Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Pedro Henque

Meu pc tá abrindo várias guias

Recommended Posts

@Pedro Henque

 

Por favor, atente para o seguinte:

  • Sobre o Fórum: Este é um espaço privado, não público. Seu uso é um privilégio, não um direito;
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • IMPORTANTE: Caso tenha programas de ativação do windows ou de compartilhamento de torrent, sugiro desinstalar. Só irei dar procedimento na analise após a remoção. Regras do forum;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Respeite a ordem das instruções passadas;
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

Siga os passos abaixo:

ETAPA 1

Baixe o Malwarebytes Anti-Malware (MBAM) do link abaixo e salve no seu desktop.
https://downloads.malwarebytes.org/file/mbam_current/
 
Clique duas vezes no mbam-setup.exe e siga o solicitado para instalar o programa.

  • Na aba Análise > Analise Personalizada marque a opção Procurar rootkits e as entradas referente a instalação do sistema operacional. Normalmente é o drive C:;
  • Clique em Analisar Agora. Aguarde, pois o scan pode demorar;
  • Ao acabar o scan, se houver itens encontrados, certifique-se que estejam todas marcados e clique no botão Remover Selecionadas ou Colocar em Quarentena;
  • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo);
  • Caso o mbam não seja executado automaticamente após a reinicialização, execute manualmente;
  • O log é automaticamente salvo pelo MBAM e para vê-lo, clique na aba Relatórios na janela principal do programa;
  • Clique duas vezes no log (Registro de verificação). Clique no botão Exportar e utilize o formato .txt para exportar o log. Salve na Área de Trabalho;
  • Abra o arquivo, selecione tudo, copie e cole o conteúdo deste log em sua próxima resposta.



NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

ETAPA 2

Faça o download do AdwCleaner de um dos links abaixo e salve no desktop.
https://toolslib.net/downloads/viewdownload/1-adwcleaner/
http://www.bleepingcomputer.com/download/adwcleaner/

Clique em DOWNLOAD NOW para baixar o arquivo.

Execute o adwcleaner.exe

OBS: Usuários do Windows Vista, 7, 8/8.1 e windows 10 clique com o direito sobre o arquivo AdwCleaner.exe, depois clique em VRIfczU.png

Clique em EXAMINAR. Após o termino clique em LIMPAR e aguarde.

Será aberto o bloco de notas com o resultado.

Selecione, copie e cole o seu conteúdo na próxima resposta.

ETAPA 3

Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Baixe jrt.exe do link abaixo e salve no desktop.
http://www.bleepingcomputer.com/download/junkware-removal-tool/

Dê um duplo-clique para executar o Junkware Removal Tool (JRT).

OBS: Usuários do Windows Vista, 7, 8/8.1 e windows 10 clique com o direito sobre o arquivo jrt.exe, depois clique em VRIfczU.png

A ferramenta comecará o exame do seu sistema. Tenha paciência pois pode demorar um pouco dependendo da quantidades de ítens a examinar.

Ao final, um log se abrirá. É salvo no desktop com o nome de JRT.txt.

Selecione, copie e cole o conteúdo deste log na sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

Malwarebytes
www.malwarebytes.com

-Detalhes de registro-
Data da análise: 23/08/17
Hora da análise: 14:29
Arquivo de registro: a4b8908c-8828-11e7-8e9b-50465dce536d.json
Administrador: Sim

-Informação do software-
Versão: 3.2.2.2018
Versão de componentes: 1.0.186
Versão do pacote de definições: 1.0.2646
Licença: Versão de Avaliação

-Informação do sistema-
Sistema operacional: Windows 10 (Build 15063.540)
CPU: x64
Sistema de arquivos: NTFS
Usuário: DESKTOP-37EO01G\Pedro Henrique

-Resumo da análise-
Tipo de análise: Análise de Ameaças
Resultado: Concluído
Objetos verificados: 567573
Ameaças detectadas: 407
Ameaças em quarentena: 407
Tempo decorrido: 15 min, 18 seg

-Opções da análise-
Memória: Habilitado
Inicialização: Habilitado
Sistema de arquivos: Habilitado
Arquivos compactados: Habilitado
Rootkits: Desabilitado
Heurística: Habilitado
PUP: Detectar
PUM: Detectar

-Detalhes da análise-
Processo: 10
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\vnlgp.exe, Quarentena, [177], [260489],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\em.exe, Quarentena, [1399], [331037],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\22-31a50-cd3-8e599-9545212eeb802\OWGFHLCSBW.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\97-ad1ab-864-30480-7638d2ef24ece\GNQIAFLSTO.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\1ac36f8f1bb0a93a2d0156b9cc2c9ccd.exe, Quarentena, [8415], [415982],1.0.2646
Adware.RunBooster, C:\PROGRAM FILES\RUNBOOSTER\RUNBOOSTERUPDATETASK64.EXE, Quarentena, [1543], [357685],1.0.2646
Trojan.Agent.Generic, C:\PROGRAM FILES\VIA\AOWDZQBHL2RW6V8L3KC7S6W5XD6CEP3FH\QRP1-VN0VU.EXE, Quarentena, [458], [369948],1.0.2646

Módulo: 12
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\vnlgp.exe, Quarentena, [177], [260489],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\em.exe, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\isxdl.dll, Quarentena, [1399], [331037],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\22-31a50-cd3-8e599-9545212eeb802\OWGFHLCSBW.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\97-ad1ab-864-30480-7638d2ef24ece\GNQIAFLSTO.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\1ac36f8f1bb0a93a2d0156b9cc2c9ccd.exe, Quarentena, [8415], [415982],1.0.2646
Adware.RunBooster, C:\PROGRAM FILES\RUNBOOSTER\RUNBOOSTERUPDATETASK64.EXE, Quarentena, [1543], [357685],1.0.2646
PUP.Optional.Jawego, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\JAWEGO\PC PROTECTOR PLUS\PCPLUSCONTEXTHELPER64.DLL, Quarentena, [1921], [349695],1.0.2646
Trojan.Agent.Generic, C:\PROGRAM FILES\VIA\AOWDZQBHL2RW6V8L3KC7S6W5XD6CEP3FH\QRP1-VN0VU.EXE, Quarentena, [458], [369948],1.0.2646

Chave de registro: 52
Adware.Tuto4PC.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Windows_Recover, Quarentena, [1301], [368102],1.0.2646
PUP.Optional.ChinAd, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wfcre, Quarentena, [96], [417524],1.0.2646
Adware.Social2Search.EncJob, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\f804170a72d4c5ac8e57a1bdc1bb5856, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f804170a72d4c5ac8e57a1bdc1bb5856, Quarentena, [8415], [-1],0.0.0
Adware.Social2Search.EncJob, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41018E8F-34C7-40B5-990A-0CA7B559CBC6}, Quarentena, [8415], [-1],0.0.0
Adware.Social2Search.EncJob, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{41018E8F-34C7-40B5-990A-0CA7B559CBC6}, Quarentena, [8415], [-1],0.0.0
Adware.Wajam.TskLnk, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Quarentena, [7951], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, Quarentena, [22], [260247],1.0.2646
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, Quarentena, [22], [260247],1.0.2646
PUP.Optional.Wajam, HKU\S-1-5-18\SOFTWARE\WajIEnhance, Quarentena, [83], [244670],1.0.2646
PUP.Optional.PCCleanPlus, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\PC\CLEAN\Plus, Quarentena, [218], [256462],1.0.2646
Adware.RunBooster, HKLM\SOFTWARE\RunBooster, Quarentena, [1543], [368690],1.0.2646
Adware.Jawego, HKLM\SOFTWARE\WOW6432NODE\Jawego, Quarentena, [7970], [383598],1.0.2646
PUP.Optional.SpeeDownloader, HKLM\SOFTWARE\Speedownloader0099, Quarentena, [8044], [384272],1.0.2646
Adware.SearchAwesome, HKLM\SOFTWARE\SrcAAAesom Browser Enhancer, Quarentena, [4608], [424837],1.0.2646
PUP.Optional.SpeeDownloader, HKLM\SOFTWARE\WOW6432NODE\Speedownloader0099, Quarentena, [8044], [384272],1.0.2646
Adware.SearchAwesome, HKLM\SOFTWARE\WOW6432NODE\SrcAAAesom Browser Enhancer, Quarentena, [4608], [424837],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Quarentena, [545], [321304],1.0.2646
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\PCSUSpeedTest_RASAPI32, Quarentena, [6075], [246229],1.0.2646
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\PCSUSpeedTest_RASMANCS, Quarentena, [6075], [246229],1.0.2646
PUP.Optional.Jawego, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\jawego, Quarentena, [1921], [351909],1.0.2646
Adware.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\11598763487076930564, Quarentena, [1700], [424293],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online Application, Quarentena, [545], [360190],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G1, Quarentena, [545], [317313],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online.io Application, Quarentena, [545], [317312],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G2, Quarentena, [545], [317313],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Quarentena, [545], [339688],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G3, Quarentena, [545], [317313],1.0.2646
PUP.Optional.SysTweak.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\RunAtStartup, Quarentena, [2759], [351913],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Updater_Online_Application, Quarentena, [545], [391428],1.0.2646
PUP.Optional.PCCleanPlus, HKLM\SOFTWARE\WOW6432NODE\PC\CLEAN\Plus, Quarentena, [218], [256464],1.0.2646
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities, Inc.\DriverApp, Quarentena, [953], [341522],1.0.2646
PUP.Optional.SysTweak.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{EA156F93-9457-468A-8C00-755B05131548}, Quarentena, [2759], [351914],1.0.2646
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities Inc\SlimDrivers, Quarentena, [785], [396321],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7C2A0F3A-317C-4E1E-B025-C91EE0D698F4}, Quarentena, [545], [317311],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{941A33D3-95FB-42A9-8AD5-1AE8EBB26700}, Quarentena, [545], [317311],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C45B36F1-268D-41C9-8C91-54A9334543C6}, Quarentena, [545], [391427],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{EA76DFAB-F0DF-4A2E-A624-9D558EB4F95C}, Quarentena, [545], [317311],1.0.2646
PUP.Optional.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\vnlgp, Quarentena, [177], [261841],1.0.2646
Adware.DNSUnlocker.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\OvpzuVfPQU7b Updater, Quarentena, [2207], [372679],1.0.2646
Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\9f68cc614567d5dab05de3c6c236ee3b, Quarentena, [1699], [336669],1.0.2646
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, Quarentena, [83], [170024],1.0.2646
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, Quarentena, [83], [170024],1.0.2646
Adware.NeoBar, HKLM\SOFTWARE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKU\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
Adware.NeoBar, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}, Quarentena, [513], [420739],1.0.2646
PUP.Optional.Wajam, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, Quarentena, [83], [170024],1.0.2646

Valor de registro: 23
PUP.Optional.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|vnlgp, Quarentena, [177], [260489],1.0.2646
Adware.Tuto4PC.Generic, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|GNQIAFLSTO.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Wajam.TskLnk, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-80-1965528517-1437796871-3073099387-1493174050-3745240965\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\S-1-5-80-74102703-195227291-2601699642-576852742-3294486561\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
Adware.Wajam.TskLnk, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarentena, [7951], [-1],0.0.0
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|CONTACT, Quarentena, [545], [333852],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|URLINFOABOUT, Quarentena, [545], [321304],1.0.2646
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\INTERFACES\{3630d0b1-6023-45b1-9c9e-ea042287d833}|NAMESERVER, Quarentena, [5601], [260226],1.0.2646
PUP.Optional.SysTweak.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{EA156F93-9457-468A-8C00-755B05131548}|PATH, Quarentena, [2759], [351914],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7C2A0F3A-317C-4E1E-B025-C91EE0D698F4}|PATH, Quarentena, [545], [317311],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{941A33D3-95FB-42A9-8AD5-1AE8EBB26700}|PATH, Quarentena, [545], [317311],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C45B36F1-268D-41C9-8C91-54A9334543C6}|PATH, Quarentena, [545], [391427],1.0.2646
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{EA76DFAB-F0DF-4A2E-A624-9D558EB4F95C}|PATH, Quarentena, [545], [317311],1.0.2646
Adware.DNSUnlocker.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\OvpzuVfPQU7b Updater|IMAGEPATH, Quarentena, [2207], [372679],1.0.2646
Trojan.Agent.Generic, HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|qRP1-vN0Vu.exe, Quarentena, [458], [369948],1.0.2646
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Lahin_Raw_barra_al3eb_b3id_w3-HD+7r&h.exe, Quarentena, [719], [391326],1.0.2646

Dados de registro: 6
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Substituído, [22], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Substituído, [22], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{26b11a49-585f-4b43-a90c-9af3c3d7b25b}|NameServer, Substituído, [22], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3630d0b1-6023-45b1-9c9e-ea042287d833}|NameServer, Substituído, [22], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3630d0b1-6023-45b1-9c9e-ea042287d833}|DhcpNameServer, Substituído, [22], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{6b28ac73-04c7-4e94-aeb7-2a63d61a3d39}|NameServer, Substituído, [22], [-1],0.0.0

Fluxo de dados: 0
(Nenhum item malicioso detectado)

Pasta: 40
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel, Quarentena, [177], [260489],1.0.2646
PUP.Optional.EventMonitor, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\EVENT MONITOR, Quarentena, [1399], [331037],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\PROGRAM FILES (X86)\MICROLEAVES, Quarentena, [8516], [399420],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\22-31a50-cd3-8e599-9545212eeb802, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\97-ad1ab-864-30480-7638d2ef24ece, Quarentena, [1301], [368102],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio\func_01&ven_1002&dev_aa01&subsys_00aa0100&rev_1003, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan\drivers\scanner, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan\drivers, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\sensors\sensorssimulatordriver, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_1002&cc_040300, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c3a, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\dtlitescsibus, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\monitor\aoc1950, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\monitor, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\sensors, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\tap0901, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Images, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs, Quarentena, [785], [396320],1.0.2646
Adware.Social2Search.EncJob, C:\PROGRAM FILES\f804170a72d4c5ac8e57a1bdc1bb5856, Quarentena, [8415], [415982],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads, Quarentena, [785], [334848],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp, Quarentena, [785], [334848],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\PROGRAMDATA\SlimWare Utilities, Inc, Quarentena, [785], [334848],1.0.2646
PUP.Optional.Jawego, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\JAWEGO, Quarentena, [1921], [348970],1.0.2646
PUP.Optional.PCCleanPlus, C:\PROGRAM FILES (X86)\PCCLEANPLUS, Quarentena, [218], [363175],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Quarentena, [545], [391425],1.0.2646
PUP.Optional.BeansPlayer, C:\PROGRAM FILES (X86)\BNSPLAYER, Quarentena, [6724], [393899],1.0.2646
Adware.OnlineIO, C:\ProgramData\Microleaves\Online Application\updates, Quarentena, [8516], [399763],1.0.2646
Adware.OnlineIO, C:\ProgramData\Microleaves\Online Application, Quarentena, [8516], [399763],1.0.2646
Adware.OnlineIO, C:\PROGRAMDATA\MICROLEAVES, Quarentena, [8516], [399763],1.0.2646
Adware.OnlineIO, C:\Users\Pedro Henrique\AppData\Roaming\Microleaves\Online Application 2.6.0\install\CFCBAA1, Quarentena, [8516], [399763],1.0.2646
Adware.OnlineIO, C:\Users\Pedro Henrique\AppData\Roaming\Microleaves\Online Application 2.6.0\install, Quarentena, [8516], [399763],1.0.2646
Adware.OnlineIO, C:\Users\Pedro Henrique\AppData\Roaming\Microleaves\Online Application 2.6.0, Quarentena, [8516], [399763],1.0.2646
Adware.OnlineIO, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\MICROLEAVES, Quarentena, [8516], [399763],1.0.2646
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\82724156-16d7-1, Quarentena, [8278], [407181],1.0.2646
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\82724156-6945-0, Quarentena, [8278], [407181],1.0.2646

Arquivo: 264
Trojan.Agent, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\RKINSTALLER.EXE, Quarentena, [19], [205910],1.0.2646
PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\82724156-16d7-1\BIT13A6.tmp, Quarentena, [14623], [257931],1.0.2646
PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\82724156-6945-0\BIT15DA.tmp, Quarentena, [14623], [257931],1.0.2646
PUP.Optional.BitCoinMiner, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\VNLGP\VNLGP\START.CMD, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\aes_helper.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\blake.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\blake256.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\bmw.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\bmw256.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\cubehash.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\darkcoin-mod.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\decred.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\echo.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\fugue.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\groestl.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\groestl256.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\jh.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\keccak.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\keccak1600.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\luffa.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2re.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2rev2.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2v2.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\neoscrypt.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\shabal.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\shavite.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\simd.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\skein.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\skein256.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\kernel\vanilla.cl, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\decredOlandgw256l4tc4544.bin, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\vnlgp.conf, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp\vnlgp.exe, Quarentena, [177], [260489],1.0.2646
PUP.Optional.BitCoinMiner, C:\Users\Pedro Henrique\AppData\Roaming\vnlgp\vnlgp-uninst.exe, Quarentena, [177], [260489],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G1, Quarentena, [545], [317314],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G2, Quarentena, [545], [317314],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G3, Quarentena, [545], [317314],1.0.2646
PUP.Optional.CrossRider, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, Quarentena, [219], [256629],1.0.2646
PUP.Optional.CrossRider, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, Quarentena, [219], [256629],1.0.2646
PUP.Optional.SysTweak.Generic, C:\WINDOWS\SYSTEM32\TASKS\RUNATSTARTUP, Quarentena, [2759], [351912],1.0.2646
PUP.Optional.EventMonitor, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\EVENT MONITOR\ENG_EM.INI, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\em.exe, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\French_em.ini, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\German_em.ini, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\ininotfound0.ini, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\isxdl.dll, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\japan_em.ini, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\log_08-21-2017.log, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\log_08-22-2017.log, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\log_08-23-2017.log, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\productSetup_Setup_8_22_2017.exe, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\productSetup_Setup_8_23_2017.exe, Quarentena, [1399], [331037],1.0.2646
PUP.Optional.EventMonitor, C:\Users\Pedro Henrique\AppData\Roaming\Event Monitor\update.ini, Quarentena, [1399], [331037],1.0.2646
Adware.OnlineIO, C:\PROGRAM FILES (X86)\MICROLEAVES\Online Application\Online Application Updater.exe, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online.io EULA.url, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online.io Privacy.url, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Uninstall Online Application.lnk, Quarentena, [8516], [399420],1.0.2646
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.ini, Quarentena, [8516], [399420],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\22-31a50-cd3-8e599-9545212eeb802\OWGFHLCSBW.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\Users\Pedro Henrique\AppData\Local\Temp\22-31a50-cd3-8e599-9545212eeb802\OWGFHLCSBW.exe.config, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\97-ad1ab-864-30480-7638d2ef24ece\GNQIAFLSTO.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\Users\Pedro Henrique\AppData\Local\Temp\97-ad1ab-864-30480-7638d2ef24ece\GNQIAFLSTO.exe.config, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\Users\Pedro Henrique\AppData\Local\Temp\97-ad1ab-864-30480-7638d2ef24ece\NXNJCLOPNV.exe, Quarentena, [1301], [368102],1.0.2646
Adware.Tuto4PC.Generic, C:\Users\Pedro Henrique\AppData\Local\Temp\97-ad1ab-864-30480-7638d2ef24ece\NXNJCLOPNV.exe.config, Quarentena, [1301], [368102],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G1.job, Quarentena, [545], [382506],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G2.job, Quarentena, [545], [382506],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G3.job, Quarentena, [545], [382506],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\UPDATER_ONLINE_APPLICATION, Quarentena, [545], [391429],1.0.2646
PUP.Optional.ChinAd, C:\WINDOWS\SYSTEM32\DRIVERS\WFCRE.SYS, Quarentena, [96], [417524],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Quarentena, [545], [391431],1.0.2646
PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\UPDATER_ONLINE_APPLICATION.JOB, Quarentena, [545], [391430],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\SlimWare Utilities Inc\SLIMDRIVERS\ignores.dat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\acpi\genuineintel_-_intel64\cpu.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\gendisk\disk.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio\func_01&ven_1002&dev_aa01&subsys_00aa0100&rev_1003\AtihdWT6.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio\func_01&ven_1002&dev_aa01&subsys_00aa0100&rev_1003\atihdwt6.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio\func_01&ven_1002&dev_aa01&subsys_00aa0100&rev_1003\atihdwt6.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio\func_01&ven_1002&dev_aa01&subsys_00aa0100&rev_1003\AtihdWT6.sys, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hdaudio\func_01&ven_1002&dev_aa01&subsys_00aa0100&rev_1003\DelayAPO.dll, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hid_device_system_keyboard\keyboard.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\hid_device_system_mouse\msmouse.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\internal_ide_channel\mshdc.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan\drivers\scanner\HPScanTRDrv_DJ3050_J610.dll, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan\drivers\scanner\HPWia2_DJ3050_J610.dll, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan\hpwia_dj3050_j610.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\mf\deskjet_3050_j610_series&wsd&ip_scan\hpwia_dj3050_j610.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\monitor\aoc1950\1950W.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\monitor\aoc1950\1950W.icm, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\monitor\aoc1950\1950w.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\monitor\aoc1950\1950w.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\cc_0101\mshdc.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\cc_0403\hdaudbus.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\cc_0604\pci.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_1002&cc_040300\amdkmafd.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_1002&cc_040300\amdkmafd.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_1002&cc_040300\amdkmafd.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_1002&cc_040300\amdkmafd.sys, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_10ec&dev_8168&rev_09\rt640x64.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c26\usbport.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c2d\usbport.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c3a\HECI.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c3a\heci.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c3a\heci.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c3a\TeeDriverW8x64.sys, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\pci\ven_8086&dev_1c5c\machine.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\basicdisplay\basicdisplay.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\basicrender\basicrender.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\compositebus\compositebus.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\dtlitescsibus\dtlitescsibus.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\dtlitescsibus\dtlitescsibus.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\dtlitescsibus\dtlitescsibus.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\dtlitescsibus\dtlitescsibus.sys, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\kdnic\kdnic.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\mssmbios\mssmbios.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\rdpbus\rdpbus.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\spaceport\spaceport.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\swenum\swenum.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\umbus\umbus.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\vdrvroot\vdrvroot.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\root\volmgr\volmgr.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\sensors\sensorssimulatordriver\oem21.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\sensors\sensorssimulatordriver\oem21.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\sensors\sensorssimulatordriver\SensorsSimulatorDriver.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\sensors\sensorssimulatordriver\SensorsSimulatorDriver.dll, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\storage\volume\volume.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\tap0901\oemvista.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\tap0901\oemvista.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\tap0901\tap0901.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\tap0901\tap0901.sys, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\umb\ts_urb_hub\tsusbhub.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\umb\umbus\umbus.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\usb\class_03\input.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\usb\class_03&subclass_01\input.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\usb\composite\usb.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\usb\root_hub20\usbport.PNF, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20170626T225812423607\module_info, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Images\acer.png, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-03  10-37-26 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-12  15-38-37 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-26  19-48-43 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-27  13-28-02 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-28  10-28-53 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-29  13-02-44 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-29  15-38-49 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-30  02-56-58 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-30  15-21-43 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-06-30  16-27-57 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-01  02-10-48 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-01  06-46-08 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-01  13-39-23 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-02  12-13-44 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-02  15-49-28 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-04  11-46-04 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-04  20-33-21 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-05  12-04-42 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-06  01-36-13 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-06  13-13-26 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-07  10-43-54 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-08  10-15-11 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-08  17-34-30 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-09  14-57-13 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-10  08-47-38 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-10  11-36-50 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-10  17-36-44 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-11  13-45-11 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-12  05-02-08 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-13  07-49-40 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-15  11-23-37 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-16  17-13-57 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-17  13-35-30 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-18  19-04-14 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-19  11-26-59 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-20  13-05-05 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-23  10-03-05 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-24  13-35-44 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-25  12-46-44 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-27  13-00-03 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-30  04-12-06 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-07-31  13-06-28 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-01  13-06-31 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-02  15-06-43 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-03  13-02-46 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-07  12-38-34 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-08  12-42-19 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-08  19-24-16 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Logs\2017-08-08  19-30-01 0.log, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\rupdates.db, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\settings.db, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\supdates.db, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.cat, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.inf, Quarentena, [785], [396320],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.sys, Quarentena, [785], [396320],1.0.2646
Adware.Social2Search.EncJob, C:\PROGRAM FILES\f804170a72d4c5ac8e57a1bdc1bb5856\WBE_uninstall.dat, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\101273f119395731ea8725e4832a58c7.exe, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\1ac36f8f1bb0a93a2d0156b9cc2c9ccd.exe, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\4b3fc603bf9eb83219154f9d2d2cca95, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\991d9084c9b3cdba5119cb47dfa78f42, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\a2cbd9ab0eab00f29bf2ffe917ece2c6, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\b8395e44d7ef060897be00872699af20.exe, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\e9d1f8bce17ed84ec00df6db1d6a6a8a.ico, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\service.dat, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\Program Files\f804170a72d4c5ac8e57a1bdc1bb5856\service_64.dat, Quarentena, [8415], [415982],1.0.2646
Adware.Social2Search.EncJob, C:\WINDOWS\SYSTEM32\TASKS\f804170a72d4c5ac8e57a1bdc1bb5856, Quarentena, [8415], [-1],0.0.0
Adware.Wajam.TskLnk, C:\WINDOWS\8be74ab33a7678159d0666f9c23f36ea.ps1, Quarentena, [7951], [426655],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\0047922603A8AE9F156A2822F1EE13099B00000000005D8A5C.exe, Quarentena, [785], [334848],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\00C1D2708662789F607FB38402C5BB57A500000000004141B9.exe, Quarentena, [785], [334848],1.0.2646
PUP.Optional.PCCleanPlus, C:\Program Files (x86)\pccleanplus\pccleanplus.exe, Quarentena, [218], [363175],1.0.2646
PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\online.exe, Quarentena, [545], [391425],1.0.2646
PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\SystemFoldermsiexec.exe, Quarentena, [545], [391425],1.0.2646
PUP.Optional.BeansPlayer, C:\Program Files (x86)\bnsplayer\bnsplayer.exe, Quarentena, [6724], [393899],1.0.2646
Adware.OnlineIO, C:\ProgramData\Microleaves\Online Application\updates\basic_updates.aiu, Quarentena, [8516], [399763],1.0.2646
Adware.HijackHosts, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, Quarentena, [8644], [418901],1.0.2646
Adware.RunBooster, C:\PROGRAM FILES\RUNBOOSTER\RUNBOOSTERUPDATETASK64.EXE, Quarentena, [1543], [357685],1.0.2646
PUP.Optional.Jawego, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\JAWEGO\PC PROTECTOR PLUS\PCPLUSCONTEXTHELPER64.DLL, Quarentena, [1921], [349695],1.0.2646
Trojan.Agent.Generic, C:\PROGRAM FILES\VIA\AOWDZQBHL2RW6V8L3KC7S6W5XD6CEP3FH\QRP1-VN0VU.EXE, Quarentena, [458], [369948],1.0.2646
Adware.Wajam.Generic, C:\WINDOWS\SYSTEM32\DRIVERS\9F68CC614567D5DAB05DE3C6C236EE3B.SYS, Quarentena, [1699], [336669],1.0.2646
Adware.Tuto4PC, C:\PROGRAM FILES\MEGADOWNLOADER\LKTD54HRUSJWAJETDO\W3-HD+7R&H.EXE, Quarentena, [719], [391326],1.0.2646
Trojan.Agent.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\4A972E4A12584041A6C9163FAEE318F9\RE6U64MGZY.EXE, Quarentena, [458], [369948],1.0.2646
Trojan.Agent.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\ROAMING\F6A9EC8726C9430B896C00D362646263\AFP1GW6RF.EXE, Quarentena, [458], [369948],1.0.2646
PUP.Optional.Goobzo, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\146E0BE965BF4817B0B089CB7458FB2D\SETUP.EXE, Quarentena, [342], [336135],1.0.2646
Adware.IStartSurf, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\2BCD1DE88DAC41939EC371CCCFB16F5D\SETUP.EXE, Quarentena, [801], [427858],1.0.2646
Adware.RunBooster, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\101430171\RUNBOOSTERSETUP64_3231.EXE, Quarentena, [1543], [357686],1.0.2646
Trojan.Agent.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\4851D33ED7E343E79BD74C49A0640C12\NHRVAHU.EXE, Quarentena, [458], [369948],1.0.2646
Adware.OtherSearch, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\590DD100A1AC4AD3BF4A9D2DAA7635C6\SETUPOS_2112.EXE, Quarentena, [2015], [427847],1.0.2646
Adware.OtherSearch, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\3BF9B28F43ED46499D07555E2D48C15E\SETUPOS_4435.EXE, Quarentena, [2015], [427847],1.0.2646
PUP.Optional.Goobzo, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\4582AF4997DB4566A44F591BB6F16D61\SETUP.EXE, Quarentena, [342], [336135],1.0.2646
Adware.OtherSearch, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\6C09902BF5574487AAE3FA7FC6ECE570\SETUPOS_2112.EXE, Quarentena, [2015], [427847],1.0.2646
Adware.IStartSurf, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\70C13ADE2EBF46B4A9D0F53BB218BA9B\SETUP.EXE, Quarentena, [801], [427858],1.0.2646
Adware.Linkury, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\36C49B2C249F4058B66AD4C50041F35F\STARTER.EXE, Quarentena, [1984], [414962],1.0.2646
Adware.Agent, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\3C21EB295F8A4C6BA3C04BAAEEDCDDA7\G.EXE, Quarentena, [227], [427522],1.0.2646
Adware.Amonetize, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\64BDD297E26440EBAC390DB550081828\0E4LJ9DKHE.EXE, Quarentena, [671], [378669],1.0.2646
PUP.Optional.Goobzo, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\3CB6C05D34B248F3BD848E318AA270AB\BRASTUB6ABB_BCNBL_INST.EXE, Quarentena, [342], [336135],1.0.2646
Trojan.Agent.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\95C66C05324142AD9AC59EB36ED6F5E9\9NSHXA21JCLF.EXE, Quarentena, [458], [369948],1.0.2646
PUP.Optional.Goobzo, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\010D9E088D114A169D88A90E768A77C2\BRASTUB6AB_AMOBL_INST.EXE, Quarentena, [342], [336135],1.0.2646
Adware.Eszjuxuan, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\1AFC8624E2784D3E90583732085EC443\SETUP.EXE, Quarentena, [170], [392762],1.0.2646
PUP.Optional.BitCoinMiner, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\2E3320C4E635447CB3AFDF7EE812DA16\TAC.EXE, Quarentena, [177], [363441],1.0.2646
Adware.IStartSurf, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\A558CCDA9DAE4683A793457CDE805471\SETUP.EXE, Quarentena, [801], [427858],1.0.2646
PUP.Optional.Goobzo, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\3A35C753000B46FCA8C11E6FA917B04C\BRASTUB6AB_AMOBL_INST.EXE, Quarentena, [342], [336135],1.0.2646
Adware.Agent, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\56D4BBBD8A1746C69A679CF44787E23C\G.EXE, Quarentena, [227], [427522],1.0.2646
Adware.Eszjuxuan, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\5F55491142E94951B0683C303BA244D1\SETUP.EXE, Quarentena, [170], [392762],1.0.2646
PUP.Optional.PCCleanPlus, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\B0733E1D90EE40358187FF99115887E7\PCCPSETUP_1095.EXE, Quarentena, [218], [102990],1.0.2646
Adware.Neoreklami, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\B272B7DCC96D4AABA763540F4D697BCB\YTAB_M_1_BIG.EXE, Quarentena, [904], [427576],1.0.2646
PUP.Optional.BitCoinMiner, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\6E6774A1924E4E9A809001E06A04B4D1\V&BETNI_A1.EXE, Quarentena, [177], [363441],1.0.2646
Trojan.Agent.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\BAE2631007994CCB901D5B081464A9D0\E5YEYJIK.EXE, Quarentena, [458], [369948],1.0.2646
Adware.Eszjuxuan, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\A75E1D77547B4E90A9E308F95CA15490\SETUP.EXE, Quarentena, [170], [392762],1.0.2646
Adware.Neoreklami, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\9BC3046490FD4D808D93E71496037A78\YTAB_M_1_BIG.EXE, Quarentena, [904], [427576],1.0.2646
Adware.Eszjuxuan, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\B46056E6DF374049826BE559E9A3B1DD\SETUP.EXE, Quarentena, [170], [392762],1.0.2646
Adware.Neoreklami, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\E93E689B\TAVNWOAQLV.EXE, Quarentena, [904], [427576],1.0.2646
Adware.Amonetize, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\E826FD7EC74748959C1D1ABBEC0051ED\PXZZ9HMF.EXE, Quarentena, [671], [378669],1.0.2646
Adware.Linkury, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\F1179F230BE04671BC59FC7AA5CF54FE\STARTER.EXE, Quarentena, [1984], [414962],1.0.2646
HackTool.AutoKMS, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\KMS.EXE, Quarentena, [1977], [370307],1.0.2646
PUP.Optional.Jawego, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\_IU14D2N.TMP, Quarentena, [1921], [349695],1.0.2646
Adware.Agent, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\DB9C8672B81041B5B3FF1177890B95E8\G.EXE, Quarentena, [227], [427522],1.0.2646
Spyware.Banker, C:\USERS\PEDRO HENRIQUE\DOWNLOADS\INSTALL_DRIVE_5.1.3.7.ZIP, Quarentena, [104], [32945],1.0.2646
Generic.Malware/Suspicious, C:\USERS\PEDRO HENRIQUE\DOWNLOADS\2017221GVJ-LOADER_COMPANY_1502296271.EXE, Quarentena, [0], [392686],1.0.2646
PUP.Optional.SlimCleanerPlus, C:\USERS\PEDRO HENRIQUE\DOWNLOADS\SLIMDRIVERS-SETUP.EXE, Quarentena, [785], [359547],1.0.2646
PUP.Optional.BitCoinMiner, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\F7E0244695334F33A48DAA2BACE090FC\TAC.EXE, Quarentena, [177], [363441],1.0.2646
Trojan.Agent.Generic, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\A223321D5C7F4893B544A9BD432BE745\U1LPBGXP71OY.EXE, Quarentena, [458], [369948],1.0.2646
Adware.Wajam, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\~NSU.TMP\AU_.EXE, Quarentena, [1170], [427842],1.0.2646
PUP.Optional.InstallCore, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\ICREINSTALL_BAIXAKI_SLIM-DRIVERS_0115327356.EXE, Quarentena, [2], [402189],1.0.2646
Generic.Malware/Suspicious, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\TEMP\NSFA951.TMP, Quarentena, [0], [392686],1.0.2646
Adware.Amonetize, C:\USERS\PEDRO HENRIQUE\APPDATA\LOCAL\BF7FFFFA6AF24A6A90C45A3D399CCBAE\MYANISVC.EXE, Quarentena, [671], [378669],1.0.2646

Setor físico: 0
(Nenhum item malicioso detectado)


(end)

adicionado 7 minutos depois

# AdwCleaner 7.0.1.0 - Logfile created on Thu Aug 24 02:09:49 2017
# Updated on 2017/05/08 by Malwarebytes 
# Running on Windows 10 Pro (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

Deleted: 8be74ab33a7678159d0666f9c23f36ea


***** [ Folders ] *****

Deleted: C:\Windows\System32\\SSL
Deleted: C:\Windows\SysWOW64\\SSL
Deleted: C:\Users\Public\Documents\Downloaded Installers
Deleted: C:\Users\Pedro Henrique\AppData\Roaming\PCPRJ
Deleted: C:\Program Files\RunBooster
Deleted: C:\Users\Pedro Henrique\AppData\Local\AdvinstAnalytics
Deleted: C:\Users\Public\Documents\XMUpdate
Deleted: C:\Users\Pedro Henrique\AppData\Roaming\vnlgp
Deleted: C:\Users\Pedro Henrique\AppData\Local\Jawego
Deleted: C:\Users\Pedro Henrique\AppData\Local\Jawego\PC Protector Plus
Deleted: C:\Users\Pedro Henrique\AppData\Local\jawego
Deleted: C:\Users\Pedro Henrique\AppData\Local\Jawego
Deleted: C:\Users\Pedro Henrique\AppData\Local\slimware utilities inc
Deleted: C:\Users\Pedro Henrique\AppData\Local\SlimWare Utilities Inc


***** [ Files ] *****

Deleted: C:\Windows\SysNative\drivers\swdumon.sys


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\PC
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\PC
Deleted: [Key] - HKCU\Software\PC
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
Deleted: [Key] - HKCU\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
Deleted: [Key] - HKLM\SOFTWARE\Event Monitor
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Event Monitor
Deleted: [Key] - HKCU\Software\Event Monitor
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
Deleted: [Key] - HKCU\Software\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Speedownloader0099
Deleted: [Key] - HKCU\Software\Speedownloader0099
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
Deleted: [Key] - HKLM\SOFTWARE\Conduit
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Conduit
Deleted: [Key] - HKCU\Software\Conduit
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKLM\SOFTWARE\Microleaves
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\msaver
Deleted: [Key] - HKCU\Software\msaver
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\FastDataX
Deleted: [Key] - HKCU\Software\FastDataX
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
Deleted: [Key] - HKCU\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Hotspot
Deleted: [Key] - HKCU\Software\Hotspot
Deleted: [Key] - HKLM\SOFTWARE\PCPRJ
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\PCPRJ
Deleted: [Key] - HKCU\Software\PCPRJ
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\Amigo
Deleted: [Key] - HKCU\Software\Amigo
Deleted: [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc
Deleted: [Key] - HKU\S-1-5-21-3138802799-1940488127-3430094437-1001\Software\SlimWare Utilities Inc
Deleted: [Key] - HKCU\Software\SlimWare Utilities Inc
Deleted: [Key] - HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [5217 B] - [2017/8/24 2:8:42]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

adicionado 22 minutos depois

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Pro x64 
Ran by Pedro Henrique (Administrator) on 23/08/2017 at 23:15:51,41
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


File System: 1 

Successfully deleted: C:\WINDOWS\system32\Tasks\8be74ab33a7678159d0666f9c23f36ea (Task)

Registry: 1 

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\SWDUMon (Registry Key) 


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23/08/2017 at 23:26:36,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Pedro Henque

 

Faça o download do RogueKiller by Tigzy, e salve na sua área de trabalho (Desktop).
roguekiller.exe (x64) << link

  • Feche todos os programasExecute RogueKiller.exe.
    ** Usuários do Windows Vista, Windows 7 e Windows 8:
    Clique com o direito sobre o arquivo rogueKiller.exe, depois clique em VRIfczU.png.
  • Quando a janela da Eula aparecer, clique em Accept.
  • Selecione a aba SCAN
  • Clique em START SCAN
  • Aguarde ate que o scan termine...
  • Clique no botão OPEN REPORT
  • Clique na opção EXPORT TXT e salve na Área de Trabalho com o nome de roguekiller.txt
  • Clique em OK e feche o RogueKiller.



Atente para abrir o arquivo, copiar e colar todo o conteúdo na sua próxima resposta

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

O meu pc foi formatado sem o meu pedido ou consentimento devo continuar com os processos?

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×