Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
bywilltof

Malware que fica reinstalando o Chromium

Recommended Posts

Primeiramente gostaria de agradecer a todos que participam e tornam possível atitudes generosas com essa do fórum. Obrigado.

 

 

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@bywilltof

 

Por favor, atente para o seguinte:

  • Sobre o Fórum: Este é um espaço privado, não público. Seu uso é um privilégio, não um direito;
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • IMPORTANTE: Caso tenha programas de ativação do windows ou de compartilhamento de torrent, sugiro desinstalar. Só irei dar procedimento na analise após a remoção. Regras do forum;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Respeite a ordem das instruções passadas;
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

Siga os passos abaixo:

ETAPA 1

Baixe o Malwarebytes Anti-Malware (MBAM) do link abaixo e salve no seu desktop.
https://downloads.malwarebytes.org/file/mbam_current/
 
Clique duas vezes no mbam-setup.exe e siga o solicitado para instalar o programa.

  • Na aba Análise > Analise Personalizada marque a opção Procurar rootkits e as entradas referente a instalação do sistema operacional. Normalmente é o drive C:;
  • Clique em Analisar Agora. Aguarde, pois o scan pode demorar;
  • Ao acabar o scan, se houver itens encontrados, certifique-se que estejam todas marcados e clique no botão Remover Selecionadas ou Colocar em Quarentena;
  • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo);
  • Caso o mbam não seja executado automaticamente após a reinicialização, execute manualmente;
  • O log é automaticamente salvo pelo MBAM e para vê-lo, clique na aba Relatórios na janela principal do programa;
  • Clique duas vezes no log (Registro de verificação). Clique no botão Exportar e utilize o formato .txt para exportar o log. Salve na Área de Trabalho.


ATENÇÃO: Abra o arquivo, selecione tudo, copie e cole o conteúdo deste log em sua próxima resposta.

NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

ETAPA 2

Faça o download do AdwCleaner de um dos links abaixo e salve no desktop.
https://toolslib.net/downloads/viewdownload/1-adwcleaner/
http://www.bleepingcomputer.com/download/adwcleaner/

Clique em DOWNLOAD NOW para baixar o arquivo.

Execute o adwcleaner.exe

OBS: Usuários do Windows Vista, 7, 8/8.1 e windows 10 clique com o direito sobre o arquivo AdwCleaner.exe, depois clique em VRIfczU.png

Clique em VERIFICAR. Após o termino clique em LIMPAR e aguarde.

Será aberto o bloco de notas com o resultado.

ATENÇÃO: Selecione, copie e cole o seu conteúdo na próxima resposta.
 

ETAPA 3


Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.


Faça o download do ZHPCleaner no link abaixo e salve em sua Área de trabalho (Desktop)

https://www.nicolascoolman.com/download/zhpcleaner/


Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites

# -------------------------------
# Malwarebytes AdwCleaner 7.2.0.0
# -------------------------------
# Build:    06-05-2018
# Database: 2018-06-15.3
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    06-17-2018
# Duration: 00:00:24
# OS:       Windows 7 Ultimate
# Cleaned:  41
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\IObit\Advanced SystemCare
Deleted       C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted       C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted       C:\Users\Fabrini Not\AppData\Roaming\IObit\Advanced SystemCare
Deleted       C:\ProgramData\ByteFence
Deleted       C:\Program Files\ByteFence
Deleted       C:\ProgramData\IObit\ASCDownloader
Deleted       C:\Users\Public\Documents\Guid
Deleted       C:\ProgramData\apn

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted       HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted       HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted       HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted       HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted       HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted       HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted       HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted       HKLM\Software\Wow6432Node\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted       HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted       HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted       HKLM\Software\Wow6432Node\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted       HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted       HKU\S-1-5-18\Software\ByteFence
Deleted       HKU\.DEFAULT\Software\ByteFence
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted       HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|ByteFence.exe
Deleted       HKCU\Software\Microsoft\Internet Explorer\DOMStorage\bytefence.com
Deleted       HKCU\Software\Microsoft\Internet Explorer\DOMStorage\br.bytefence.com
Deleted       HKLM\Software\Wow6432Node\RegisteredApplications|FLV and Media Player
Deleted       HKLM\SOFTWARE\RegisteredApplications|FLV and Media Player
Deleted       HKCU\Software\csastats
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\hao123.com
Deleted       HKLM\Software\Wow6432Node\ScreenShot
Deleted       HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted       HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com

***** [ Chromium (and derivatives) ] *****

Deleted       Search Manager
Deleted       Search Manager
Deleted       Search Manager
Deleted       Search Manager

***** [ Chromium URLs ] *****

Deleted       Ask Brasil
Deleted       Ask Brasil

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4626 octets] - [17/06/2018 00:26:06]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########



 

~ ZHPCleaner v2018.6.15.137 by Nicolas Coolman (2018/06/15)
~ Run by Fabrini Not (Administrator)  (17/06/2018 00:47:48)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\Fabrini Not\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Fabrini Not\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)


---\\  Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (0)
~ No malicious or unnecessary items found.


---\\  Hosts file (1)
~ The hosts file is legitimate (21)


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (4)
MOVED file: C:\Users\Fabrini Not\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk  [Bad : C:\Users\Fabrini Not\AppData\Roaming\uTorrent\uTorrent.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)
MOVED file: C:\Users\Fabrini Not\Downloads\uTorrent.exe [BitTorrent Inc. - µTorrent]  =>BitTorrent (P2P)
MOVED folder: C:\Program Files (x86)\Skillbrains  =>.SUP.Skillbrains
MOVED folder: C:\Users\Fabrini Not\AppData\Local\Google\Update  =>Heuristic.Suspect


---\\  Registry ( Key, Value, Data) (6)
DELETED key*: HKEY_USERS\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\SkillBrains []  =>.SUP.Skillbrains
DELETED key: HKCU\Software\SkillBrains []  =>.SUP.Skillbrains
DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.]  =>BitTorrent (P2P)
DELETED key*: HKCU\Software\undefined []  =>.SUP.Downloader
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Skillbrains []  =>.SUP.Skillbrains
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask


---\\  Summary of the elements found (5)
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>BitTorrent (P2P)
https://www.anti-malware.top/2016/04/30/superfluous-skillbrains/  =>.SUP.Skillbrains
https://nicolascoolman.eu/2017/01/28/heuristic-suspect/  =>Heuristic.Suspect
https://nicolascoolman.eu/2017/12/22/sup-downloader/  =>.SUP.Downloader
https://nicolascoolman.eu/2017/02/28/toolbar-ask/  =>Toolbar.Ask


---\\  Other deletions. (2)
~ Registry Keys Tracing deleted (2)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Google Chrome)
~ Browser not found (Mozilla Firefox)


---\\ Statistics
~ Items scanned : 559
~ Items found : 0
~ Items cancelled : 0
~ Items options : 0/7
~ Space saving (bytes) : 0


~ End of clean in 00h00mn19s

---\\  Reports (2)
ZHPCleaner--17062018-00_46_12.txt
ZHPCleaner-[R]-17062018-00_48_07.txt
 

 

Malwarebytes
www.malwarebytes.com

-Detalhes de registro-
Data da análise: 11/06/18
Hora da análise: 18:51
Arquivo de registro: a00eabfa-6dc1-11e8-be0a-24f5aa4e82c8.json
Administrador: Sim

-Informação do software-
Versão: 3.5.1.2522
Versão de componentes: 1.0.374
Versão do pacote de definições: 1.0.5440
Licença: Versão de Avaliação

-Informação do sistema-
Sistema operacional: Windows 7 Service Pack 1
CPU: x64
Sistema de arquivos: NTFS
Usuário: System

-Resumo da análise-
Tipo de análise: Análise de Ameaças
Análise Iniciada Por: Agendamento
Resultado: Concluído
Objetos verificados: 256598
Ameaças detectadas: 336
Ameaças em quarentena: 329
Tempo decorrido: 24 min, 37 seg

-Opções da análise-
Memória: Habilitado
Inicialização: Habilitado
Sistema de arquivos: Habilitado
Arquivos compactados: Habilitado
Rootkits: Desabilitado
Heurística: Habilitado
PUP: Detectar
PUM: Detectar

-Detalhes da análise-
Processo: 0
(Nenhum item malicioso detectado)

Módulo: 0
(Nenhum item malicioso detectado)

Chave de registro: 56
PUP.Optional.SearchManager, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, Quarentena, [242], [464596],1.0.5440
PUP.Optional.uTab, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bpmmandcadflhnnaiclipadomfmdbjbp, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bpmmandcadflhnnaiclipadomfmdbjbp, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bpmmandcadflhnnaiclipadomfmdbjbp, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Losise Socesa, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5528C8FB-31F3-4599-B951-21C60E54709F}, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{5528C8FB-31F3-4599-B951-21C60E54709F}, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Losise Socesa, Quarentena, [3734], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5528C8FB-31F3-4599-B951-21C60E54709F}, Quarentena, [3734], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5528C8FB-31F3-4599-B951-21C60E54709F}, Quarentena, [3734], [-1],0.0.0
PUP.Optional.APNToolBar.Gen, HKU\S-1-5-18\SOFTWARE\AskPartnerNetwork, Quarentena, [708], [186876],1.0.5440
PUP.Optional.SearchManager, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\NAHHMPBCKPGDIDFNMFKFGIFLPJIJILCE, Quarentena, [242], [440037],1.0.5440
PUP.Optional.SearchManager, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\NAHHMPBCKPGDIDFNMFKFGIFLPJIJILCE, Quarentena, [242], [440037],1.0.5440
PUP.Optional.SearchManager, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\nahhmpbckpgdidfnmfkfgiflpjijilce, Quarentena, [242], [440037],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}, Quarentena, [245], [388392],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}, Quarentena, [245], [388392],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}, Quarentena, [245], [388392],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2F23AB71-4AC6-41F2-A955-EA576E553146}, Quarentena, [245], [254682],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2F23AB71-4AC6-41F2-A955-EA576E553146}, Quarentena, [245], [254682],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}, Quarentena, [245], [254682],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarentena, [245], [182757],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarentena, [245], [182757],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Quarentena, [245], [182757],1.0.5440
PUP.Optional.InstallCore, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\PRODUCTSETUP, Quarentena, [392], [481004],1.0.5440
PUP.Optional.HermesTab.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\EHLCEEIJGGPDGFCEFMIPCMDELICKJGFG, Quarentena, [7091], [514922],1.0.5440
PUP.Optional.HermesTab.ChrPRST, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\EHLCEEIJGGPDGFCEFMIPCMDELICKJGFG, Quarentena, [7091], [514922],1.0.5440
PUP.Optional.HermesTab.ChrPRST, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ehlceeijggpdgfcefmipcmdelickjgfg, Quarentena, [7091], [514922],1.0.5440
PUP.Optional.HermesTab.ChrPRST, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME, Quarentena, [7091], [-1],0.0.0
PUP.Optional.HermesTab.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME, Quarentena, [7091], [-1],0.0.0
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211D4A5-48D0-47F5-A7CD-81E861470F7F}, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211D4A5-48D0-47F5-A7CD-81E861470F7F}, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211d4a5-48d0-47f5-a7cd-81e861470f7f}, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73952BE3-F822-44DA-B5BC-26314F5B60B0}, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73952BE3-F822-44DA-B5BC-26314F5B60B0}, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73952BE3-F822-44DA-B5BC-26314F5B60B0}, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{F79E5D1C-5148-469E-9F98-A11D8D7863F4}, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{F79E5D1C-5148-469E-9F98-A11D8D7863F4}, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{f79e5d1c-5148-469e-9f98-a11d8d7863f4}, Quarentena, [245], [388393],1.0.5440
PUP.Optional.AdvanceSystemCare, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\ASC_RASAPI32, Quarentena, [680], [333222],1.0.5440
PUP.Optional.AdvanceSystemCare, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\ASC_RASMANCS, Quarentena, [680], [333222],1.0.5440
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8F20C0BC-868D-44B6-B28E-9574DDC7E3E2}, Quarentena, [3765], [511142],1.0.5440
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{8F20C0BC-868D-44B6-B28E-9574DDC7E3E2}, Quarentena, [3765], [511141],1.0.5440
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Secured Yahoo Powered dosom, Quarentena, [3765], [511141],1.0.5440
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder0, Quarentena, [299], [186209],1.0.5440
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder1, Quarentena, [299], [186209],1.0.5440
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder2, Quarentena, [299], [186209],1.0.5440
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder3, Quarentena, [299], [186209],1.0.5440
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities Inc\SlimDrivers, Quarentena, [1430], [396321],1.0.5440
PUP.Optional.SecuredSearch.Generic, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ilnidodcffjfecahcfiihlhiohnaobic, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ilnidodcffjfecahcfiihlhiohnaobic, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ilnidodcffjfecahcfiihlhiohnaobic, Quarentena, [14381], [443103],1.0.5440
Adware.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Dalilit Donid, Quarentena, [14222], [512672],1.0.5440
Adware.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E868FC9B-BF98-4BE1-841D-558E1D105DBA}, Quarentena, [14222], [512672],1.0.5440
Adware.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{E868FC9B-BF98-4BE1-841D-558E1D105DBA}, Quarentena, [14222], [512672],1.0.5440

Valor de registro: 23
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|TABS, Quarentena, [245], [261450],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}|URL, Quarentena, [245], [388392],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}|URL, Quarentena, [245], [254682],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Quarentena, [245], [182757],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURLFALLBACK, Quarentena, [245], [182757],1.0.5440
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}|TOPRESULTURLFALLBACK, Quarentena, [245], [182757],1.0.5440
PUP.Optional.InstallCore, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\PRODUCTSETUP|TB, Quarentena, [392], [481004],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Quarentena, [245], [388393],1.0.5440
PUP.Optional.SearchYa, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FAVICONPATH, Quarentena, [335], [242799],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211d4a5-48d0-47f5-a7cd-81e861470f7f}|URL, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211d4a5-48d0-47f5-a7cd-81e861470f7f}|TOPRESULTURLFALLBACK, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}|URL, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73952BE3-F822-44DA-B5BC-26314F5B60B0}|URL, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{f79e5d1c-5148-469e-9f98-a11d8d7863f4}|URL, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Quarentena, [245], [388393],1.0.5440
PUP.Optional.SearchYa, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FAVICONPATH, Quarentena, [335], [242799],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}|URL, Quarentena, [245], [254683],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73952BE3-F822-44DA-B5BC-26314F5B60B0}|URL, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{f79e5d1c-5148-469e-9f98-a11d8d7863f4}|URL, Quarentena, [245], [388393],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}|TOPRESULTURLFALLBACK, Quarentena, [245], [182758],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211d4a5-48d0-47f5-a7cd-81e861470f7f}|URL, Quarentena, [245], [182758],1.0.5440
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8F20C0BC-868D-44B6-B28E-9574DDC7E3E2}|PATH, Quarentena, [3765], [511142],1.0.5440
PUP.Optional.WinBing.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|SAGACOCE, Quarentena, [7171], [390923],1.0.5440

Dados de registro: 3
PUP.Optional.WinYahoo, HKU\S-1-5-21-1039445894-2140852250-2885484900-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Substituir ao reiniciar, [245], [388390],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Substituído, [245], [388391],1.0.5440
PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Substituído, [245], [388391],1.0.5440

Fluxo de dados: 0
(Nenhum item malicioso detectado)

Pasta: 38
PUP.Optional.APNToolBar.Gen, C:\PROGRAMDATA\APN\APN-STUB, Quarentena, [708], [175062],1.0.5440
PUP.Optional.WeatherTool, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool\dump, Quarentena, [3602], [182063],1.0.5440
PUP.Optional.WeatherTool, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\WEATHERTOOL, Quarentena, [3602], [182063],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\icons, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\fonts, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\skin\icons, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\_metadata, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\vendor, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\skin, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 1\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, Quarentena, [242], [464596],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\_metadata, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\EXTENSIONS\bpmmandcadflhnnaiclipadomfmdbjbp, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\fonts\websafe-awesome, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\fonts, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\content-script, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\sync-worker, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\background, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\options, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\skin\icons, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\guard, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\_metadata, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\vendor, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\fonts, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\skin, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\ILNIDODCFFJFECAHCFIIHLHIOHNAOBIC, Quarentena, [14381], [443103],1.0.5440

Arquivo: 216
PUP.Optional.WeatherTool, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool\dump\BugReportConfig.ini, Quarentena, [3602], [182063],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\fonts\HelveticaNeue-Thin.otf, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\fonts\neue-bold.woff, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\fonts\neue.woff, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\icons\128.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\icons\16.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\icons\48.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\icons\close.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\icons\favicon.ico, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\01d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\01n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\02d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\02n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\03d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\03n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\04d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\04n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\09d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\09n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\10d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\10n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\11d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\11n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\13d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\13n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\50d.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\weather\50n.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\bing.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\bing_large.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\bluesky-bg.jpg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\brush.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\bt.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\clock.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\cloud.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\cupcake-bg.jpg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\desk-bg.jpg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\doodle.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\down.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\eyeglass.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\google.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\google_large.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\hero-bg.jpg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\just-the-box.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\mountain-bg.jpg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\pointer2.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\sea-bg.jpg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\settings.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\yahoo.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\yahoo.svg, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\images\yahoo_large.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\content\bundle.v0.0.1.min.css, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\skin\icons\16.png, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\vendor\md5.min.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\vendor\react-dom.min.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\vendor\react-with-addons.min.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\vendor\underscore-min.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\_metadata\verified_contents.json, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\2bfc185be71f44cd73ac81511fc1f5a5.woff, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\b495e340f4ef8924fea0284c1bf9e7ac.woff, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\background.html, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\background.v0.0.1.min.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\c5a5cbf4dbcaa7064f2bc77f52101aec.otf, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\client.v0.0.1.min.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\common.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\e_.json, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\index.html, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\manifest.json, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\popupTab2.html, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\popupTab2.js, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.0.54_0\responseConfig.json, Quarentena, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 1\Secure Preferences, Falha ao remover, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Falha ao remover, [242], [464596],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 1\Preferences, Substituído, [242], [464596],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\_metadata\verified_contents.json, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\background.js, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\ctn.js, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\jquery-3.1.1.min.js, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\manifest.json, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\ntab.html, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\ntab.js, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\search.png, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\searchIcon.png, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\stats.js, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp\2.1.0_0\style.css, Quarentena, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Falha ao remover, [2100], [465082],1.0.5440
PUP.Optional.uTab, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Preferences, Substituído, [2100], [465082],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\LOCAL STORAGE\chrome-extension_pilplloabdedfmialnfchjomjmpjcoej_0.localstorage, Quarentena, [242], [453138],1.0.5440
PUP.Optional.SearchModule, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\LOCAL STORAGE\chrome-extension_nahhmpbckpgdidfnmfkfgiflpjijilce_0.localstorage, Quarentena, [248], [453492],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\Losise Socesa, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\lime.txt, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\aowLC, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\cidode, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\hdat1, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\hdat2, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\mitasirot, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{43CC86AF-C98E-0C69-4F48-922BD50A19E5}\TTTTT, Quarentena, [3734], [453921],1.0.5440
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\Losise Socesa, Quarentena, [3734], [-1],0.0.0
PUP.Optional.InstallCore.Generic, C:\USERS\FABRINI NOT\DESKTOP\Continue Chromium update.lnk, Quarentena, [6213], [466466],1.0.5440
PUP.Optional.InstallCore.Generic, C:\USERS\FABRINI NOT\APPDATA\LOCAL\TEMP\ICReinstall_Chromium_Installer.exe, Quarentena, [6213], [466466],1.0.5440
PUP.Optional.WinYahoo.Generic, C:\WINDOWS\TASKS\Secured Yahoo Powered dosom.job, Quarentena, [3765], [511140],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 1\Secure Preferences, Falha ao remover, [242], [440037],1.0.5440
PUP.Optional.SearchManager, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Falha ao remover, [242], [440037],1.0.5440
PUP.Optional.HermesTab.ChrPRST, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Falha ao remover, [7091], [514922],1.0.5440
PUP.Optional.HermesTab.ChrPRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\NTUSER.POL, Quarentena, [7091], [-1],0.0.0
PUP.Optional.HermesTab.ChrPRST, C:\PROGRAMDATA\NTUSER.POL, Quarentena, [7091], [-1],0.0.0
PUP.Optional.HermesTab.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, Quarentena, [7091], [-1],0.0.0
PUP.Optional.SecuredSearch.Generic, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Falha ao remover, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Preferences, Substituído, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\ILNIDODCFFJFECAHCFIIHLHIOHNAOBIC\10.1.0.65_1\MANIFEST.JSON, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\fonts\HelveticaNeue-Thin.otf, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\fonts\neue-bold.woff, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\fonts\neue.woff, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\128.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\16.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\19.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\32.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\38.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\48.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\close.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\icons\favicon.ico, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\arrow.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\bolt.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\bytefence-logo-transparent.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\dropdown-button-off.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\dropdown-button.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\icon-red.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\icon.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\searchIcon.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sse\undo.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\01d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\01n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\02d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\02n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\03d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\03n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\04d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\04n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\09d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\09n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\10d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\10n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\11d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\11n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\13d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\13n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\50d.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\weather\50n.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\bing.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\bing_large.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\bluesky-bg.jpg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\brush.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\bt.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\clock.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\cloud.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\cupcake-bg.jpg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\desk-bg.jpg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\doodle.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\down.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\eyeglass.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\google.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\google_large.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\hero-bg.jpg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\just-the-box.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\mountain-bg.jpg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\pointer2.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\sea-bg.jpg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\settings.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\tile-bg.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\yahoo.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\yahoo.svg, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\images\yahoo_large.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\content\bundle.v0.0.1.min.css, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\fonts\websafe-awesome\websafe-awesome.css, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\fonts\websafe-awesome\websafe-awesome.woff2, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\background\index.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\content-script\animation-event.css, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\content-script\index.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\content-script\search.css, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\guard\index.css, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\guard\index.html, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\guard\index.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\options\index.css, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\options\index.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\options\options.html, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\lib\sync-worker\index.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\skin\icons\16.png, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\vendor\md5.min.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\vendor\react-dom.min.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\vendor\react-with-addons.min.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\vendor\underscore-min.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\_metadata\verified_contents.json, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\2bfc185be71f44cd73ac81511fc1f5a5.woff, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\b495e340f4ef8924fea0284c1bf9e7ac.woff, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\background.html, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\background.v0.0.1.min.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\c5a5cbf4dbcaa7064f2bc77f52101aec.otf, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\client.v0.0.1.min.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\common.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\e_.json, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\index.html, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\popupTab2.html, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\popupTab2.js, Quarentena, [14381], [443103],1.0.5440
PUP.Optional.SecuredSearch.Generic, C:\Users\Fabrini Not\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ilnidodcffjfecahcfiihlhiohnaobic\10.1.0.65_1\responseConfig.json, Quarentena, [14381], [443103],1.0.5440
Adware.WinYahoo.Generic, C:\WINDOWS\SYSTEM32\TASKS\Dalilit Donid, Quarentena, [14222], [512672],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\BAGESUR\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\FOMED\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\GILEK\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\HEBUPALIDA\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\LOSIMO\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\NEMECOR\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.WinYahoo, C:\USERS\FABRINI NOT\APPDATA\ROAMING\ROSEKOCEHO\SYNHELPER.EXE, Quarentena, [245], [521055],1.0.5440
PUP.Optional.InstallCore, C:\USERS\FABRINI NOT\APPDATA\LOCAL\TEMP\CUP\CHROMIUM_INSTALLER.EXE, Quarentena, [392], [510691],1.0.5440
PUP.Optional.ByteFence, C:\USERS\FABRINI NOT\APPDATA\LOCAL\TEMP\TMPSEC1495472\BYTEFENCE-INSTALLER_3.17.0.0.EXE, Quarentena, [6045], [389016],1.0.5440
PUP.Optional.ByteFence, C:\USERS\FABRINI NOT\APPDATA\LOCAL\TEMP\TMPSEC5158637\BYTEFENCE-INSTALLER-3.18.0.0.EXE, Quarentena, [6045], [389016],1.0.5440
PUP.Optional.InstallCore, C:\USERS\FABRINI NOT\DOWNLOADS\BAIXAKI_OPERA.EXE, Quarentena, [392], [324268],1.0.5440
Adware.Elex.ShrtCln, C:\USERS\FABRINI NOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 1\Web Data, Substituído, [246], [454748],1.0.5440

Setor físico: 0
(Nenhum item malicioso detectado)

Instrumentação do Windows (WMI): 0
(Nenhum item malicioso detectado)


(end)

Compartilhar este post


Link para o post
Compartilhar em outros sites

@bywilltof

 

Faça o download do RogueKiller by Tigzy, e salve na sua área de trabalho (Desktop).
roguekiller.exe (x64) << link

  • Feche todos os programas
  • Execute o RogueKiller.exe.
    ** Usuários do Windows Vista, Windows 7, 8, 8.1 e Windows 10:
    Clique com o direito sobre o arquivo rogueKiller.exe, depois clique em VRIfczU.png.
  • Quando a janela da Eula aparecer, clique em Accept.
  • Selecione a aba SCAN
  • Clique em START SCAN
  • Aguarde ate que o scan termine...
  • Clique no botão OPEN REPORT
  • Clique na opção EXPORT TXT e salve na Área de Trabalho com o nome de roguekiller.txt
  • Clique em OK e feche o RogueKiller.


Atente para abrir o arquivo, copiar e colar todo o conteúdo na sua próxima resposta

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário






Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×