

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Flash Player 15 Plugin
Adobe Reader X
Java 7 Update 51

---\\ Informações sobre o sistema
~ Processor: x86 Family 15 Model 107 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3071 MB (55% free)
System Restore: Activé (Enable)
System drive C: has 378 GB (81%) free of 466 GB

---\\ Modo de conexão ao sistema
~ Computer Name: 35EE44FD754F4AA
~ User Name: user
~ All Users Names: user, SUPPORT_388945a0, Convidado, Assistente de ajuda, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Documents and Settings\user\Application Data\ZHP\
~ %AppData% : C:\Documents and Settings\user\Application Data\
~ %Desktop% : C:\Documents and Settings\user\Ambiente de trabalho\
~ %Favorites% : C:\Documents and Settings\user\Favoritos\
~ %LocalAppData% : C:\Documents and Settings\user\Definições locais\Application Data\
~ %StartMenu% : C:\Documents and Settings\user\Menu Iniciar\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ Enumeração das unidades dos discos
A: Floppy drive, Flash card reader, USB Key (Not Inserted)
C: Hard drive, Flash drive, Thumb drive (Free 378 Go of 466 Go)
D: CD-ROM drive (Not Inserted)
E: Floppy drive, Flash card reader, USB Key (Not Inserted)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
H: Floppy drive, Flash card reader, USB Key (Not Inserted)
I: Hard drive, Flash drive, Thumb drive (Free 18 Go of 37 Go)



---\\ Estado do Centro de Segurança do Windows
~ Security Center: 41 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.73BF5036A2ABA403DB078C65B1A29A99] - (.Microsoft Corporation - Explorador do Windows.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\Explorer.exe [1035776]
[MD5.760228B89CF354B92C16368F9B4E147E] - (.Microsoft Corporation - Internet Extensions for Win32.) (.06-03-2014 - 17:58:53.) -- C:\WINDOWS\system32\wininet.dll [920064]
[MD5.2EFCB948E7DA1B6D6FE351032FF76391] - (.Microsoft Corporation - Aplicação de início de sessão do Windows NT.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Winlogon.exe [510976]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17-08-2011 - 13:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.A4542EC275D6B2264D23CE1CD0D223BE] - (.Microsoft Corporation - Controlador de criptografia FIPS.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.7EDADCB7D0161A33AE3E00E163759C36] - (.Microsoft Corporation - Controlador de porta i8042.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [53888]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15-07-2011 - 13:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.5BA9E672FC3FCB436A92B0646DD37625] - (.Microsoft Corporation - Controlador de porta paralela.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80512]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14-04-2008 - 0:02:52.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.B169D51385049145A8DDB1A87AB5F7BF] - (.Microsoft Corporation - Controlador de filtro de áudio Redbook.) (.14-04-2008 - 21:07:18.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.A2E5B9B25D77AF18BE1ECE69F15F436C] - (.Microsoft Corporation - Controlador de cópia sombra do volume.) (.15-04-2008 - 12:00:00.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [52992]
~ Generic Processes: Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 3/119
~ Mes musiques (My Musics) : 2/39
~ Mes Videos (My Videos) : 0/0
~ Mes Favoris (My Favorites) : 1/31
~ Mes Documents (My Documents) : 5/52873
~ Mon Bureau (My Desktop) : 2/1023
~ Menu demarrer (Programs) : 1/32
~ Hidden Files: Scanned in 00mn 23s



---\\ Processos lançados
[MD5.5AC144F03B31AFAB6717AD3622D1680D] - (.Atheros - ACS.) -- C:\WINDOWS\system32\acs.exe [499796] [PID.456]
[MD5.1EEA64D8599B5B7BD8721498E4019CF0] - (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Programas\CyberLink\PowerDVD\PDVDServ.exe [32768] [PID.1312]
[MD5.0E34B7BB1FCF22BCC1E394D16F9E992B] - (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Programas\Microsoft Office\Office12\GrooveMonitor.exe [30040] [PID.124]
[MD5.A14FAB60B6D501E2896458394245BE21] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe [20064872] [PID.1704]
[MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Programas\HP\HP Software Update\HPWuSchd2.exe [49208] [PID.1740]
[MD5.7F4601AB692AD6707022CD61BA152348] - (...) -- C:\Programas\TP-LINK\TP-LINK Wireless Client Utility\TWCU.exe [561263] [PID.1772]
[MD5.C6DEB2EE4C46C4DC725D65836244F3F9] - (...) -- ystem32\rundll32.exe [0] [PID.1980]
[MD5.7D62A43622ADFF6A08DB83801CF72C54] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Programas\AVG\AVG2014\avgui.exe [5187088] [PID.2008]
[MD5.3C62EAE05B76BA809FA1DE327922E846] - (.Hewlett-Packard Company - No Comment.) -- C:\Programas\Ficheiros comuns\LightScribe\LightScribeControlPanel.exe [455968] [PID.196]
[MD5.5A63285CC0D3323D720E0C518FE74CA3] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Programas\AVG\AVG2014\avgwdsvc.exe [289328] [PID.924]
[MD5.B9436A665A8621073A12338B16D7BFD4] - (.Oracle Corporation - Java Quick Starter Service.) -- C:\Programas\Java\jre7\bin\jqs.exe [182696] [PID.1960]
[MD5.1019E86E35E137569D74416D252F0211] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Programas\IncrediMail\Bin\ImApp.exe [296944] [PID.896]
[MD5.542459D16B416D054161007FC9B1246E] - (.Google Inc. - Google Chrome.) -- C:\Programas\Google\Chrome\Application\chrome.exe [841032] [PID.3280]
[MD5.4FBC630768570E6AC35C3DE8F6EC79F5] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Programas\Malwarebytes Anti-Malware\mbam.exe [6970168] [PID.1844]
[MD5.C44031488DED58FCE58E5D94BC345D30] - (.Nero AG - Nero Home.) -- C:\Programas\Ficheiros comuns\Nero\Lib\NMIndexStoreSvr.exe [1840424] [PID.1684]
[MD5.CB992AE1506985D9167E85883B4C3240] - (.Nero AG - Nero Home.) -- C:\Programas\Ficheiros comuns\Nero\Lib\NMIndexingService.exe [537896] [PID.140]
[MD5.66E641C3196F65A277206FE8C3E32B93] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Programas\IncrediMail\Bin\IncMail.exe [440304] [PID.3888]
[MD5.836017731EEE9F923DB83AEB2C316F90] - (.Nicolas Coolman - ZHPDiag.) -- C:\Programas\ZHPDiag\ZHPDiag.exe [8097792] [PID.4464]
~ Processes Running: Scanned in 00mn 01s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hôte est sain (The hosts file is clean) (19)
~ Hosts File: Scanned in 00mn 00s



---\\ Barras do Internet Explorer (03))
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Chave orfã
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Chave orfã
~ Toolbar: Scanned in 00mn 00s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Programas\Ficheiros comuns\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [RemoteControl] . (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Programas\CyberLink\PowerDVD\PDVDServ.exe
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Programas\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [ZDWlan.EXE] . (.TP-LINK TECHNOLOGIES CO., LTD. - TP-LINK Wireless Client Utility.) -- C:\Programas\TP-LINK\TP-LINK Wireless Client Utility\ZDWlan.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Programas\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [TWCU] . (...) -- C:\Programas\TP-LINK\TP-LINK Wireless Client Utility\TWCU.exe
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Programas\Ficheiros comuns\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] . (.Nero AG - Nero BackItUp.) -- C:\Programas\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Programas\AVG\AVG2014\avgui.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - No Comment.) -- C:\Programas\Ficheiros comuns\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Programas\IncrediMail\bin\IncMail.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-682003330-854245398-1957994488-1003\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - No Comment.) -- C:\Programas\Ficheiros comuns\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-682003330-854245398-1957994488-1003\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Programas\IncrediMail\bin\IncMail.exe
O4 - HKUS\S-1-5-21-682003330-854245398-1957994488-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Programas\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Programas\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Exibir ou ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Programas\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Chave orfã
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Programas\Messenger\msmsgs.exe
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Piratagem da Opção " Redefinir Configurações da Web " (014)
O14 - IERESET.INF: SAFESITE_VALUE=SAFESITE_VALUE="ie.search.msn.com"
~ IE Paramètres WEB: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DCB9CB48-0061-4E51-AAE3-69BA2BDC3E02}: DhcpNameServer = 192.168.1.254 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{DCB9CB48-0061-4E51-AAE3-69BA2BDC3E02}: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\..\{DCB9CB48-0061-4E51-AAE3-69BA2BDC3E02}: DhcpNameServer = 192.168.1.254 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{DCB9CB48-0061-4E51-AAE3-69BA2BDC3E02}: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\..\{DCB9CB48-0061-4E51-AAE3-69BA2BDC3E02}: DhcpNameServer = 192.168.1.254 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{DCB9CB48-0061-4E51-AAE3-69BA2BDC3E02}: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 192.168.1.254
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Programas\Ficheiros comuns\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agente de rede em offline.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL comum para receber as notificações do W.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL comum para receber as notificações do W.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - Dll de notificação de serviço de início de.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL comum para receber as notificações do W.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL comum para receber as notificações do W.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Windows Genuine Advantage-Benachrichtigung.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL comum para receber as notificações do W.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Chave do Registo autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Pasta e monitor do tabuleiro UPNP.) -- C:\WINDOWS\system32\upnpui.dll
~ SSODL: 6 Legitimates Filtered in 00mn 00s



---\\ Chave do Registo autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Biblioteca da interface de utilizador do br.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Pré-carregador Browseui - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioteca da interface de utilizador do br.) -- C:\WINDOWS\system32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Enumeração Ativa do Ambiente de trabalho & Editor MHTML (024)
O24 - Desktop Component 0: (no name) - file:file:///C:/DOCUME~1/user/DEFINI~1/Temp/msohtmlclip1/01/clip_image001.jpg
O24 - Desktop Component 1: (no name) - file:https://fbcdn-sphotos-f-a.akamaihd.net/hphotos-ak-prn1/41120_437613769886_3741754_n.jpg =>PUP.AkamaiHD
O24 - Desktop Component 2: (no name) - file:file:///C:/DOCUME~1/user/DEFINI~1/Temp/msohtmlclip1/01/clip_image001.gif
O24 - Desktop General: BackupWallPaper - .(...) - C:\WINDOWS\Web\Wallpaper\Alentejo.bmp
O24 - Desktop General: WallPaper - .(...) - C:\WINDOWS\Web\Wallpaper\Alentejo.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Tarefas planificadas automaticamente (039)
O39 - APT: - (..) -- C:\WINDOWS\Tasks\Início de sessão da Notificação do fim da assistência técnica ao Microsoft Windows XP.job [220]
O39 - APT: - (..) -- C:\WINDOWS\Tasks\Notificação mensal do fim da assistência técnica ao Microsoft Windows XP.job [214]
~ Scheduled Task: 9 Legitimates Filtered in 00mn 00s



---\\ Software instalados (042)
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {D3F82275-5196-45F5-8D4A-5A288925ED18}
O42 - Logiciel: IncrediMail 2.5 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail
O42 - Logiciel: Penny Bee - (.pennybee.) [HKCU] -- pennybee =>PUP.PaybyAds
~ Logic: 33 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\33036InstEnd]
[HKCU\Software\45964InstEnd]
[HKCU\Software\Baidu]
[HKCU\Software\IM]
[HKCU\Software\IncrediMail]
[HKCU\Software\Style-7]
[HKLM\Software\RegistryGear]
[HKLM\Software\SPCP]
[HKLM\Software\Style-7]
~ Key Software: 448 Legitimates Filtered in 00mn 00s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24-08-2014 - 23:00:55 - [] ----D C:\Programas\Ficheiros comuns
O43 - CFD: 20-11-2012 - 19:15:44 - [] ----D C:\Programas\IncrediMail
O43 - CFD: 15-11-2012 - 10:38:20 - [] ----D C:\Programas\Serviços online
O43 - CFD: 10-09-2013 - 11:55:59 - [] ----D C:\Programas\Velocidade Do PC
O43 - CFD: 10-09-2013 - 11:54:24 - [] ----D C:\Programas\Velocidade Do PC(2)
O43 - CFD: 10-09-2013 - 11:54:04 - [] ----D C:\Programas\Velocidade Do PC(3)
O43 - CFD: 10-09-2013 - 11:53:36 - [] ----D C:\Programas\Velocidade Do PC(4)
O43 - CFD: 07-01-2013 - 0:51:20 - [] ----D C:\Documents and Settings\All Users\Application Data\14E4
O43 - CFD: 20-11-2012 - 19:16:46 - [] ----D C:\Documents and Settings\All Users\Application Data\IM
O43 - CFD: 20-11-2012 - 19:15:44 - [] ----D C:\Documents and Settings\All Users\Application Data\IncrediMail
O43 - CFD: 17-12-2012 - 0:10:51 - [] ----D C:\Documents and Settings\All Users\Application Data\Registry Gear
O43 - CFD: 07-03-2013 - 22:00:21 - [] ----D C:\Documents and Settings\All Users\Application Data\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}
O43 - CFD: 07-03-2013 - 22:00:33 - [] ----D C:\Documents and Settings\All Users\Application Data\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 19-11-2013 - 22:52:40 - [] -SH-D C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 20-11-2012 - 20:50:06 - [] ----D C:\Documents and Settings\user\Definições locais\Application Data\IM
O43 - CFD: 20-11-2012 - 1:40:04 - [] R---D C:\Documents and Settings\user\Menu Iniciar\Programas\Acessórios
O43 - CFD: 25-12-2012 - 21:33:19 - [] R---D C:\Documents and Settings\user\Menu Iniciar\Programas\Arranque
~ Program Folder: 140 Legitimates Filtered in 00mn 00s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.0DC5AF80D059DEC792B665ED598C6567] - 24-08-2014 - 20:50:27 ---A- . (.SQLite Development Team - SQLite Dynamic Link Library (No TCL).) -- C:\WINDOWS\system32\sqlite3.dll [536576]
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 26-08-2014 - 11:41:53 ---A- . (...) -- C:\WINDOWS\zoek-delete.exe [24064]
O44 - LFC:[MD5.A129E3084E59E36AD92E154FBD2DA025] - 26-08-2014 - 12:11:53 ---A- . (...) -- C:\zoek-results.log [18296]
O44 - LFC:[MD5.B7F71EC358A01F996868FD7EAFB69B6C] - 26-08-2014 - 20:40:17 ---A- . (...) -- C:\WINDOWS\wiaservc.log [0]
O44 - LFC:[MD5.6483E042C804FF29E36842BB8AF46A4A] - 26-08-2014 - 20:40:19 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.C7BC96C3711C0D269DA26D1F0ECEC547] - 26-08-2014 - 23:17:45 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [69]
~ Files: 20 Legitimates Filtered in 00mn 02s



---\\ Operações e funções ao arranque do Windows Explorer (046)
O46 - SEH:ShellExecuteHooks - Rotina de controlo exec de URL - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programas\Microsoft Office\Office12\GrooveShellExtensions.dll
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Exportar a chave da aplicação autorizada (047)
O47 - AAKE:Key Export SP - "C:\Programas\IncrediMail\Bin\IncMail.exe" [Enabled] .(.IncrediMail, Ltd..) -- C:\Programas\IncrediMail\Bin\IncMail.exe
O47 - AAKE:Key Export SP - "C:\Programas\IncrediMail\Bin\ImApp.exe" [Enabled] .(.IncrediMail, Ltd..) -- C:\Programas\IncrediMail\Bin\ImApp.exe
O47 - AAKE:Key Export SP - "C:\Programas\IncrediMail\Bin\ImpCnt.exe" [Enabled] .(.IncrediMail, Ltd..) -- C:\Programas\IncrediMail\Bin\ImpCnt.exe
~ Keys Export: 55 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
~ MWPE Keys: 2 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:13-08-2004 - 3:56:20 ---A- . (.No owner - ATK0110 ACPI Utility.) -- C:\WINDOWS\system32\Drivers\ASACPI.sys [5810]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - Controlador principal de CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\Drivers\cinemst2.sys [262528]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\hdaudbus.sys [144384]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\Drivers\ptilink.sys [17792]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\Drivers\vdmindvd.sys [58112]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9033]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4832]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27836]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33936]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]
O58 - SDL:15-04-2008 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]
~ Drivers: 67 Legitimates Filtered in 00mn 02s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 10 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Programas\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Programas\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Programas\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} [DefaultScope] - (Google) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.254FBCA565E049648B0CCE2CEADF05D2] [SPRF][22-08-2013] (...) -- C:\Documents and Settings\user\Application Data\inst.exe [87608]
~ Files: 2 Legitimates Filtered in 00mn 00s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 22-08-2014 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 11-08-2014 3244048 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Programas\AVG\AVG2014\avgidsagent.exe
SS - | Demand 15-04-2008 225280 | (dmadmin) . (.Microsoft Corp., VERITAS Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Demand 27-11-2012 116648 | (gupdate) . (.Google Inc..) - C:\Programas\Google\Update\GoogleUpdate.exe
SS - | Demand 27-11-2012 116648 | (gupdatem) . (.Google Inc..) - C:\Programas\Google\Update\GoogleUpdate.exe
SS - | Demand 09-05-2011 136120 | (gusvc) . (.Google.) - C:\Programas\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 23-08-2007 79136 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Programas\Ficheiros comuns\LightScribe\LSSrvc.exe
SS - | Demand 08-06-2008 877864 | (Nero BackItUp Scheduler 3) . (.Nero AG.) - C:\Programas\Nero\Nero8\Nero BackItUp\NBService.exe
SS - | Auto 15-04-2008 14336 | C:\WINDOWS\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SS - | Auto 22-10-2006 159810 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe
SS - | Demand 19-12-2006 81920 | (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc..) - C:\WINDOWS\system32\IoctlSvc.exe
SS - | Auto 15-04-2008 14336 | C:\WINDOWS\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 21-09-2009 499796 | (ACS) . (.Atheros.) - C:\WINDOWS\system32\acs.exe
SR - | Auto 11-08-2014 289328 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Programas\AVG\AVG2014\avgwdsvc.exe
SR - | Demand 15-04-2008 14336 | C:\Programas\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 15-04-2008 14336 | C:\Programas\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 15-04-2008 14336 | C:\Programas\HP\Digital Imaging\bin\HPSLPSVC32.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 04-02-2014 182696 | (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Programas\Java\jre7\bin\jqs.exe
SR - | Demand 24-06-2008 537896 | (NMIndexingService) . (.Nero AG.) - C:\Programas\Ficheiros comuns\Nero\Lib\NMIndexingService.exe
~ Services: Scanned in 00mn 14s



---\\ Scâner Aditional (088)
Database Version : 13026 - (25-08-2014)
Clés trouvées (Keys found) : 4
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0

[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\pennybee] =>PUP.PaybyAds^
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_IB_UPDATER] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311301136}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311301136}] =>PUP.CrossRider
~ Additionnel Scan: 236639 Items scanned in 00mn 24s



---\\ Informações complémentaires do módulos
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>.Internet Explorer, Gestão do Proxy (R5)
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>.Barras do Internet Explorer (03))
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>.Aplicações iniciadas por registo & pastas (04)
~ [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>.Image File Execution Options (IFEO) (O50)
~ AMI: 4 Legitimates Filtered in 00mn 00s



---\\ Sumário das deteções encontradas na sua estação
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>PUP.PaybyAds
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>Adware.IncrediBar
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] =>PUP.CrossRider
~ MSI: 3 link(s) detected in 00mn 00s



~ 861 Legitimates filtered by white list
End of the scan (474 lines in 01mn 28s)(0)
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Qua 27 Ago 2014, 09:27

wpennybeed.exe  Erro de aplicação 772309  Há programas desnecessários iniciando junto com o Windows, o que torna o seu PC mais lento. Para corrigir isto, siga as dicas deste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

De preferência deixe apenas os programas de segurança (anti-vírus/anti-spywares/firewall) iniciarem junto com o Windows.

Use também o programa Ccleaner, indicado neste tutorial acima, para fazer uma limpeza e otimização do PC.
_______________________________________________________________________________________________________

wpennybeed.exe  Erro de aplicação 772309  Acesse o site [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] e envie este arquivo destacado em negrito abaixo para ser analisado (se o site informar que ele já foi analisado, peça para analisar novamente):

C:\Documents and Settings\user\Application Data\inst.exe

Assim que a análise dele for concluída, copie o link que aparecerá na barra de endereços de seu navegador e poste este link em sua próxima resposta juntamente com o relatório do ZHPFix pedido abaixo nesta postagem.

Maiores informações de como analisar arquivos no site Virus Total você encontra neste tutorial:

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
___________________________________________________________________________________________________________

wpennybeed.exe  Erro de aplicação 772309  Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

wpennybeed.exe  Erro de aplicação 772309  Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta juntamente com o link da análise do arquivo no site Virus Total.


Última edição por Power Max em Qua 27 Ago 2014, 14:44, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Qua 27 Ago 2014, 10:55

Já fiz o que me pediu no CCLEANER,agora estou com um problema em colar o arquivo no VIRUSTOTAL.
Procuro o arquivo em c/doc.setings/user/aplication data/ e depois aparece-me LOCALLOW ,é isso?
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Qua 27 Ago 2014, 11:03

Quanto ao Virus Total é só você copiar todo o caminho do arquivo destacado em vermelho abaixo:

C:\Documents and Settings\user\Application Data\inst.exe

E aí na hora que você acessar o Virus Total e clicar na opção de selecionar o arquivo, você cola lá este caminho acima e confirma, aí o Virus Total já seleciona automaticamente o arquivo.

Se mesmo assim não der certo, me avise.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Euvk Qua 27 Ago 2014, 12:34

Este foi o resultado do VIRUSTOTAL

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link]



Agora o problema é que no proximo passo eu não consigo Executar como Administrador,porque me pede uma senha.
O pc é de um familiar e ele está de ferias.Ha maneira de contornar?
Euvk
Euvk
Iniciante
Iniciante

Mensagens : 22
Reputação : 0
Data de inscrição : 24/08/2014

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Power Max Qua 27 Ago 2014, 12:44

inicie o PC em Modo Seguro com rede (apertando a tecla F8 (ou a tecla F5 em alguns computadores) repetidas vezes quando o computador estiver iniciando e escolhendo a opção Modo Seguro com rede. Quando o PC estiver em modo seguro com rede, faça o uso do Zhpfix como lhe passei sem ser como administrador e poste o relatório dele.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = O melhor da internet você encontra aqui.

[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] = Mensagens de fé e esperança para o seu coração
Power Max
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Ir para o topo Ir para baixo

wpennybeed.exe  Erro de aplicação Empty Re: wpennybeed.exe Erro de aplicação

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Ir para o topo Ir para baixo

Página 1 de 2 1, 2  Seguinte

Ir para o topo


 
Permissões neste sub-fórum
Não podes responder a tópicos