Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
EduSemensato

Navegador abrindo janelas estranhas

Recommended Posts

Primeiramente desejo um feliz ano novo a todos.

 

Meu navegador esta abrindo algumas janelas estranhas ultimamente, lentidão, travamentos. Tentei rodar o mencionado programa afim de recorrer ajuda da equipe, porém estou tendo dificuldades com o mesmo porque eu tento executá-lo, não dá um erro, mas ele não fecha e não termina nunca (rodou a madrugada inteira).

 

Estou utilizando o Windows 10 x64

 

Grato de sua ajuda,

Eduardo

 

Edit 1 - Consegue nessa madrugada efetuar a varredura com o ZA-Scan, estou anexando o relatório. 

ZA-Scan.txt

Editado por T3k1NG
Consegui realizar o teste

Compartilhar este post


Link para o post
Compartilhar em outros sites

@T3k1NG

 

Por favor, atente para o seguinte:

  • Sobre o Fórum: Este é um espaço privado, não público. Seu uso é um privilégio, não um direito;
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • IMPORTANTE: Caso tenha programas de ativação do windows ou de compartilhamento de torrent, sugiro desinstalar. Só irei dar procedimento na analise após a remoção. Regras do forum;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Respeite a ordem das instruções passadas;
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

Siga os passos abaixo:

ETAPA 1

Baixe o Malwarebytes Anti-Malware (MBAM) do link abaixo e salve no seu desktop.
https://downloads.malwarebytes.org/file/mbam_current/
 
Clique duas vezes no mbam-setup.exe e siga o solicitado para instalar o programa.

  • Na aba Análise > Analise Personalizada marque a opção Procurar rootkits e as entradas referente a instalação do sistema operacional. Normalmente é o drive C:;
  • Clique em Analisar Agora. Aguarde, pois o scan pode demorar;
  • Ao acabar o scan, se houver itens encontrados, certifique-se que estejam todas marcados e clique no botão Remover Selecionadas ou Colocar em Quarentena;
  • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo);
  • Caso o mbam não seja executado automaticamente após a reinicialização, execute manualmente;
  • O log é automaticamente salvo pelo MBAM e para vê-lo, clique na aba Relatórios na janela principal do programa;
  • Clique duas vezes no log (Registro de verificação). Clique no botão Exportar e utilize o formato .txt para exportar o log. Salve na Área de Trabalho.


ATENÇÃO: Abra o arquivo, selecione tudo, copie e cole o conteúdo deste log em sua próxima resposta.

NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

ETAPA 2

Faça o download do AdwCleaner de um dos links abaixo e salve no desktop.
https://toolslib.net/downloads/viewdownload/1-adwcleaner/
http://www.bleepingcomputer.com/download/adwcleaner/

Clique em DOWNLOAD NOW para baixar o arquivo.

Execute o adwcleaner.exe

OBS: Usuários do Windows Vista, 7, 8/8.1 e windows 10 clique com o direito sobre o arquivo AdwCleaner.exe, depois clique em VRIfczU.png

Clique em VERIFICAR. Após o termino clique em LIMPAR e aguarde.

Será aberto o bloco de notas com o resultado.

ATENÇÃO: Selecione, copie e cole o seu conteúdo na próxima resposta.

ETAPA 3

Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Baixe jrt.exe do link abaixo e salve no desktop.
http://www.bleepingcomputer.com/download/junkware-removal-tool/

Dê um duplo-clique para executar o Junkware Removal Tool (JRT).

OBS: Usuários do Windows Vista, 7, 8/8.1 e windows 10 clique com o direito sobre o arquivo jrt.exe, depois clique em VRIfczU.png

A ferramenta comecará o exame do seu sistema. Tenha paciência pois pode demorar um pouco dependendo da quantidades de ítens a examinar.

Ao final, um log se abrirá. É salvo no desktop com o nome de JRT.txt.

ATENÇÃO: Selecione, copie e cole o conteúdo deste log na sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Bom dia! @Elias Pereira

     

    O Malwarebytes não solicitou que eu excluísse nada.

    Também notei que tem alguns "crack", porém meu windows é original de fabrica.

     

    Malwarebytes
    www.malwarebytes.com

    -Detalhes de registro-
    Data da análise: 05/01/18
    Hora da análise: 19:04
    Arquivo de registro: 14540d02-f25c-11e7-8090-9883896d6700.json
    Administrador: Sim

    -Informação do software-
    Versão: 3.3.1.2183
    Versão de componentes: 1.0.262
    Versão do pacote de definições: 1.0.3633
    Licença: Versão de Avaliação

    -Informação do sistema-
    Sistema operacional: Windows 10 (Build 16299.192)
    CPU: x64
    Sistema de arquivos: NTFS
    Usuário: DESKTOP-L128697\Eduardo

    -Resumo da análise-
    Tipo de análise: Análise Customizada
    Resultado: Concluído
    Objetos verificados: 392198
    Ameaças detectadas: 205
    Ameaças em quarentena: 0
    (Nenhum item malicioso detectado)
    Tempo decorrido: 5 hr, 39 min, 27 seg

    -Opções da análise-
    Memória: Habilitado
    Inicialização: Habilitado
    Sistema de arquivos: Habilitado
    Arquivos compactados: Habilitado
    Rootkits: Habilitado
    Heurística: Habilitado
    PUP: Detectar
    PUM: Detectar

    -Detalhes da análise-
    Processo: 0
    (Nenhum item malicioso detectado)

    Módulo: 0
    (Nenhum item malicioso detectado)

    Chave de registro: 13
    PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{746AB259-6474-4111-8966-1C62F9A6E063}, Nenhuma ação do usuário, [1018], [396322],1.0.3633
    PUP.Optional.DriverUpdate, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities, Inc.\DriverApp, Nenhuma ação do usuário, [1348], [341522],1.0.3633
    PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AB02F463-EF1A-4291-B4BE-FFFCEBB9A7BD}, Nenhuma ação do usuário, [1018], [334892],1.0.3633
    PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{AB02F463-EF1A-4291-B4BE-FFFCEBB9A7BD}, Nenhuma ação do usuário, [1018], [334892],1.0.3633
    PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SlimDrivers Startup, Nenhuma ação do usuário, [1018], [334892],1.0.3633
    Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CCE627ED-E8E8-4D01-872E-CBF43163AB89}, Nenhuma ação do usuário, [71], [475466],1.0.3633
    Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{CCE627ED-E8E8-4D01-872E-CBF43163AB89}, Nenhuma ação do usuário, [71], [475467],1.0.3633
    Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SystemProcess, Nenhuma ação do usuário, [71], [475467],1.0.3633
    PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities Inc\SlimDrivers, Nenhuma ação do usuário, [1018], [396321],1.0.3633
    CrackTool.Agent.Keygen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AutoKMS, Nenhuma ação do usuário, [311], [89405],1.0.3633
    CrackTool.Agent.Keygen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D433CEB8-5C2D-44D8-847A-088B9671E5FB}, Nenhuma ação do usuário, [311], [89405],1.0.3633
    CrackTool.Agent.Keygen, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{D433CEB8-5C2D-44D8-847A-088B9671E5FB}, Nenhuma ação do usuário, [311], [89405],1.0.3633
    Trojan.BitCoinMiner, HKU\S-1-5-21-3021737689-3799637209-32367559-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SystemProcess, Nenhuma ação do usuário, [71], [475470],1.0.3633

    Valor de registro: 2
    PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AB02F463-EF1A-4291-B4BE-FFFCEBB9A7BD}|PATH, Nenhuma ação do usuário, [1018], [334915],1.0.3633
    Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CCE627ED-E8E8-4D01-872E-CBF43163AB89}|PATH, Nenhuma ação do usuário, [71], [475466],1.0.3633

    Dados de registro: 0
    (Nenhum item malicioso detectado)

    Fluxo de dados: 0
    (Nenhum item malicioso detectado)

    Pasta: 49
    Trojan.BitCoinMiner, C:\USERS\EDUARDO\APPDATA\ROAMING\SYSTEMPROCESS, Nenhuma ação do usuário, [71], [475470],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Program Files (x86)\SlimDrivers, Nenhuma ação do usuário, [1018], [334846],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers, Nenhuma ação do usuário, [1018], [335035],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_168c&dev_0036&subsys_411c144d, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_06&subclass_01&prot_01, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_10ec&dev_8136&rev_07, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\genuineintel_-_intel64, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_8086&dev_9cba, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\vid_0cf3&pid_3004, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicdisplay, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\compositebus, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicrender, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\spaceport, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\storage\volume, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\root_hub30, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\acpi0003, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\msft0101, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\vdrvroot, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi_hal\uefi, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0c0330, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\mssmbios, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\composite, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3432, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3433, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3437, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\pnp0c0a, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_0e, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\swenum, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\rdpbus, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0403, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\volmgr, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\umbus, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\kdnic, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi_hal, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\gendisk, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\storage, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\hdaudio, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Images, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\USERS\EDUARDO\APPDATA\LOCAL\SLIMWARE UTILITIES INC\SLIMDRIVERS, Nenhuma ação do usuário, [1018], [396320],1.0.3633

    Arquivo: 141
    PUP.Optional.DriverUpdate, C:\WINDOWS\System32\drivers\SWDUMon.sys, Nenhuma ação do usuário, [1348], [448467],0.0.0
    PUP.Optional.SlimCleanerPlus, C:\WINDOWS\SYSTEM32\TASKS\SLIMDRIVERS STARTUP, Nenhuma ação do usuário, [1018], [334892],1.0.3633
    Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\TASKS\SYSTEMPROCESS, Nenhuma ação do usuário, [71], [475467],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\PROGRAM FILES (X86)\SLIMDRIVERS\SLIMDRIVERS.EXE, Nenhuma ação do usuário, [1018], [472306],1.0.3633
    CrackTool.Agent.Keygen, C:\WINDOWS\SYSTEM32\TASKS\AutoKMS, Nenhuma ação do usuário, [311], [89405],1.0.3633
    CrackTool.Agent.Keygen, C:\WINDOWS\AUTOKMS.EXE, Nenhuma ação do usuário, [311], [89405],1.0.3633
    Trojan.BitCoinMiner, C:\USERS\EDUARDO\APPDATA\ROAMING\SYSTEMPROCESS\SYSTEMPROCESS.EXE, Nenhuma ação do usuário, [71], [475470],1.0.3633
    PUP.Optional.FFHijacker, C:\PROGRAM FILES\MOZILLA FIREFOX\DEFAULTS\PREF\830270062.JS, Nenhuma ação do usuário, [1103], [330892],1.0.3633
    PUP.Optional.FFHijacker, C:\PROGRAM FILES\MOZILLA FIREFOX\830270062.CFG, Nenhuma ação do usuário, [1103], [345408],1.0.3633
    PUP.Optional.APNToolBar, C:\PROGRAM FILES (X86)\FREETIME\FORMATFACTORY\FFMODULES\PACKAGE\ASK\ASKPIP_FF_.EXE, Nenhuma ação do usuário, [6162], [76243],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Program Files (x86)\SlimDrivers\Open-Source Licenses.txt, Nenhuma ação do usuário, [1018], [334846],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Program Files (x86)\SlimDrivers\UnifiedLogger.dll, Nenhuma ação do usuário, [1018], [334846],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers\SlimDrivers Help.lnk, Nenhuma ação do usuário, [1018], [335035],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers\SlimDrivers.lnk, Nenhuma ação do usuário, [1018], [335035],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\000A4657AF91AD50841614DDDCFDAD77900000000004402887.exe, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\001C7B7BFA1A528BA17E684A4AF388F1EC000000001B881DE5.exe, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\005926BB8F10C02B12E1F30F68E116E7D5000000000CA15CED.exe, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\00A6F5945CF49B396D65B87C82D2AABDC30000000000D03F9F.exe, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\00C1D2708662789F607FB38402C5BB57A500000000004141B9.exe, Nenhuma ação do usuário, [1018], [334848],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\USERS\EDUARDO\APPDATA\LOCAL\SLIMWARE UTILITIES INC\SLIMDRIVERS\IGNORES.DAT, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\acpi0003\cmbatt.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\acpi0003\cmbatt.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\acpi0003\CmBatt.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\genuineintel_-_intel64\cpu.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\genuineintel_-_intel64\cpu.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\genuineintel_-_intel64\intelppm.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3432\ialpssi_i2c.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3432\ialpssi_i2c.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3432\iaLPSSi_I2C.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3433\ialpssi_i2c.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3433\ialpssi_i2c.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3433\iaLPSSi_I2C.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3437\iaLPSS_GPIO.cat, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3437\ialpss_gpio.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3437\ialpss_gpio.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\int3437\iaLPSS_GPIO.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\msft0101\tpm.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\msft0101\tpm.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\msft0101\tpm.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\pnp0c0a\cmbatt.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\pnp0c0a\cmbatt.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi\pnp0c0a\CmBatt.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi_hal\uefi\uefi.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi_hal\uefi\uefi.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\acpi_hal\uefi\uefi.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\gendisk\disk.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\gendisk\disk.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\gendisk\disk.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0403\hdaudbus.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0403\hdaudbus.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0403\hdaudbus.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0c0330\usbxhci.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0c0330\usbxhci.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\cc_0c0330\USBXHCI.SYS, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_10ec&dev_8136&rev_07\rt640x64.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_10ec&dev_8136&rev_07\rt640x64.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_10ec&dev_8136&rev_07\rt640x64.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_10ec&dev_8136&rev_07\RtNicProp64.dll, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_168c&dev_0036&subsys_411c144d\athw8x.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_168c&dev_0036&subsys_411c144d\athw8x.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_168c&dev_0036&subsys_411c144d\athw8x.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_8086&dev_9cba\HECI.cat, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_8086&dev_9cba\heci.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_8086&dev_9cba\heci.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\pci\ven_8086&dev_9cba\TeeDriverW8x64.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicdisplay\basicdisplay.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicdisplay\basicdisplay.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicdisplay\BasicDisplay.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicrender\basicrender.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicrender\basicrender.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\basicrender\BasicRender.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\compositebus\compositebus.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\compositebus\compositebus.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\compositebus\CompositeBus.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\kdnic\kdnic.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\kdnic\kdnic.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\kdnic\kdnic.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\mssmbios\mssmbios.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\mssmbios\mssmbios.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\mssmbios\mssmbios.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\rdpbus\rdpbus.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\rdpbus\rdpbus.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\rdpbus\rdpbus.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\spaceport\spaceport.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\spaceport\spaceport.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\spaceport\spaceport.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\swenum\swenum.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\swenum\swenum.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\swenum\swenum.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\umbus\umbus.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\umbus\umbus.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\umbus\umbus.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\vdrvroot\vdrvroot.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\vdrvroot\vdrvroot.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\vdrvroot\vdrvroot.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\volmgr\volmgr.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\volmgr\volmgr.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\root\volmgr\volmgr.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\storage\volume\volume.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\storage\volume\volume.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\storage\volume\volume.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_06&subclass_01&prot_01\WpdMtp.dll, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_06&subclass_01&prot_01\wpdmtp.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_06&subclass_01&prot_01\wpdmtp.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_06&subclass_01&prot_01\WpdMtpDr.dll, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_06&subclass_01&prot_01\WpdMtpUS.dll, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_0e\usbvideo.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_0e\usbvideo.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\class_0e\usbvideo.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\composite\usb.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\composite\usb.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\composite\usbccgp.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\root_hub30\usbhub3.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\root_hub30\usbhub3.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\root_hub30\USBHUB3.SYS, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\vid_0cf3&pid_3004\atheros_bth.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\vid_0cf3&pid_3004\atheros_bth.PNF, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\usb\vid_0cf3&pid_3004\btfilter.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170927T005107150832\module_info, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Images\acer.png, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-09-26  21-50-27 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-10-25  15-19-22 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-11-10  12-21-15 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-11-11  20-10-11 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-11-22  12-06-57 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-11-27  12-46-28 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-12-18  19-14-07 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-12-31  19-59-58 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2018-01-01  23-22-45 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2018-01-04  12-50-56 0.log, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\rupdates.db, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\settings.db, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\supdates.db, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.cat, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.inf, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.sys, Nenhuma ação do usuário, [1018], [396320],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\WINDOWS\INSTALLER\6DDF4BB8.MSI, Nenhuma ação do usuário, [1018], [472306],1.0.3633
    PUP.Optional.SlimCleanerPlus, C:\WINDOWS\TASKS\SLIMDRIVERS STARTUP.JOB, Nenhuma ação do usuário, [1018], [334888],1.0.3633
    RiskWare.Tool.CK, C:\WINDOWS\KMSERVICE.EXE, Nenhuma ação do usuário, [234], [133350],1.0.3633

    Setor físico: 0
    (Nenhum item malicioso detectado)


    (end)

    adicionado 0 minutos depois

    # AdwCleaner 7.0.6.0 - Logfile created on Sat Jan 06 13:29:38 2018
    # Updated on 2017/21/12 by Malwarebytes
    # Running on Windows 10 Home Single Language (X64)
    # Mode: clean
    # Support: https://www.malwarebytes.com/support

    ***** [ Services ] *****

    No malicious services deleted.

    ***** [ Folders ] *****

    Deleted: C:\Users\Public\Documents\Downloaded Installers
    Deleted: C:\ProgramData\DriverSetupUtility
    Deleted: C:\Program Files\DriverSetupUtility
    Deleted: C:\Users\All Users\DriverSetupUtility
    Deleted: C:\Users\Todos os Usuários\DriverSetupUtility
    Deleted: C:\Users\Eduardo\AppData\Local\slimware utilities inc
    Deleted: C:\Users\Eduardo\AppData\Local\SlimWare Utilities Inc


    ***** [ Files ] *****

    No malicious files deleted.

    ***** [ DLL ] *****

    No malicious DLLs cleaned.

    ***** [ WMI ] *****

    No malicious WMI cleaned.

    ***** [ Shortcuts ] *****

    No malicious shortcuts cleaned.

    ***** [ Tasks ] *****

    No malicious tasks deleted.

    ***** [ Registry ] *****

    Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}
    Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
    Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
    Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
    Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
    Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
    Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
    Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\952BA647474611149866C1269F6A0E36
    Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Features\952BA647474611149866C1269F6A0E36
    Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Products\952BA647474611149866C1269F6A0E36
    Deleted: [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc
    Deleted: [Key] - HKU\S-1-5-21-3021737689-3799637209-32367559-1001\Software\SlimWare Utilities Inc
    Deleted: [Key] - HKCU\Software\SlimWare Utilities Inc
    Deleted: [Key] - HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.


    ***** [ Firefox (and derivatives) ] *****

    No malicious Firefox entries deleted.

    ***** [ Chromium (and derivatives) ] *****

    No malicious Chromium entries deleted.

    *************************

    ::Tracing keys deleted
    ::Winsock settings cleared
    ::Additional Actions: 0

    *************************

    C:/AdwCleaner/AdwCleaner[S0].txt - [2858 B] - [2018/1/6 13:26:3]


    ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

    adicionado 1 minuto depois

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Malwarebytes
    Version: 8.1.4 (07.09.2017)
    Operating System: Windows 10 Home Single Language x64
    Ran by Eduardo (Administrator) on 06/01/2018 at 11:33:08,93
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


    File System: 4

    Successfully deleted: C:\ProgramData\ammyy (Folder)
    Successfully deleted: C:\ProgramData\mntemp (File)
    Successfully deleted: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job (Task)
    Successfully deleted: C:\WINDOWS\Tasks\SlimDrivers Startup.job (Task)

    Registry: 2

    Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\SWDUMon (Registry Key)
    Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9FA6D383-8D73-453D-980D-4B18E26B14B6} (Registry Key)


    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 06/01/2018 at 11:37:02,31
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Editado por EduSemensato

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • @Elias Pereira boa noite meu caro!

     

    Passei e não detectou mais nenhum.

    Creio que ele excluiu de modo automatico.

     

    Atenciosamente,

    EduSemensato

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    @EduSemensato

     

    Faça o download do RogueKiller by Tigzy, e salve na sua área de trabalho (Desktop).
    roguekiller.exe (x64) << link

    • Feche todos os programas
    • Execute o RogueKiller.exe.
      ** Usuários do Windows Vista, Windows 7, 8, 8.1 e Windows 10:
      Clique com o direito sobre o arquivo rogueKiller.exe, depois clique em VRIfczU.png.
    • Quando a janela da Eula aparecer, clique em Accept.
    • Selecione a aba SCAN
    • Clique em START SCAN
    • Aguarde ate que o scan termine...
    • Clique no botão OPEN REPORT
    • Clique na opção EXPORT TXT e salve na Área de Trabalho com o nome de roguekiller.txt
    • Clique em OK e feche o RogueKiller.


    Atente para abrir o arquivo, copiar e colar todo o conteúdo na sua próxima resposta

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Boa noite caro @Elias Pereira segue o log

     

     

    RogueKiller V12.11.31.0 (x64) [Jan  2 2018] (Free) por Adlice Software
    mail : http://www.adlice.com/contact/
    Feedback : https://forum.adlice.com
    Site : http://www.adlice.com/download/roguekiller/
    Blog : http://www.adlice.com

    Sistema Operacional : Windows 10 (10.0.16299) 64 bits version
    Iniciou : Modo normal
    Usuário : Eduardo [Administrador]
    Started from : C:\Users\Eduardo\Desktop\RogueKiller_portable64.exe
    Modo : Escanear -- Data : 01/08/2018 21:21:33 (Duration : 00:39:22)

    ¤¤¤ Processos : 0 ¤¤¤

    ¤¤¤ Registro : 8 ¤¤¤
    [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://samsung17win10.msn.com/?pc=SMTE -> Encontrado
    [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://samsung17win10.msn.com/?pc=SMTE -> Encontrado
    [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://samsung17win10.msn.com/?pc=SMTE -> Encontrado
    [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://samsung17win10.msn.com/?pc=SMTE -> Encontrado
    [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5D431758-C841-4AFD-B8D8-574227988794} : v2.27|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Users\Eduardo\AppData\Roaming\SystemProcess\SystemProcess.exe|Name=SystemProcess| [x] -> Encontrado
    [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5599E586-EEAD-46FD-A264-6C68E1578113} : v2.27|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Users\Eduardo\AppData\Roaming\SystemProcess\SystemProcess.exe|Name=SystemProcess| [x] -> Encontrado
    [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Encontrado
    [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Encontrado

    ¤¤¤ Tarefas : 1 ¤¤¤
    [PUP.Gen1] \ACC -- C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat -> Encontrado

    ¤¤¤ Arquivos : 1 ¤¤¤
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware -> Encontrado

    ¤¤¤ WMI : 0 ¤¤¤

    ¤¤¤ Arquivos de hosts : 0 ¤¤¤

    ¤¤¤ Antirootkit : 0 (Driver: Carregado) ¤¤¤

    ¤¤¤ Navegadores : 0 ¤¤¤

    ¤¤¤ Verificação da MBR : ¤¤¤
    +++++ PhysicalDrive0: WDC WD10JPVX-35JC3T0 +++++
    --- User ---
    [MBR] 5aef40578600422a06b842a9ae851aa2
    [BSP] 980fe462507a6040b4abe904a693c5ba : Empty MBR Code
    Partition table:
    0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 100 MB
    1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 206848 | Size: 128 MB
    2 - Basic data partition | Offset (sectors): 468992 | Size: 939833 MB
    3 - [SYSTEM][MAN-MOUNT]  | Offset (sectors): 1925249024 | Size: 874 MB
    4 - [SYSTEM][MAN-MOUNT] ??????a | Offset (sectors): 1927038978 | Size: 11908 MB
    5 - [SYSTEM][MAN-MOUNT] ????? | Offset (sectors): 1951426563 | Size: 1024 MB
    User = LL1 ... OK
    User = LL2 ... OK

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    @EduSemensato

     

    Feche todos os programas

    • Execute RogueKiller.exe.
      ** Usuários do Windows Vista, 7, 8/8.1 e windows 10:
      Clique com o direito sobre o arquivo rogueKiller.exe, depois clique em VRIfczU.png
    • Quando a Eula aparecer, clique em Accept.
    • Selecione a aba SCAN e clique em START SCAN
    • Aguarde ate que o scan termine.
    • >>>>>>> Navegue entre as abas e marque todas as entradas encontradas <<<<<<<
    • Clique em REMOVE SELECTED
    • Aguarde ate que o programa termine de deletar as infecções.
    • Clique no botão OPEN REPORT e depois em EXPORT TXT
    • Salve como report.txt na sua Área de Trabalho

    Abra o arquivo report.txt salvo no sua Área de Trabalho, copie e cole todo o conteudo na sua próxima resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • @Elias Pereira boa noite!

     

    Segue, porém as guias continuam sendo abertas. O firewall do Malwarebytes está bloqueando as mesmas.

     

    RogueKiller V12.11.31.0 (x64) [Jan  2 2018] (Free) por Adlice Software
    mail : http://www.adlice.com/contact/
    Feedback : https://forum.adlice.com
    Site : http://www.adlice.com/download/roguekiller/
    Blog : http://www.adlice.com

    Sistema Operacional : Windows 10 (10.0.16299) 64 bits version
    Iniciou : Modo normal
    Usuário : Eduardo [Administrador]
    Started from : C:\Users\Eduardo\Desktop\RogueKiller_portable64.exe
    Modo : Deletar -- Data : 01/09/2018 23:39:53 (Duration : 00:43:25)

    ¤¤¤ Processos : 0 ¤¤¤

    ¤¤¤ Registro : 8 ¤¤¤
    [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://samsung17win10.msn.com/?pc=SMTE -> Substituído (http://go.microsoft.com/fwlink/p/?LinkId=255141)
    [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://samsung17win10.msn.com/?pc=SMTE -> Substituído (http://go.microsoft.com/fwlink/p/?LinkId=255141)
    [PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://samsung17win10.msn.com/?pc=SMTE -> Substituído (http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome)
    [PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3021737689-3799637209-32367559-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://samsung17win10.msn.com/?pc=SMTE -> Substituído (http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome)
    [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5D431758-C841-4AFD-B8D8-574227988794} : v2.27|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Users\Eduardo\AppData\Roaming\SystemProcess\SystemProcess.exe|Name=SystemProcess| [x] -> Deletado
    [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5599E586-EEAD-46FD-A264-6C68E1578113} : v2.27|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Users\Eduardo\AppData\Roaming\SystemProcess\SystemProcess.exe|Name=SystemProcess| [x] -> Deletado
    [PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Substituído (2)
    [PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Substituído (2)

    ¤¤¤ Tarefas : 1 ¤¤¤
    [PUP.Gen1] \ACC -- C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat -> Deletado

    ¤¤¤ Arquivos : 1 ¤¤¤
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Button_ClickPad.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Button_SmartPad.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Clicking_2F.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\CursorMove_Inertia.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\DnD01.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\DnD02.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\DnD03.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Edge_Auto.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Edge_Circular.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Edge_Inertial.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Edge_Scroll.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Edge_Scroll_Once.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETD.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETD.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETD.sys -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDAniConf.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDApi.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDApi32.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDApix.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDCmds.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDCoInstaller15010.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDCtrl.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDCtrlHelper.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDDeviceInformation.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDFavorite.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDMcpl.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDService.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDSetup.ini -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDSimpleUI.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDSimpleUI_Win8.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDTouch.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDUninst.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETDUn_inst.exe -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ETD_DLL.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Fastkeys.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\FourFingerTap_ActionCenter.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Rotation_Twist.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Scroll_Auto.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Scroll_Inertial.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Scroll_No_FreeScroll.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Scroll_Only_V.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Scroll_Reverse_H.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Scroll_Reverse_V.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_2F_LR_PageUpDown.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_3F_Down_SwitchWnd.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_3F_LR_PageupDown.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_3F_UpDown_SlideShow.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_3F_Up_Computer.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_4F_Down_Desktop.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_4F_Down_SwitchWnd.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_4F_Up_Desktop.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Swipe_4F_Up_SwitchWnd.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Tapping_1F.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Tapping_2F_Middle_Button.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Tapping_2F_Popup.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\ThreeFingerTap_Cortana.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\WdfCoInstaller01011.dll -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Win81EdgeSwipe_Left.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Win8EdgeSwipe_Right.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Win8EdgeSwipe_Top.avi -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device\Zooming.avi -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\ELAN PS_2 Port Input Device -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Management Engine Interface\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Management Engine Interface\HECI.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Management Engine Interface\HECI.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Management Engine Interface\TeeDriverW8x64.sys -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Management Engine Interface -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO GPIO Host Controller - INT3437\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO GPIO Host Controller - INT3437\iaLPSS_GPIO.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO GPIO Host Controller - INT3437\iaLPSS_GPIO.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO GPIO Host Controller - INT3437\iaLPSS_GPIO.sys -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO GPIO Host Controller - INT3437 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE1\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE1\iaLPSS_I2C.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE1\iaLPSS_I2C.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE1\iaLPSS_I2C.sys -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE1 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE2\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE2\iaLPSS_I2C.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE2\iaLPSS_I2C.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE2\iaLPSS_I2C.sys -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Intel(R) Serial IO I2C Host Controller - 9CE2 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #3 - 9C94\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #3 - 9C94\WildcatPointLP.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #3 - 9C94\WildcatPointLP.inf -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #3 - 9C94 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #4 - 9C96\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #4 - 9C96\WildcatPointLP.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #4 - 9C96\WildcatPointLP.inf -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #4 - 9C96 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #5 - 9C98\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #5 - 9C98\WildcatPointLP.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #5 - 9C98\WildcatPointLP.inf -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) PCI Express Root Port #5 - 9C98 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) Premium SKU LPC Controller - 9CC3\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) Premium SKU LPC Controller - 9CC3\WildcatPointLP.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) Premium SKU LPC Controller - 9CC3\WildcatPointLP.inf -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) Premium SKU LPC Controller - 9CC3 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) SMBus Controller - 9CA2\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) SMBus Controller - 9CA2\WildcatPointLP.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) SMBus Controller - 9CA2\WildcatPointLP.inf -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Mobile 5th Generation Intel(R) Core(TM) SMBus Controller - 9CA2 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR3012 Bluetooth 4.0\atheros_bth.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR3012 Bluetooth 4.0\atheros_bth.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR3012 Bluetooth 4.0\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR3012 Bluetooth 4.0\btfilter.sys -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR3012 Bluetooth 4.0 -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR956x Wireless Network Adapter\athw10x.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR956x Wireless Network Adapter\athw10x.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR956x Wireless Network Adapter\athw10x.sys -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR956x Wireless Network Adapter\BackupInfo.xml -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Qualcomm Atheros AR956x Wireless Network Adapter -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek High Definition Audio -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek PCIe FE Family Controller\BackupInfo.xml -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek PCIe FE Family Controller\rt640x64.cat -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek PCIe FE Family Controller\rt640x64.inf -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek PCIe FE Family Controller\rt640x64.sys -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek PCIe FE Family Controller\RtNicProp64.dll -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip\Realtek PCIe FE Family Controller -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup\zip -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\backup -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\drivers -> Deletado
    [PUP.Gen1][Arquivo] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy\settings.dat -> Deletado
    [PUP.Gen1][Pasta] C:\Users\Eduardo\AppData\Roaming\Easeware\DriverEasy -> Deletado

    ¤¤¤ WMI : 0 ¤¤¤

    ¤¤¤ Arquivos de hosts : 0 ¤¤¤

    ¤¤¤ Antirootkit : 0 (Driver: Carregado) ¤¤¤

    ¤¤¤ Navegadores : 0 ¤¤¤

    ¤¤¤ Verificação da MBR : ¤¤¤
    +++++ PhysicalDrive0: WDC WD10JPVX-35JC3T0 +++++
    --- User ---
    [MBR] 5aef40578600422a06b842a9ae851aa2
    [BSP] 980fe462507a6040b4abe904a693c5ba : Empty MBR Code
    Partition table:
    0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 100 MB
    1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 206848 | Size: 128 MB
    2 - Basic data partition | Offset (sectors): 468992 | Size: 939833 MB
    3 - [SYSTEM][MAN-MOUNT]  | Offset (sectors): 1925249024 | Size: 874 MB
    4 - [SYSTEM][MAN-MOUNT] ??????a | Offset (sectors): 1927038978 | Size: 11908 MB
    5 - [SYSTEM][MAN-MOUNT] ????? | Offset (sectors): 1951426563 | Size: 1024 MB
    User = LL1 ... OK
    User = LL2 ... OK

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    @EduSemensato

     

    Reinicie seu computador em modo seguro;

    http://devbuilds.kaspersky-labs.com/devbuilds/KVRT/latest/full/KVRT.exe

     

    Execute o Kaspersky Virus Removal Tool como Administrador;
     

    Aceite o "End user License Agreement" e aguarde a Inicialização;
     

    Clique em Change parameters e marque também a opção System drive;
    OBS: Caso tenha alguma midia removivel plugada no computador clique no botão + Add object... e a marque também;
     

    Clique em OK e depois em Start scan.

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • @Elias Pereira bom dia!

     

    Como nada foi localizado e o problema persistiu, resolvi restaurar o Windows ao modo de fábrica.

     

    Obrigado pela ajuda.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×