Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.
Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit  Social bookmarking google      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14537 usuários registrados
O último usuário registrado atende pelo nome de Jaíne Miranda

Os nossos membros postaram um total de 35541 mensagens em 3616 assuntos
Últimos assuntos
» Monitor não roda 1920x1080 só com o pc
por joram Sab 04 Jul 2020, 11:26

Quem está conectado
2 usuários online :: Nenhum usuário registrado, Nenhum Invisível e 2 Visitantes :: 1 Motor de busca

Nenhum

O recorde de usuários online foi de 163 em Seg 02 Set 2019, 16:28
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Julho 2020
SegTerQuaQuiSexSabDom
  12345
6789101112
13141516171819
20212223242526
2728293031  

Calendário Calendário


Como remover Baidu e CE_umbrella

Página 2 de 2 Anterior  1, 2

Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Relatório ZHPDiag-02

Mensagem por Gil Raman em Sab 30 Ago 2014, 18:48

[Você precisa estar registrado e conectado para ver este link.]
Gil Raman
Gil Raman
Iniciante
Iniciante

Mensagens : 23
Reputação : 0
Data de inscrição : 26/08/2014

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por joram em Sab 30 Ago 2014, 18:58

Gil Raman escreveu: [Você precisa estar registrado e conectado para ver este link.]
Boa Noite! Gil Raman

|- Execute este script na ferramenta ZHPFix.
|- Selecione e copie estas informações que estão em vermelho,para o Bloco de Notas.
|- Com o Bloco de Notas aberto,faça: ctrl+a >> ctrl+c ( Selecionar e Copiar )
|- À seguir,minimize o Bloco de Notas.

script zhpfix
Firewallraz
O43 - CFD: 29/08/2014 - 17:43:50 - [] ----D C:\Program Files\baidu    
O43 - CFD: 29/08/2014 - 23:26:57 - [] ----D C:\Program Files\globalUpdate    
O43 - CFD: 29/08/2014 - 23:27:01 - [] ----D C:\Program Files\PriceMeterLiveUpdate  =>PUP.PriceMeter
O43 - CFD: 29/08/2014 - 23:27:03 - [] ----D C:\Program Files\SupTab  =>PUP.SupTab
O43 - CFD: 29/08/2014 - 23:27:51 - [] ----D C:\ProgramData\Baidu    
O43 - CFD: 29/08/2014 - 14:33:20 - [] ----D C:\ProgramData\PriceMeterLiveUpdate  =>PUP.PriceMeter
O51 - MPSK:{0480787f-0c28-11e3-b970-001e101f8924}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{1959094b-fdff-11e3-9217-e81132b44dea}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)    
O51 - MPSK:{19590958-fdff-11e3-9217-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{31cf5a92-006f-11e4-a8d6-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{34165d68-05f8-11e3-8081-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{34165d74-05f8-11e3-8081-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{4e3c79c0-168e-11e3-992c-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{4e3c79ce-168e-11e3-992c-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{7a084fb8-1458-11e4-a847-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{88902452-1662-11e3-b7c3-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{88902460-1662-11e3-b7c3-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O51 - MPSK:{8c32c8e6-2d32-11e3-b49a-e81132b44dea}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)    
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) --  C:\Program Files\baidu\Spark\Spark.exe" [Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.WebsSearches
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) --  C:\Program Files\Internet Explorer\iexplore.exe [Você precisa estar registrado e conectado para ver este link.]  =>Hijacker.WebsSearches
SS - | Demand 10/07/1658 0 |  (SparkUpdater) . (...) - C:\Program Files\Baidu\SparkUpdate\Sparkupdate.exe SS - | Disabled 17/07/2014 151040 |  (SupraSavingsService) . (...) - C:\Program Files\C6CAB4CF-DAB9-45B9-AE9A-961145402E07\hmhfslexky.exe  =>PUP.SupraSavings
C:\Program Files\Baidu\SparkUpdate\Sparkupdate.exe
C:\Program Files\Baidu\SparkUpdate
C:\Program Files\PriceMeterLiveUpdate   =>PUP.PriceMeter^
C:\Program Files\SupTab   =>PUP.SupTab^
C:\ProgramData\PriceMeterLiveUpdate   =>PUP.PriceMeter^
C:\Program Files\Baidu
[HKCU\Software\PriceMeterUpdater]   =>PUP.PriceMeter^
[HKCU\Software\UpdaterEX]   =>PUP.Dealply^
[HKLM\Software\PriceMeterLiveUpdate]   =>PUP.PriceMeter^
[HKCU\Software\Baidu Security]    
[HKCU\Software\PriceMeterUpdater]  =>PUP.PriceMeter
[HKCU\Software\UpdaterEX]  =>PUP.Dealply
[HKLM\Software\Baidu Security]    
[HKLM\Software\PriceMeterLiveUpdate]  =>PUP.PriceMeter
[HKLM\Software\globalUpdate]
ServiceStop:SparkUpdater
ServiceStop:SupraSavingsService
Emptytemp
Emptyclsid
Emptyprefetch


|- Abra a ferramenta ZHPFix. < [Você precisa estar registrado e conectado para ver esta imagem.] >
|- Clique IMPORTAÇÃO >> OK.
|- Clique "GO".
|- Poste o relatório!

A+


Última edição por joram em Sab 30 Ago 2014, 19:17, editado 1 vez(es)
joram
joram
Administrador
Administrador

Mensagens : 3928
Reputação : 428
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Relatório JRT fix

Mensagem por Gil Raman em Sab 30 Ago 2014, 20:27

Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre :
Run by Usuario at 30/08/2014 20:23:04
High Elevated Privileges : OK
Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601)

Reciclagem vazia (02mn 15s)
Prefetcher vazio

========== Estado dos serviços ==========
SparkUpdater Parado
SupraSavingsService Parado

========== Chaves do Registo ==========
ELIMINÉ CLSID MPSK: {0480787f-0c28-11e3-b970-001e101f8924}
ELIMINÉ CLSID MPSK: {1959094b-fdff-11e3-9217-e81132b44dea}
ELIMINÉ CLSID MPSK: {19590958-fdff-11e3-9217-e81132b44dea}
ELIMINÉ CLSID MPSK: {31cf5a92-006f-11e4-a8d6-e81132b44dea}
ELIMINÉ CLSID MPSK: {34165d68-05f8-11e3-8081-e81132b44dea}
ELIMINÉ CLSID MPSK: {34165d74-05f8-11e3-8081-e81132b44dea}
ELIMINÉ CLSID MPSK: {4e3c79c0-168e-11e3-992c-e81132b44dea}
ELIMINÉ CLSID MPSK: {4e3c79ce-168e-11e3-992c-e81132b44dea}
ELIMINÉ CLSID MPSK: {7a084fb8-1458-11e4-a847-e81132b44dea}
ELIMINÉ CLSID MPSK: {88902452-1662-11e3-b7c3-e81132b44dea}
ELIMINÉ CLSID MPSK: {88902460-1662-11e3-b7c3-e81132b44dea}
ELIMINÉ CLSID MPSK: {8c32c8e6-2d32-11e3-b49a-e81132b44dea}
ELIMINÉ: HKCU\Software\PriceMeterUpdater
ELIMINÉ: HKCU\Software\UpdaterEX
ELIMINÉ: HKLM\Software\PriceMeterLiveUpdate
ELIMINÉ: HKCU\Software\Baidu Security
ELIMINÉ: HKLM\Software\Baidu Security
ELIMINÉ: HKLM\Software\globalUpdate

========== Valores do Registo ==========
Ausente Valor Perfil Padrão: FirewallRaz :
Ausente Valor Perfil Domínio FirewallRaz :

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINÉ Temporários windows (6) (196.608 octets)


========== Recapitulativo ==========
18 : Chaves do Registo
2 : Valores do Registo
1 : Pastas
1 : Ficheiros
2 : Estado dos serviços


End of clean in 03mn 07s

========== Caminho do ficheiro do relatório ==========
C:\Users\Usuario\AppData\Roaming\ZHP\ZHPFix[R1].txt - 29/08/2014 23:28:00 [11628]
C:\Users\Usuario\AppData\Roaming\ZHP\ZHPFix[R2].txt - 30/08/2014 20:25:20 [1986]
Gil Raman
Gil Raman
Iniciante
Iniciante

Mensagens : 23
Reputação : 0
Data de inscrição : 26/08/2014

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por joram em Sab 30 Ago 2014, 20:36

Boa Noite! Gil Raman

|- Baixe: |DelFix| ( ... de Xplode )

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Estando na página,clique em Download Now.
|- Salve-a em um local conveniente! ( desktop! )
|- Feche aplicativos que estejam abertos.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Com as caixinhas marcadas,clique Executar!
|- Tudo Ok?   isso aí!

Abs!
joram
joram
Administrador
Administrador

Mensagens : 3928
Reputação : 428
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Relatório Delfix

Mensagem por Gil Raman em Sab 30 Ago 2014, 20:54

# DelFix v10.8 - Relatório criado 30/08/2014 às 20:50:29
# Atualizado 29/07/2014 por Xplode
# Usuário : Usuario - GILRAMAN
# Sistema Operacional : Windows 7 Ultimate Service Pack 1 (32 bits)

~ Ativando UAC ... OK

~ Removendo ferramentas de desinfecção ...

Removido : C:\zoek_backup
Removido : C:\AdwCleaner
Removido : C:\Users\Usuario\AppData\Roaming\ZHP
Removido : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
Removido : C:\Program Files\ZHPDiag
Removido : C:\JRT.exe
Removido : C:\PhysicalDisk0_MBR.bin
Removido : C:\ZHPDiag2.exe
Removido : C:\Users\Usuario\Desktop\JRT.txt
Removido : C:\Users\Usuario\Desktop\ZHPDiag.lnk
Removido : C:\Users\Usuario\Desktop\ZHPDiag.txt
Removido : C:\Users\Usuario\Desktop\ZHPFix.lnk
Removido : C:\Users\Usuario\Desktop\ZHPFixReport.txt
Removido : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

~ Criando backup do registro ... OK

~ Limpando pontos da restauração do sistema ...

Removido : RP #250 [Revo Uninstaller's restore point - Baidu Antivirus | 08/24/2014 04:46:44]
Removido : RP #251 [Removed Bonjour | 08/24/2014 04:48:12]
Removido : RP #252 [Backup do Windows | 08/25/2014 00:19:59]
Removido : RP #253 [Windows Update | 08/26/2014 14:01:47]
Removido : RP #254 [zoek.exe restore point | 08/27/2014 14:12:05]
Removido : RP #255 [Windows Update | 08/29/2014 01:59:50]
Removido : RP #256 [Operação de restauração | 08/29/2014 17:25:27]
Removido : RP #257 [Windows Update | 08/29/2014 17:49:23]
Removido : RP #258 [Windows Update | 08/30/2014 12:17:21]

Novo ponto de restauração criado !

~ Redefinindo configurações do sistema ... OK

########## - EOF - ##########
Gil Raman
Gil Raman
Iniciante
Iniciante

Mensagens : 23
Reputação : 0
Data de inscrição : 26/08/2014

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por joram em Sab 30 Ago 2014, 21:02

Boa Noite! Gil Raman

|- Reparei que vc não executou o MBAM nesta máquina.
|- É necessário que execute o Malwarebytes,que é ótima ferramenta para detectar PUPs.

< Tutorial do Malwarebytes >

|- Leia este Tutorial e baixe o MBAM.
|- Configure-o a enviar suas detecções para a quarentena.
|- Poste o relatório ao concluir!

A+
joram
joram
Administrador
Administrador

Mensagens : 3928
Reputação : 428
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Relatório Log txt

Mensagem por Gil Raman em Dom 31 Ago 2014, 00:35

Malwarebytes Anti-Malware
[Você precisa estar registrado e conectado para ver este link.]

Data de Verificação: 30/08/2014
Hora da Verificação: 21:32:31
Logfile: Log.txt
Administrador: Sim

Versão: 2.00.2.1012
Malware Database: v2014.08.30.08
Rootkit Database: v2014.08.21.01
Licença: Trial
Proteção de Malware: Enabled
Proteção de Site Malicioso: Enabled
Self-protection: Desabilitado

OS: Windows 7 Service Pack 1
CPU: x86
Sistema de Arquivo: NTFS
Usuário: Usuario

Tipo da Verificação: Verificação Personalizada
Resultado: Completado
Arquivos Verificados: 506978
Tempo Decorrido: 2 hr, 18 min, 18 seg

Memória: Enabled
Inicialização: Enabled
Filesystem: Enabled
Arquivos: Enabled
Rootkits: Desabilitado
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processos: 1
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\995536eb-10c5-4980-bbd0-ce6515700031.exe, 1396, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8]

Módulos: 3
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\Interop.IWshRuntimeLibrary.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\Newtonsoft.Json.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\WebSocket4Net.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],

Chaves de Registro: 35
PUP.Optional.SupraSavings, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SupraSavingsService, Quarantined, [6e52e9e3512ae353fcc906cc54b0bb45],
PUP.Optional.WifiProtector.A, HKLM\SOFTWARE\Wifi Protector BI, Quarantined, [f6ca54787b00e254154dbb5cb44fea16],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdate.OneClickCtrl.9, Quarantined, [2a96a626d0abf04663c639d7877ce51b],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdate.OneClickProcessLauncherMachine, Quarantined, [05bbfbd1f08b043234f5fc14db285ea2],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdate.OneClickProcessLauncherMachine.1.0, Quarantined, [bd033894e09ba69071b8a769df2410f0],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdate.Update3WebControl.3, Quarantined, [457b626acfacd5618d9b16faf80bf709],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CoCreateAsync, Quarantined, [98281bb1ceadac8aa8819f7138cb3dc3],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CoCreateAsync.1.0, Quarantined, [b10f3d8f80fb300602277d93a45ffa06],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CoreClass, Quarantined, [a917a4283843e254bd6c28e812f1a65a],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CoreClass.1, Quarantined, [922eb81483f8a591d356ef21f80bd32d],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CoreMachineClass, Quarantined, [d5ebc8040774f93db2773ad60bf89769],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CoreMachineClass.1, Quarantined, [edd328a485f6ee4818118c84867d8779],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CredentialDialogMachine, Quarantined, [d6ea507ce7945ed810194ec2e51e9769],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.CredentialDialogMachine.1.0, Quarantined, [d7e99f2d88f3d2647dac9e72f70c8878],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.OnDemandCOMClassMachine, Quarantined, [1aa64a820279cd69e3465ab66e95fb05],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.OnDemandCOMClassMachine.1.0, Quarantined, [ab150fbd6c0f5cda3dec4ec2c83b4ab6],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.OnDemandCOMClassMachineFallback, Quarantined, [7a46903ce992b680d554e0300ff47b85],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.OnDemandCOMClassMachineFallback.1.0, Quarantined, [4977329a6c0f54e2d851fb159073fa06],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.OnDemandCOMClassSvc, Quarantined, [3e82e3e95922db5bf1381ff1bd468d73],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.OnDemandCOMClassSvc.1.0, Quarantined, [0cb406c6a5d650e69d8c4fc12fd435cb],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.ProcessLauncher, Quarantined, [c3fd1daf314a280efc2dcf41f90a46ba],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.ProcessLauncher.1.0, Quarantined, [655b7755b0cbb5819e8b868ab44f8f71],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3COMClassService, Quarantined, [c000a02cf487989e9f8aba56e221e917],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3COMClassService.1.0, Quarantined, [5f61f6d6a6d5de58d3562fe1cd3603fd],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3WebMachine, Quarantined, [ffc10ac24239c472b475a8685ca71ce4],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3WebMachine.1.0, Quarantined, [625e903ca6d5fb3b5ecb838d11f2a45c],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3WebMachineFallback, Quarantined, [ccf423a987f42d09f93048c8808337c9],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3WebMachineFallback.1.0, Quarantined, [ffc1824add9e1e181e0bab65877ce719],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3WebSvc, Quarantined, [645ca72568130b2bc960ce42c043fd03],
PUP.Optional.PriceMeter.A, HKLM\SOFTWARE\CLASSES\PriceMeterLiveUpdateUpdate.Update3WebSvc.1.0, Quarantined, [2e92cdff7a012d0980a9e12f52b13fc1],
PUP.Optional.CouponDownloader.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Coupon Downloader, Quarantined, [c5fbe4e85328bb7b34bcca3c37cc956b],
PUP.Optional.SupraSavings.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Supra Savings, Quarantined, [ac14d2fa2c4fd16537fd4fbf0af9e61a],
PUP.Optional.SuperFish.A, HKU\S-1-5-21-2578862199-3110367618-3840235185-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Quarantined, [516f13b967142214392bcd2ccb37a65a],
PUP.Optional.SaveSense.A, HKU\S-1-5-21-2578862199-3110367618-3840235185-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SaveSenseLive, Quarantined, [932ddeee85f685b1de554af85fa5ff01],
PUP.Optional.WifiProtector.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Wifi Protector BI, Quarantined, [9a266d5fd3a8b1852722606739c958a8],

Valores de Registro: 1
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_br_298, Quarantined, [c2fec3091e5dc27430a35aaf32d1f709],

Dados do Registro: 2
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe [Você precisa estar registrado e conectado para ver este link.] Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe [Você precisa estar registrado e conectado para ver este link.]
PUP.Optional.HelperBar.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, [Você precisa estar registrado e conectado para ver este link.] Good: ([Você precisa estar registrado e conectado para ver este link.] Bad: (http://feed.helperbar.com/?p=mKO_AwFzXIpYRa0ymfMnbpqxFRceu5du6tuU80dr30bk92p9jaa_t8Kke68W1_QYqDaxNMcupoi8kmw7_SLzOG7nhVWe5cg85eSAeCvYaIJ0h_usCZ5G3cPKoYvQOfebZlbFbZZt4qM0Wat51NpNc1jh1TiP1eJVeDYizZS3BNYIJh_7wML5vOA,&q={searchTerms}),Replaced,[5e6258744a319b9b9ca1756722e23ac6]

Pastas: 13
PUP.Optional.AdPeak.A, C:\temp, Quarantined, [c7f9309c2b502f07458c9965887abd43],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\core, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\defaults, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\defaults\preferences, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\userCode, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\locale, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\locale\en-US, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],

Arquivos: 103
PUP.Optional.SupraSavings, C:\Program Files\C6CAB4CF-DAB9-45B9-AE9A-961145402E07\hmhfslexky.exe, Quarantined, [6e52e9e3512ae353fcc906cc54b0bb45],
PUP.Optional.OneClickDownloader.A, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000, Quarantined, [1da36f5dc6b50c2abaa80445a9586c94],
PUP.Optional.DomalQ, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\00\00000000, Quarantined, [c5fbf0dccab181b5a7bff944956bad53],
PUP.Optional.InstallCore, C:\Users\Usuario\Downloads\ccleaner-4-16-4736-32-bits.exe, Quarantined, [1da38f3d6f0cbe7837e1dd87dd2753ad],
PUP.Optional.DomaIQ, C:\Users\Usuario\Downloads\flash_player_14_plugin.exe, Quarantined, [6957b11b4437d85e0340cc85c13f8d73],
PUP.Optional.Solimba, C:\Users\Usuario\Setups\Avast.exe, Quarantined, [f5cb10bc007b3105618ad63c12ef8b75],
PUP.Optional.RegCleanerPro, C:\Users\Usuario\Setups\rcpsetup_matomy_my30679.exe, Quarantined, [08b83498cdae76c0b38cb4648978f30d],
PUP.Optional.CouponAmazing, C:\Program Files\C6CAB4CF-DAB9-45B9-AE9A-961145402E07\xkymsyyrfh.dll, Quarantined, [566a1bb1740761d56eee4b88d82c7789],
PUP.Optional.CrossRider.A, C:\Program Files\Wifi Protector BI\utils.exe, Quarantined, [338db9136f0ce94d1a286fd252ae926e],
PUP.Optional.AdPeak.A, C:\temp\InstallFilter32.msi, Quarantined, [4b75e5e7e299c76f376c3ffe6d9324dc],
PUP.Optional.SupraSavings.A, C:\temp\t.msi, Quarantined, [3090fcd07b0076c014faeadbd82cdb25],
PUP.Optional.Solimba, D:\cenmatica 15 08 2013\Usuario\Downloads\Avast.exe, Quarantined, [7d43e7e5403b92a40cdf56bc9a6757a9],
PUP.Optional.RegCleanerPro, D:\cenmatica 15 08 2013\Usuario\Downloads\rcpsetup_matomy_my30679.exe, Quarantined, [724e507c07744fe742fd70a89170fa06],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\e0a80bcc-b85b-4f10-b438-a0228e0aa5c3-11, Quarantined, [4d73b7151566d2649cec64919d656898],
PUP.Optional.AdPeak.A, C:\temp\lsp2.log, Quarantined, [c7f9309c2b502f07458c9965887abd43],
PUP.Optional.AdPeak.A, C:\temp\debug.txt, Quarantined, [c7f9309c2b502f07458c9965887abd43],
PUP.Optional.AdPeak.A, C:\temp\t.txt, Quarantined, [c7f9309c2b502f07458c9965887abd43],
PUP.Optional.Superfish.A, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, Quarantined, [d0f0d2fadd9e9c9a72a550b59e65748c],
PUP.Optional.Superfish.A, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, Quarantined, [f8c85577cfacdf57a572fa0bb3508878],
Trojan.Banker, C:\Users\Usuario\AppData\Local\GuUnacE.txt, Quarantined, [be026567196277bfb7c6031140c334cc],
Malware.Trace.E, C:\Users\Usuario\AppData\Local\windataup.inf, Quarantined, [4f7175573f3c989e3d38cb6757adb947],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\e0a80bcc-b85b-4f10-b438-a0228e0aa5c3-11.job, Quarantined, [b9072ca0d6a587af988f6fe5d33155ab],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\995536eb-10c5-4980-bbd0-ce6515700031.job, Quarantined, [fec258748deede58cfe1ce887b89936d],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633, Quarantined, [7749a9231a612b0bf7bad0867490e41c],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\995536eb-10c5-4980-bbd0-ce6515700031, Quarantined, [9927319bd6a5b482822ff56164a04fb1],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\1293297481.mxaddon, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\89a3d4cf-0789-467d-828a-869a7bb417f1.crx, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\995536eb-10c5-4980-bbd0-ce6515700031.exe, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\e0a80bcc-b85b-4f10-b438-a0228e0aa5c3-4.exe, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\e0a80bcc-b85b-4f10-b438-a0228e0aa5c3.crx, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\e0a80bcc-b85b-4f10-b438-a0228e0aa5c3.xpi, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\Interop.IWshRuntimeLibrary.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\Newtonsoft.Json.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\SuperSocket.ClientEngine.Common.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\SuperSocket.ClientEngine.Core.dll, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\SuperSocket.ClientEngine.Protocol.dll, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\Uninstall.exe, Quarantined, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.WifiProtector.A, C:\Program Files\Wifi Protector BI\WebSocket4Net.dll, Delete-on-Reboot, [9a266d5fd3a8b1852722606739c958a8],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome.manifest, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\install.rdf, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\4ed93624db0e80092840085f58447458.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\6139ccd4c767ed0cbe62250dc0f42397.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\6f0ed4f50f5972d5efa96e6f90b15a00.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\b8c1c92878d9c94ab70c324d392bf3d0.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\background.html, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\browser.xul, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\d16ec3349edf84cba2c82243359079f9.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\dialog.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\ffCoreFilesIndex.txt, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\options.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\options.xul, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\search_dialog.xul, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\core\19c351d0301385fc613d9973d6c47d02.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\core\297a3faf50fc397a89812bbf4016c332.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\core\7531cc9186f8e8e95ff80a44e27e5fca.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\core\ac727766deee0fff31c8b859ced5cbf2.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\chrome\content\core\ceaea61a56d9827cc503748b034c3114.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\defaults\preferences\prefs.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\manifest.xml, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins.json, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\1.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\102.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\104.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\13.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\14.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\16.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\17.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\177.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\180.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\182.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\183.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\192.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\207.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\21.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\22.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\220.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\221.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\223.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\226.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\230.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\244.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\246.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\263.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\268.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\273.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\28.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\281.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\284.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\289.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\300.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\4.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\47.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\64.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\7.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\72.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\78.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\9.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\91.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\93.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\plugins\98.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\userCode\background.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\extensionData\userCode\extension.js, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],
PUP.Optional.CrossRider.A, C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\gqsbjvu4.default\extensions\4b5bad53-5f78-4be1-812c-77f08c017252@gmail.com\locale\en-US\translations.dtd, Quarantined, [c000d2fa6d0e48eebb43cf13946e7f81],

Physical Sectors: 0
(No malicious items detected)
Gil Raman
Gil Raman
Iniciante
Iniciante

Mensagens : 23
Reputação : 0
Data de inscrição : 26/08/2014

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por joram em Dom 31 Ago 2014, 03:28

Bom Dia! Gil Raman

|- O volume de detecções PUPs foi elevado!
|- Limpe a quarentena do Malwarebytes,para que não seja detectada por Eset.

|- Baixe: < [Você precisa estar registrado e conectado para ver esta imagem.] >

|- Salve-o no desktop!
|- Desabilite seu antivírus e execute o arquivo esetsmartinstaller_enu.exe <<
|- Aceite o contrato e marque: "YES, I accept the Terms of Use"
[Você precisa estar registrado e conectado para ver esta imagem.]

|- Em "Computer scan settings",marque:

<1> Scan archives
<2> Scan for potentially unsafe applications
<3> Enable Anti-Stealth technology
<4> Remove found threats

|- Clique em "Advanced settings".
|- Clique "Change" e marque a caixa "Computador".
|- Clique: "Start" >> Aguarde! ( Pode durar algumas horas,esse scan... )
|- Ao concluir,clique em "List of found threats".
|- Clique em "Export to text file" e salve o relatório no desktop.
|- Clique "Back" >> "Finish".
|- Poste o relatório!

Abs!
joram
joram
Administrador
Administrador

Mensagens : 3928
Reputação : 428
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por Gil Raman em Dom 31 Ago 2014, 19:34

C:\Program Files\Atube\aTube_Catcher.exe a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application deleted - quarantined
C:\Program Files\Atube\aTube_Catcher_Setup.exe a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application deleted - quarantined
C:\Program Files\C6CAB4CF-DAB9-45B9-AE9A-961145402E07\SupraSavingsService.exe a variant of Win32/AdWare.Adpeak.J application cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\01 - Sucessos Atuais.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\02 - Pagodes.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\03 - Forrós Atuais.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\04 - Grandes Sucessos.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\05 - Sambas Diversos.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\06 - Martinho da Vila.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\07 - Zeca Pagodinho 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\07 - Zeca Pagodinho 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\08 - Fundo de Quintal.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\09 - João Nogueira.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\10 - Jorge Aragão.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\11 - Luiz  Ayrão.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\12 - Roberto Ribeiro.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\13 - Alcione.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\14 - Beth Carvalho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\15 - Clara Nunes.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\18 - Bezerra da Silva 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\18 - Bezerra da Silva 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\18 - Bezerra da Silva 03.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\19 - Bregas.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\19 - Milton Carlos.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Evaldo Braga.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 03.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 04.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 05.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 06.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\21 - Zezo 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\21 - Zezo 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\24 - Agepê.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\25 - Wando.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\26 - Benito de Paula.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\27 - Paulo Diniz.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\32 - Reginaldo Rossi 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\32 - Reginaldo Rossi 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\32 - Reginaldo Rossi 03.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\33 - Jovem Guarda.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\34 - Os Incriveis.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\35 - Os Feveres.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\36 - Renato & Seus Blue Caps.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\37 - Nelson Ned.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\39 - Giliard.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\47 - Dança de salão.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\47 - Decada Romantica.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\56 - Boleros e Salsas.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\67 - Zé Ramalho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\68 - Fagner.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\69 - Geraldo Azevedo.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\70 - Elba Ramalho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\70 - Raul Seixas.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\75 - Jorge de Altinho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\76 - Duquinha.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\77 - Claudio Rios.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\94 - Alcymar Monteiro.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\94 - Amado Batista.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Music\Pen 2\KINGSTON\94 - Jose Orlando.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jmddbcndkilgmlocmpnpccjfoelofepl\1.26.25_0\extensionData\plugins\91.js JS/Toolbar.Crossrider.B potentially unwanted application deleted - quarantined
C:\Users\Usuario\AppData\Roaming\Opera Software\Opera Stable\Extensions\jmddbcndkilgmlocmpnpccjfoelofepl\1.26.25_0\extensionData\plugins\91.js JS/Toolbar.Crossrider.B potentially unwanted application deleted - quarantined
C:\Users\Usuario\CEL\FormatFactory\60223_format_factory_296.exe a variant of Win32/Hao123.A potentially unwanted application deleted - quarantined
C:\Users\Usuario\Downloads\ccleaner-4-16-4736-32-bits [1].exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\01 - Sucessos Atuais.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\02 - Pagodes.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\03 - Forrós Atuais.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\04 - Grandes Sucessos.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\05 - Sambas Diversos.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\06 - Martinho da Vila.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\07 - Zeca Pagodinho 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\07 - Zeca Pagodinho 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\08 - Fundo de Quintal.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\09 - João Nogueira.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\10 - Jorge Aragão.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\11 - Luiz  Ayrão.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\12 - Roberto Ribeiro.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\13 - Alcione.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\14 - Beth Carvalho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\15 - Clara Nunes.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\18 - Bezerra da Silva 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\18 - Bezerra da Silva 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\18 - Bezerra da Silva 03.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\19 - Bregas.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\19 - Milton Carlos.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Evaldo Braga.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 03.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 04.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 05.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\20 - Seresta - Violão de Ouro 06.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\21 - Zezo 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\21 - Zezo 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\24 - Agepê.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\25 - Wando.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\26 - Benito de Paula.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\27 - Paulo Diniz.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\32 - Reginaldo Rossi 01.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\32 - Reginaldo Rossi 02.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\32 - Reginaldo Rossi 03.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\33 - Jovem Guarda.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\34 - Os Incriveis.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\35 - Os Feveres.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\36 - Renato & Seus Blue Caps.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\37 - Nelson Ned.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\39 - Giliard.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\47 - Dança de salão.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\47 - Decada Romantica.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\56 - Boleros e Salsas.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\67 - Zé Ramalho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\68 - Fagner.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\69 - Geraldo Azevedo.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\70 - Elba Ramalho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\70 - Raul Seixas.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\75 - Jorge de Altinho.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\76 - Duquinha.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\77 - Claudio Rios.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\94 - Alcymar Monteiro.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\94 - Amado Batista.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Music\Pen 2\KINGSTON\94 - Jose Orlando.lnk LNK/Agent.AK trojan cleaned by deleting - quarantined
C:\Users\Usuario\Setups\aTube_Catcher.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted - quarantined
Gil Raman
Gil Raman
Iniciante
Iniciante

Mensagens : 23
Reputação : 0
Data de inscrição : 26/08/2014

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por joram em Dom 31 Ago 2014, 19:47

Boa Noite! Gil Raman

|- Baixe: < UsbFix > ( ...de C_XX & El Desaparecido )

|- Salve-o no desktop!
|- Abra a ferramenta UsbFix >> Clique: Opções

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Marque a caixa "Desativar Autorun/AutoPlay".
|- Clique "Aplicar".
|- Insira,agora,seu pendrive infectado e na tela principal da ferramenta,clique "Limpar".
|- Poste o relatório!


A+
joram
joram
Administrador
Administrador

Mensagens : 3928
Reputação : 428
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por joram em Qua 01 Out 2014, 16:30

Tópico Arquivado

Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado. Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da Equipe da Moderação solicitando o desbloqueio.

_________________
Fórum PC Brasil >> O que há de melhor,para desinfectar seu computador!
Fórum SecSecurity >> Não deixem de conhecer!
Fórum iMasters >> Tradição em informática!
joram
joram
Administrador
Administrador

Mensagens : 3928
Reputação : 428
Data de inscrição : 26/01/2014
Localização : Rio de Janeiro

Voltar ao Topo Ir em baixo

zoek - Como remover Baidu e CE_umbrella  - Página 2 Empty Re: Como remover Baidu e CE_umbrella

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Página 2 de 2 Anterior  1, 2

Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum