Usamos cookies para medir audiência e melhorar sua experiência. Você pode aceitar ou recusar a qualquer momento. Veja sobre o iMasters.
por favor alguem mi ajude meu pc esta toda hora travando,fica aparecendo uma mensagem dizendo q um programa do windows
foi fechado por causa de um virus que danificou....alguem mi ajude com urgencia... :(
obs: tmbm aparece essa mensagem(verificando o crc do arquivo nod32.exe: o arquivo nod32.exe está danificado, possivelmente infectado. )
Log HijackThis..
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:22:56, on 2/6/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\ARQUIV~1\GbPlugin\GbpSv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Arquivos de programas\Java\jre1.5.0_04\bin\jusched.exe
C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe
C:\Arquivos de programas\Java\jre1.5.0_04\bin\jucheck.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Arquivos de programas\Eset\nod32kui.exe
C:\WINDOWS\System32\reader_s.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Administrador\reader_s.exe
C:\WINDOWS\system32\svchost.exe
C:\Arquivos de programas\Firebird\Firebird_2_0\bin\fbguard.exe
C:\Arquivos de programas\Eset\nod32krn.exe
C:\WINDOWS\system32\svchost.exe
C:\Arquivos de programas\Firebird\Firebird_2_0\bin\fbserver.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE
C:\kk.exe
C:\WINDOWS\System32\svchost.exe
C:\Arquivos de programas\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\TEMP\pqr3B.tmp
C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.claro.com.br/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.claro.com.br/
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\drivers\services.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CompSegIB - {2E3C3651-B19C-4DD9-A979-901EC3E930AF} - C:\Arquivos de programas\Scpad\scpsssh2.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\ARQUIV~1\MICROS~1\Office12\GRA8E1~1.DLL
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Arquivos de programas\GbPlugin\gbieh.dll
O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Arquivos de programas\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [skyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [nod32kui] "C:\Arquivos de programas\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [userFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [[system]] C:\WINDOWS\system32\drivers\services.exe
O4 - HKLM\..\Run: [winlogon] C:\Documents and Settings\Administrador\svchost.exe
O4 - HKLM\..\Run: [reader_s] C:\WINDOWS\System32\reader_s.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [cdoosoft] C:\WINDOWS\system32\olhrwef.exe
O4 - HKCU\..\Run: [reader_s] C:\Documents and Settings\Administrador\reader_s.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-19\..\Run: [MsnMsgr] "C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe" /background (User '?')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User '?')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')
O4 - S-1-5-18 Startup: is-OLE8B.lnk = C:\Documents and Settings\Administrador\Desktop\Virus Removal Tool\is-OLE8B\startup.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Arquivos de programas\Microsoft Office\Office12\ONENOTEM.EXE (User 'SYSTEM')
O4 - S-1-5-18 Startup: userinit.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: is-OLE8B.lnk = C:\Documents and Settings\Administrador\Desktop\Virus Removal Tool\is-OLE8B\startup.exe (User 'Default user')
O4 - .DEFAULT Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Arquivos de programas\Microsoft Office\Office12\ONENOTEM.EXE (User 'Default user')
O4 - .DEFAULT Startup: userinit.exe (User 'Default user')
O4 - Startup: is-OLE8B.lnk = C:\Documents and Settings\Administrador\Desktop\Virus Removal Tool\is-OLE8B\startup.exe
O4 - Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Arquivos de programas\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: userinit.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp
O14 - IERESET.INF: START_PAGE_URL=http://www.compartilhando.org/
O15 - Trusted Zone: *.extranetclaro.com.br
O16 - DPF: {29B60510-91EB-11DC-8314-0800200C9A66} - https://certificadoss.extranetclaro.com.br/...nstalaCert3.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} (Settings Class) - https://certificadoss.extranetclaro.com.br/safe/capicom.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game02.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931} (GbpDistObj Class) - https://www14.bancobrasil.com.br/plugin/GbpDist.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O17 - HKLM\System\CCS\Services\Tcpip\..\{31A7038A-B0E0-4F10-B2BD-3D76449766DC}: NameServer = 192.168.1.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\ARQUIV~1\MICROS~1\Office12\GR99D3~1.DLL
O20 - Winlogon Notify: GbPluginBb - C:\Arquivos de programas\GbPlugin\gbieh.dll
O20 - Winlogon Notify: abgmakyj - C:\WINDOWS\SYSTEM32\abgmakyj.dll
O20 - Winlogon Notify: bszqenmy - C:\WINDOWS\SYSTEM32\bszqenmy32.dll
O21 - SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Arquivos de programas\Scpad\scpLIB.dll
O22 - SharedTaskScheduler: scpLIB - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Arquivos de programas\Scpad\scpLIB.dll
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - FirebirdSQL Project - C:\Arquivos de programas\Firebird\Firebird_2_0\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - FirebirdSQL Project - C:\Arquivos de programas\Firebird\Firebird_2_0\bin\fbserver.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Arquivos de programas\Eset\nod32krn.exe
--
End of file - 9870 bytes
Log kaspersky.....
Scan
----
Scanned: 1514
Detected: 104
Untreated: 0
Start time: 1/6/2009 13:18:06
Duration: 00:04:13
Finish time: 1/6/2009 13:22:19
Detected
--------
Status Object
------ ------
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.ce File: C:\WINDOWS\Explorer.EXE
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\mshta.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\notepad.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\regedit.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\accwiz.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\windows media player\wmplayer.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\k-lite codec pack\media player classic\mplayerc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\rundll32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\outlook express\wab.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\hh.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\clipbrd.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\fontview.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\winhlp32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\winhlp32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\windows nt\hypertrm.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaw.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaws.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\wscript.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\ntbackup.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\mmc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\rasphone.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\perfmon.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\windows nt\acessórios\wordpad.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\notepad.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\wpnpinst.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\drwtsn32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\userinit.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\java\jre1.5.0_04\bin\jusched.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\igfxtray.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\hkcmd.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\igfxpers.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\rthdcpl.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\skytel.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\alcmtr.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\eset\nod32kui.exe
deleted: Trojan program Backdoor.Win32.Small.ibb File: c:\windows\system32\reader_s.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\dumprep.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\ctfmon.exe
deleted: Trojan program Backdoor.Win32.Small.ibb File: c:\documents and settings\administrador\reader_s.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\cmd.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\tscupgrd.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\alg.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\cisvc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\clipsrv.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\dllhost.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\dmadmin.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbguard.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbserver.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\imapi.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\mnmsrvc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\msdtc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\msiexec.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\netdde.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\eset\nod32krn.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\sessmgr.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\locator.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\rsvp.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\scardsvr.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\spoolsv.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\smlogsvc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\tlntsvr.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\wdfmgr.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\ups.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\vssvc.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\wbem\wmiapsrv.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\ieudinit.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\inf\unregmp2.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\shmgrate.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\regsvr32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\outlook express\setup50.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\ie4uinit.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\progman.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\logon.scr
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\sstext3d.scr
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\adobe\acrobat 7.0\reader\acrord32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\msn gaming zone\windows\bckgzm.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\msn gaming zone\windows\chkrzm.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\netmeeting\conf.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\windows nt\dialer.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\pchealth\helpctr\binaries\helpctr.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\msn gaming zone\windows\hrtzzm.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\internet explorer\connection wizard\icwconn1.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\internet explorer\connection wizard\icwconn2.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\internet explorer\connection wizard\inetwiz.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\internet explorer\connection wizard\isignup.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\usmt\migwiz.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\movie maker\moviemk.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\windows media player\mplayer2.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\pchealth\helpctr\binaries\msconfig.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\outlook express\msimn.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\arquivos comuns\microsoft shared\msinfo\msinfo32.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\messenger\msmsgs.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\mspaint.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\windows nt\pinball\pinball.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\msn gaming zone\windows\rvsezm.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\msn gaming zone\windows\shvlzm.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\outlook express\wabmig.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\winrar\winrar.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\ntsd.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\system32\java.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\windows\network diagnostic\xpnetdiag.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\arquivos de programas\adobe\acrobat 7.0\reader\reader_sl.exe
disinfected: virus Virus.Win32.Virut.ce File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\startup.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.ce File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe
Events
------
Time Name Status Reason
---- ---- ------ ------
1/6/2009 13:18:29 File: C:\WINDOWS\Explorer.EXE detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:29 File: C:\WINDOWS\Explorer.EXE not disinfected postponed
1/6/2009 13:18:35 File: c:\windows\system32\mshta.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:35 File: c:\windows\system32\mshta.exe not disinfected postponed
1/6/2009 13:18:35 File: c:\windows\system32\notepad.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:35 File: c:\windows\system32\notepad.exe not disinfected postponed
1/6/2009 13:18:35 File: c:\windows\regedit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:35 File: c:\windows\regedit.exe not disinfected postponed
1/6/2009 13:18:38 File: c:\windows\system32\accwiz.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:38 File: c:\windows\system32\accwiz.exe not disinfected postponed
1/6/2009 13:18:38 File: c:\arquivos de programas\windows media player\wmplayer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:39 File: c:\arquivos de programas\windows media player\wmplayer.exe not disinfected postponed
1/6/2009 13:18:39 File: c:\arquivos de programas\k-lite codec pack\media player classic\mplayerc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:43 File: c:\arquivos de programas\k-lite codec pack\media player classic\mplayerc.exe not disinfected postponed
1/6/2009 13:18:44 File: c:\windows\system32\rundll32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:44 File: c:\windows\system32\rundll32.exe not disinfected postponed
1/6/2009 13:18:44 File: C:\WINDOWS\system32\rundll32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:44 File: C:\WINDOWS\system32\rundll32.exe not disinfected postponed
1/6/2009 13:18:44 File: c:\arquivos de programas\outlook express\wab.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:44 File: c:\arquivos de programas\outlook express\wab.exe not disinfected postponed
1/6/2009 13:18:44 File: c:\windows\hh.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:44 File: c:\windows\hh.exe not disinfected postponed
1/6/2009 13:18:44 File: c:\windows\system32\clipbrd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:45 File: c:\windows\system32\clipbrd.exe not disinfected postponed
1/6/2009 13:18:48 File: c:\windows\explorer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:48 File: c:\windows\explorer.exe not disinfected postponed
1/6/2009 13:18:48 File: c:\windows\system32\fontview.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:48 File: c:\windows\system32\fontview.exe not disinfected postponed
1/6/2009 13:18:49 File: c:\windows\winhlp32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:49 File: c:\windows\winhlp32.exe not disinfected postponed
1/6/2009 13:18:49 File: c:\windows\system32\winhlp32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:49 File: c:\windows\system32\winhlp32.exe not disinfected postponed
1/6/2009 13:18:49 File: c:\arquivos de programas\windows nt\hypertrm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:49 File: c:\arquivos de programas\windows nt\hypertrm.exe not disinfected postponed
1/6/2009 13:18:49 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaw.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:49 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaw.exe not disinfected postponed
1/6/2009 13:18:49 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaws.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:49 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaws.exe not disinfected postponed
1/6/2009 13:18:50 File: c:\windows\system32\wscript.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:50 File: c:\windows\system32\wscript.exe not disinfected postponed
1/6/2009 13:18:50 File: c:\windows\system32\ntbackup.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:51 File: c:\windows\system32\ntbackup.exe not disinfected postponed
1/6/2009 13:18:51 File: c:\windows\system32\mmc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:53 File: c:\windows\system32\mmc.exe not disinfected postponed
1/6/2009 13:18:54 File: c:\windows\system32\rasphone.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:54 File: c:\windows\system32\rasphone.exe not disinfected postponed
1/6/2009 13:18:54 File: c:\windows\system32\perfmon.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:54 File: c:\windows\system32\perfmon.exe not disinfected postponed
1/6/2009 13:18:55 File: C:\WINDOWS\regedit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:55 File: C:\WINDOWS\regedit.exe not disinfected postponed
1/6/2009 13:18:55 File: c:\arquivos de programas\windows nt\acessórios\wordpad.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:55 File: c:\arquivos de programas\windows nt\acessórios\wordpad.exe not disinfected postponed
1/6/2009 13:18:55 File: c:\windows\notepad.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:55 File: c:\windows\notepad.exe not disinfected postponed
1/6/2009 13:18:55 File: c:\windows\system32\wpnpinst.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:55 File: c:\windows\system32\wpnpinst.exe not disinfected postponed
1/6/2009 13:18:56 File: c:\windows\system32\drwtsn32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:56 File: c:\windows\system32\drwtsn32.exe not disinfected postponed
1/6/2009 13:18:56 File: C:\WINDOWS\explorer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:56 File: C:\WINDOWS\explorer.exe not disinfected postponed
1/6/2009 13:18:56 File: c:\windows\system32\userinit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:56 File: c:\windows\system32\userinit.exe not disinfected postponed
1/6/2009 13:18:57 File: c:\arquivos de programas\java\jre1.5.0_04\bin\jusched.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:57 File: c:\arquivos de programas\java\jre1.5.0_04\bin\jusched.exe not disinfected postponed
1/6/2009 13:18:57 File: c:\windows\system32\igfxtray.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:57 File: c:\windows\system32\igfxtray.exe not disinfected postponed
1/6/2009 13:18:57 File: c:\windows\system32\hkcmd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:57 File: c:\windows\system32\hkcmd.exe not disinfected postponed
1/6/2009 13:18:57 File: c:\windows\system32\igfxpers.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:18:57 File: c:\windows\system32\igfxpers.exe not disinfected postponed
1/6/2009 13:19:12 File: c:\windows\rthdcpl.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:12 File: c:\windows\rthdcpl.exe not disinfected postponed
1/6/2009 13:19:14 File: c:\windows\skytel.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:15 File: c:\windows\skytel.exe not disinfected postponed
1/6/2009 13:19:15 File: c:\windows\alcmtr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:15 File: c:\windows\alcmtr.exe not disinfected postponed
1/6/2009 13:19:16 File: c:\arquivos de programas\eset\nod32kui.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:16 File: c:\arquivos de programas\eset\nod32kui.exe not disinfected postponed
1/6/2009 13:19:16 File: c:\windows\system32\reader_s.exe detected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:19:16 File: c:\windows\system32\reader_s.exe not disinfected postponed
1/6/2009 13:19:16 File: c:\windows\system32\dumprep.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:17 File: c:\windows\system32\dumprep.exe not disinfected postponed
1/6/2009 13:19:17 File: c:\windows\system32\ctfmon.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:17 File: c:\windows\system32\ctfmon.exe not disinfected postponed
1/6/2009 13:19:17 File: c:\documents and settings\administrador\reader_s.exe detected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:19:17 File: c:\documents and settings\administrador\reader_s.exe not disinfected postponed
1/6/2009 13:19:17 File: c:\windows\system32\cmd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:17 File: c:\windows\system32\cmd.exe not disinfected postponed
1/6/2009 13:19:18 File: c:\windows\system32\tscupgrd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:18 File: c:\windows\system32\tscupgrd.exe not disinfected postponed
1/6/2009 13:19:18 File: C:\WINDOWS\system32\cmd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:18 File: C:\WINDOWS\system32\cmd.exe not disinfected postponed
1/6/2009 13:19:21 File: c:\windows\system32\alg.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:21 File: c:\windows\system32\alg.exe not disinfected postponed
1/6/2009 13:19:21 File: c:\windows\system32\cisvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:21 File: c:\windows\system32\cisvc.exe not disinfected postponed
1/6/2009 13:19:22 File: c:\windows\system32\clipsrv.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:22 File: c:\windows\system32\clipsrv.exe not disinfected postponed
1/6/2009 13:19:22 File: c:\windows\system32\dllhost.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:22 File: c:\windows\system32\dllhost.exe not disinfected postponed
1/6/2009 13:19:22 File: c:\windows\system32\dmadmin.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:22 File: c:\windows\system32\dmadmin.exe not disinfected postponed
1/6/2009 13:19:23 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbguard.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:23 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbguard.exe not disinfected postponed
1/6/2009 13:19:24 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbserver.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:24 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbserver.exe not disinfected postponed
1/6/2009 13:19:25 File: c:\windows\system32\imapi.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:25 File: c:\windows\system32\imapi.exe not disinfected postponed
1/6/2009 13:19:26 File: c:\windows\system32\mnmsrvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:26 File: c:\windows\system32\mnmsrvc.exe not disinfected postponed
1/6/2009 13:19:26 File: c:\windows\system32\msdtc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:26 File: c:\windows\system32\msdtc.exe not disinfected postponed
1/6/2009 13:19:26 File: c:\windows\system32\msiexec.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:26 File: c:\windows\system32\msiexec.exe not disinfected postponed
1/6/2009 13:19:27 File: c:\windows\system32\netdde.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:27 File: c:\windows\system32\netdde.exe not disinfected postponed
1/6/2009 13:19:28 File: c:\arquivos de programas\eset\nod32krn.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:28 File: c:\arquivos de programas\eset\nod32krn.exe not disinfected postponed
1/6/2009 13:19:28 File: c:\windows\system32\sessmgr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:29 File: c:\windows\system32\sessmgr.exe not disinfected postponed
1/6/2009 13:19:29 File: c:\windows\system32\locator.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:29 File: c:\windows\system32\locator.exe not disinfected postponed
1/6/2009 13:19:29 File: c:\windows\system32\rsvp.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:29 File: c:\windows\system32\rsvp.exe not disinfected postponed
1/6/2009 13:19:29 File: c:\windows\system32\scardsvr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:29 File: c:\windows\system32\scardsvr.exe not disinfected postponed
1/6/2009 13:19:30 File: c:\windows\system32\spoolsv.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:30 File: c:\windows\system32\spoolsv.exe not disinfected postponed
1/6/2009 13:19:30 File: c:\windows\system32\smlogsvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:30 File: c:\windows\system32\smlogsvc.exe not disinfected postponed
1/6/2009 13:19:31 File: c:\windows\system32\tlntsvr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:31 File: c:\windows\system32\tlntsvr.exe not disinfected postponed
1/6/2009 13:19:31 File: c:\windows\system32\wdfmgr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:31 File: c:\windows\system32\wdfmgr.exe not disinfected postponed
1/6/2009 13:19:31 File: c:\windows\system32\ups.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:31 File: c:\windows\system32\ups.exe not disinfected postponed
1/6/2009 13:19:31 File: c:\windows\system32\vssvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:32 File: c:\windows\system32\vssvc.exe not disinfected postponed
1/6/2009 13:19:32 File: c:\windows\system32\wbem\wmiapsrv.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:32 File: c:\windows\system32\wbem\wmiapsrv.exe not disinfected postponed
1/6/2009 13:19:34 File: c:\windows\system32\ieudinit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:34 File: c:\windows\system32\ieudinit.exe not disinfected postponed
1/6/2009 13:19:34 File: c:\windows\inf\unregmp2.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:35 File: c:\windows\inf\unregmp2.exe not disinfected postponed
1/6/2009 13:19:35 File: c:\windows\system32\shmgrate.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:35 File: c:\windows\system32\shmgrate.exe not disinfected postponed
1/6/2009 13:19:35 File: c:\windows\system32\regsvr32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:35 File: c:\windows\system32\regsvr32.exe not disinfected postponed
1/6/2009 13:19:35 File: c:\arquivos de programas\outlook express\setup50.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:35 File: c:\arquivos de programas\outlook express\setup50.exe not disinfected postponed
1/6/2009 13:19:36 File: c:\windows\system32\ie4uinit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:36 File: c:\windows\system32\ie4uinit.exe not disinfected postponed
1/6/2009 13:19:37 File: c:\windows\system32\progman.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:37 File: c:\windows\system32\progman.exe not disinfected postponed
1/6/2009 13:19:40 File: c:\windows\system32\logon.scr detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:40 File: c:\windows\system32\logon.scr not disinfected postponed
1/6/2009 13:19:40 File: c:\windows\system32\sstext3d.scr detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:41 File: c:\windows\system32\sstext3d.scr not disinfected postponed
1/6/2009 13:19:41 File: C:\WINDOWS\system32\logon.scr detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:41 File: C:\WINDOWS\system32\logon.scr not disinfected postponed
1/6/2009 13:19:46 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\acrord32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:46 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\acrord32.exe not disinfected postponed
1/6/2009 13:19:46 File: c:\arquivos de programas\msn gaming zone\windows\bckgzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:46 File: c:\arquivos de programas\msn gaming zone\windows\bckgzm.exe not disinfected postponed
1/6/2009 13:19:46 File: c:\arquivos de programas\msn gaming zone\windows\chkrzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:46 File: c:\arquivos de programas\msn gaming zone\windows\chkrzm.exe not disinfected postponed
1/6/2009 13:19:47 File: c:\arquivos de programas\netmeeting\conf.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:47 File: c:\arquivos de programas\netmeeting\conf.exe not disinfected postponed
1/6/2009 13:19:48 File: c:\arquivos de programas\windows nt\dialer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:48 File: c:\arquivos de programas\windows nt\dialer.exe not disinfected postponed
1/6/2009 13:19:49 File: c:\windows\pchealth\helpctr\binaries\helpctr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:49 File: c:\windows\pchealth\helpctr\binaries\helpctr.exe not disinfected postponed
1/6/2009 13:19:49 File: c:\arquivos de programas\msn gaming zone\windows\hrtzzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:49 File: c:\arquivos de programas\msn gaming zone\windows\hrtzzm.exe not disinfected postponed
1/6/2009 13:19:50 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn1.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:50 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn1.exe not disinfected postponed
1/6/2009 13:19:50 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn2.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:50 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn2.exe not disinfected postponed
1/6/2009 13:19:50 File: c:\arquivos de programas\internet explorer\connection wizard\inetwiz.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:50 File: c:\arquivos de programas\internet explorer\connection wizard\inetwiz.exe not disinfected postponed
1/6/2009 13:19:51 File: c:\arquivos de programas\internet explorer\connection wizard\isignup.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:51 File: c:\arquivos de programas\internet explorer\connection wizard\isignup.exe not disinfected postponed
1/6/2009 13:19:51 File: c:\windows\system32\usmt\migwiz.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:51 File: c:\windows\system32\usmt\migwiz.exe not disinfected postponed
1/6/2009 13:19:52 File: c:\arquivos de programas\movie maker\moviemk.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:55 File: c:\arquivos de programas\movie maker\moviemk.exe not disinfected postponed
1/6/2009 13:19:56 File: c:\arquivos de programas\windows media player\mplayer2.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:56 File: c:\arquivos de programas\windows media player\mplayer2.exe not disinfected postponed
1/6/2009 13:19:56 File: c:\windows\pchealth\helpctr\binaries\msconfig.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:56 File: c:\windows\pchealth\helpctr\binaries\msconfig.exe not disinfected postponed
1/6/2009 13:19:56 File: c:\arquivos de programas\outlook express\msimn.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:56 File: c:\arquivos de programas\outlook express\msimn.exe not disinfected postponed
1/6/2009 13:19:56 File: c:\arquivos de programas\arquivos comuns\microsoft shared\msinfo\msinfo32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:56 File: c:\arquivos de programas\arquivos comuns\microsoft shared\msinfo\msinfo32.exe not disinfected postponed
1/6/2009 13:19:57 File: c:\arquivos de programas\messenger\msmsgs.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:19:58 File: c:\arquivos de programas\messenger\msmsgs.exe not disinfected postponed
1/6/2009 13:20:04 File: c:\windows\system32\mspaint.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:04 File: c:\windows\system32\mspaint.exe not disinfected postponed
1/6/2009 13:20:04 File: c:\arquivos de programas\windows nt\pinball\pinball.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:04 File: c:\arquivos de programas\windows nt\pinball\pinball.exe not disinfected postponed
1/6/2009 13:20:04 File: c:\arquivos de programas\msn gaming zone\windows\rvsezm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:04 File: c:\arquivos de programas\msn gaming zone\windows\rvsezm.exe not disinfected postponed
1/6/2009 13:20:04 File: c:\arquivos de programas\msn gaming zone\windows\shvlzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:04 File: c:\arquivos de programas\msn gaming zone\windows\shvlzm.exe not disinfected postponed
1/6/2009 13:20:05 File: c:\arquivos de programas\outlook express\wabmig.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:05 File: c:\arquivos de programas\outlook express\wabmig.exe not disinfected postponed
1/6/2009 13:20:05 File: c:\arquivos de programas\winrar\winrar.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:05 File: c:\arquivos de programas\winrar\winrar.exe not disinfected postponed
1/6/2009 13:20:06 File: c:\windows\system32\ntsd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:06 File: c:\windows\system32\ntsd.exe not disinfected postponed
1/6/2009 13:20:06 File: c:\windows\system32\java.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:06 File: c:\windows\system32\java.exe not disinfected postponed
1/6/2009 13:20:07 File: c:\windows\network diagnostic\xpnetdiag.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:07 File: c:\windows\network diagnostic\xpnetdiag.exe not disinfected postponed
1/6/2009 13:20:10 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\reader_sl.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:10 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\reader_sl.exe not disinfected postponed
1/6/2009 13:20:10 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\startup.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:10 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\startup.exe not disinfected postponed
1/6/2009 13:20:10 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:10 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe not disinfected postponed
1/6/2009 13:20:11 File: c:\windows\explorer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:19 File: c:\windows\explorer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:19 File: c:\windows\explorer.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:20 File: c:\windows\explorer.exe will be disinfected on system restart
1/6/2009 13:20:20 File: c:\windows\system32\mshta.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:21 File: c:\windows\system32\mshta.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:21 File: c:\windows\system32\notepad.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:22 File: c:\windows\system32\notepad.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:22 File: c:\windows\regedit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:23 File: c:\windows\regedit.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:23 File: c:\windows\system32\accwiz.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:23 File: c:\windows\system32\accwiz.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:23 File: c:\arquivos de programas\windows media player\wmplayer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:24 File: c:\arquivos de programas\windows media player\wmplayer.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:24 File: c:\arquivos de programas\k-lite codec pack\media player classic\mplayerc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:25 File: c:\arquivos de programas\k-lite codec pack\media player classic\mplayerc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:26 File: c:\windows\system32\rundll32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:27 File: c:\windows\system32\rundll32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:27 File: c:\arquivos de programas\outlook express\wab.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:28 File: c:\arquivos de programas\outlook express\wab.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:28 File: c:\windows\hh.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:29 File: c:\windows\hh.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:29 File: c:\windows\system32\clipbrd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:29 File: c:\windows\system32\clipbrd.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:29 File: c:\windows\system32\fontview.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:30 File: c:\windows\system32\fontview.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:30 File: c:\windows\winhlp32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:30 File: c:\windows\winhlp32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:31 File: c:\windows\system32\winhlp32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:31 File: c:\windows\system32\winhlp32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:32 File: c:\arquivos de programas\windows nt\hypertrm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:32 File: c:\arquivos de programas\windows nt\hypertrm.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:33 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaw.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:33 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaw.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:34 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaws.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:34 File: c:\arquivos de programas\java\jre1.5.0_04\bin\javaws.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:34 File: c:\windows\system32\wscript.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:36 File: c:\windows\system32\wscript.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:36 File: c:\windows\system32\ntbackup.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:36 File: c:\windows\system32\ntbackup.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:37 File: c:\windows\system32\mmc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:37 File: c:\windows\system32\mmc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:38 File: c:\windows\system32\rasphone.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:38 File: c:\windows\system32\rasphone.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:39 File: c:\windows\system32\perfmon.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:40 File: c:\windows\system32\perfmon.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:40 File: c:\arquivos de programas\windows nt\acessórios\wordpad.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:41 File: c:\arquivos de programas\windows nt\acessórios\wordpad.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:41 File: c:\windows\notepad.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:42 File: c:\windows\notepad.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:42 File: c:\windows\system32\wpnpinst.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:42 File: c:\windows\system32\wpnpinst.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:43 File: c:\windows\system32\drwtsn32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:44 File: c:\windows\system32\drwtsn32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:44 File: c:\windows\system32\userinit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:46 File: c:\windows\system32\userinit.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:46 File: c:\arquivos de programas\java\jre1.5.0_04\bin\jusched.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:47 File: c:\arquivos de programas\java\jre1.5.0_04\bin\jusched.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:47 File: c:\windows\system32\igfxtray.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:48 File: c:\windows\system32\igfxtray.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:48 File: c:\windows\system32\hkcmd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:49 File: c:\windows\system32\hkcmd.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:49 File: c:\windows\system32\igfxpers.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:50 File: c:\windows\system32\igfxpers.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:50 File: c:\windows\rthdcpl.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:51 File: c:\windows\rthdcpl.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:51 File: c:\windows\skytel.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:52 File: c:\windows\skytel.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:52 File: c:\windows\alcmtr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:53 File: c:\windows\alcmtr.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:54 File: c:\arquivos de programas\eset\nod32kui.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:55 File: c:\arquivos de programas\eset\nod32kui.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:20:56 File: c:\windows\system32\reader_s.exe detected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:21:10 Startup object: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\reader_s disinfected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:21:11 File: c:\windows\system32\reader_s.exe deleted
1/6/2009 13:21:11 File: c:\windows\system32\dumprep.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:15 File: c:\windows\system32\dumprep.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:15 File: c:\windows\system32\ctfmon.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:17 File: c:\windows\system32\ctfmon.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:17 File: c:\documents and settings\administrador\reader_s.exe detected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:21:21 Startup object: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\reader_s disinfected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:21:21 Startup object: HKEY_USERS\S-1-5-21-1935655697-1757981266-682003330-500\Software\Microsoft\Windows\CurrentVersion\Run\reader_s disinfected Trojan program 'Backdoor.Win32.Small.ibb'
1/6/2009 13:21:21 File: c:\documents and settings\administrador\reader_s.exe deleted
1/6/2009 13:21:21 File: c:\windows\system32\cmd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:24 File: c:\windows\system32\cmd.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:24 File: c:\windows\system32\tscupgrd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:26 File: c:\windows\system32\tscupgrd.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:26 File: c:\windows\system32\alg.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:27 File: c:\windows\system32\alg.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:27 File: c:\windows\system32\cisvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:28 File: c:\windows\system32\cisvc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:28 File: c:\windows\system32\clipsrv.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:29 File: c:\windows\system32\clipsrv.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:29 File: c:\windows\system32\dllhost.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:31 File: c:\windows\system32\dllhost.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:31 File: c:\windows\system32\dmadmin.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:32 File: c:\windows\system32\dmadmin.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:32 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbguard.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:34 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbguard.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:34 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbserver.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:35 File: c:\arquivos de programas\firebird\firebird_2_0\bin\fbserver.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:35 File: c:\windows\system32\imapi.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:36 File: c:\windows\system32\imapi.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:36 File: c:\windows\system32\mnmsrvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:37 File: c:\windows\system32\mnmsrvc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:37 File: c:\windows\system32\msdtc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:38 File: c:\windows\system32\msdtc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:38 File: c:\windows\system32\msiexec.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:38 File: c:\windows\system32\msiexec.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:38 File: c:\windows\system32\netdde.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:39 File: c:\windows\system32\netdde.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:39 File: c:\arquivos de programas\eset\nod32krn.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:40 File: c:\arquivos de programas\eset\nod32krn.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:40 File: c:\windows\system32\sessmgr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:40 File: c:\windows\system32\sessmgr.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:40 File: c:\windows\system32\locator.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:41 File: c:\windows\system32\locator.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:41 File: c:\windows\system32\rsvp.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:42 File: c:\windows\system32\rsvp.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:42 File: c:\windows\system32\scardsvr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:42 File: c:\windows\system32\scardsvr.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:42 File: c:\windows\system32\spoolsv.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:43 File: c:\windows\system32\spoolsv.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:43 File: c:\windows\system32\smlogsvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:44 File: c:\windows\system32\smlogsvc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:44 File: c:\windows\system32\tlntsvr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:45 File: c:\windows\system32\tlntsvr.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:45 File: c:\windows\system32\wdfmgr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:46 File: c:\windows\system32\wdfmgr.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:46 File: c:\windows\system32\ups.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:47 File: c:\windows\system32\ups.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:47 File: c:\windows\system32\vssvc.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:48 File: c:\windows\system32\vssvc.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:48 File: c:\windows\system32\wbem\wmiapsrv.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:48 File: c:\windows\system32\wbem\wmiapsrv.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:48 File: c:\windows\system32\ieudinit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:49 File: c:\windows\system32\ieudinit.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:49 File: c:\windows\inf\unregmp2.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:50 File: c:\windows\inf\unregmp2.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:50 File: c:\windows\system32\shmgrate.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:50 File: c:\windows\system32\shmgrate.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:50 File: c:\windows\system32\regsvr32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:51 File: c:\windows\system32\regsvr32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:51 File: c:\arquivos de programas\outlook express\setup50.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:51 File: c:\arquivos de programas\outlook express\setup50.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:51 File: c:\windows\system32\ie4uinit.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:52 File: c:\windows\system32\ie4uinit.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:52 File: c:\windows\system32\progman.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:53 File: c:\windows\system32\progman.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:53 File: c:\windows\system32\logon.scr detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:53 File: c:\windows\system32\logon.scr disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:53 File: c:\windows\system32\sstext3d.scr detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:54 File: c:\windows\system32\sstext3d.scr disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:54 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\acrord32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:55 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\acrord32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:55 File: c:\arquivos de programas\msn gaming zone\windows\bckgzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:55 File: c:\arquivos de programas\msn gaming zone\windows\bckgzm.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:55 File: c:\arquivos de programas\msn gaming zone\windows\chkrzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:56 File: c:\arquivos de programas\msn gaming zone\windows\chkrzm.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:56 File: c:\arquivos de programas\netmeeting\conf.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:57 File: c:\arquivos de programas\netmeeting\conf.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:57 File: c:\arquivos de programas\windows nt\dialer.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:57 File: c:\arquivos de programas\windows nt\dialer.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:58 File: c:\windows\pchealth\helpctr\binaries\helpctr.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:58 File: c:\windows\pchealth\helpctr\binaries\helpctr.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:58 File: c:\arquivos de programas\msn gaming zone\windows\hrtzzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:59 File: c:\arquivos de programas\msn gaming zone\windows\hrtzzm.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:59 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn1.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:21:59 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn1.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:00 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn2.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:00 File: c:\arquivos de programas\internet explorer\connection wizard\icwconn2.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:00 File: c:\arquivos de programas\internet explorer\connection wizard\inetwiz.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:01 File: c:\arquivos de programas\internet explorer\connection wizard\inetwiz.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:01 File: c:\arquivos de programas\internet explorer\connection wizard\isignup.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:02 File: c:\arquivos de programas\internet explorer\connection wizard\isignup.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:02 File: c:\windows\system32\usmt\migwiz.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:03 File: c:\windows\system32\usmt\migwiz.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:03 File: c:\arquivos de programas\movie maker\moviemk.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:03 File: c:\arquivos de programas\movie maker\moviemk.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:04 File: c:\arquivos de programas\windows media player\mplayer2.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:04 File: c:\arquivos de programas\windows media player\mplayer2.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:05 File: c:\windows\pchealth\helpctr\binaries\msconfig.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:06 File: c:\windows\pchealth\helpctr\binaries\msconfig.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:06 File: c:\arquivos de programas\outlook express\msimn.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:07 File: c:\arquivos de programas\outlook express\msimn.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:07 File: c:\arquivos de programas\arquivos comuns\microsoft shared\msinfo\msinfo32.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:09 File: c:\arquivos de programas\arquivos comuns\microsoft shared\msinfo\msinfo32.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:09 File: c:\arquivos de programas\messenger\msmsgs.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:09 File: c:\arquivos de programas\messenger\msmsgs.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:10 File: c:\windows\system32\mspaint.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:10 File: c:\windows\system32\mspaint.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:10 File: c:\arquivos de programas\windows nt\pinball\pinball.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:11 File: c:\arquivos de programas\windows nt\pinball\pinball.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:11 File: c:\arquivos de programas\msn gaming zone\windows\rvsezm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:12 File: c:\arquivos de programas\msn gaming zone\windows\rvsezm.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:12 File: c:\arquivos de programas\msn gaming zone\windows\shvlzm.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:12 File: c:\arquivos de programas\msn gaming zone\windows\shvlzm.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:13 File: c:\arquivos de programas\outlook express\wabmig.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:13 File: c:\arquivos de programas\outlook express\wabmig.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:13 File: c:\arquivos de programas\winrar\winrar.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:14 File: c:\arquivos de programas\winrar\winrar.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:14 File: c:\windows\system32\ntsd.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:15 File: c:\windows\system32\ntsd.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:15 File: c:\windows\system32\java.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:15 File: c:\windows\system32\java.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:16 File: c:\windows\network diagnostic\xpnetdiag.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:16 File: c:\windows\network diagnostic\xpnetdiag.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:17 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\reader_sl.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:17 File: c:\arquivos de programas\adobe\acrobat 7.0\reader\reader_sl.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:17 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\startup.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:18 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\startup.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:18 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:18 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe detected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:18 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe disinfected virus 'Virus.Win32.Virut.ce'
1/6/2009 13:22:19 File: c:\documents and settings\administrador\desktop\virus removal tool\is-ole8b\is-ole8b.exe will be disinfected on system restart
Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------
Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Prompt for action when the scan is complete
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes
Quarantine
----------
Status Object Size Added
------ ------ ---- -----
Backup
------
Status Object Size
------ ------ ----
Oi Karoline eu não vou garantir a ajudá-la em seu caso , pois a infecção presente em seu PC é de dificil remoção e caso não consiguirmos remover, vamos ter que apelar pela formatação. Mais peço que siga os meus procedimentos até o final.
• Vá a este Link,e baixe: < Malwarebytes >
• Atualize o programa!
• Escolha o escaneamento Rápido!
• Desabilite programas de proteção,ao executar o malwarebytes.
• Procure enviar os ítens detectados para a quarentena,clicando em Remover itens.
• Para maiores detalhes: < Link >
-----------------------
• Poste,os relatórios: mbam-log-2008-xx-xx (00-00-00).txt + HijackThis,atualizado.
Tópico Arquivado
Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado.
Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura.
Bom dia karoline.
• Baixe: < Kaspersky Virus Removal Tool >
• Salve-o em Arquivos de Programas,e instale-o aí mesmo!
• Reinicie o computador,em Modo de Segurança! <-- Importante!
• Dê início ao exame,clicando em "Scan".
• A verificação é um pouco demorada. Aguarde!
• Caso seja encontrada infecções,clique em "disinfect".
• Terminando,clique na aba Events.
• Desmarque a caixa de seleção "Show all events".
• Clique em "Save to file".
• Nomeie-o e salve-o no desktop! <-- Relatório para postagem!
Depois léia o tópico fixo da área Segurança & Malware e posta também um log do hijackthis.
Regra Nº 02 - Utilizando O Hijackthis
:)