Usamos cookies para medir audiência e melhorar sua experiência. Você pode aceitar ou recusar a qualquer momento. Veja sobre o iMasters.
o ccleaner eu abro e ele fecha automaticamente no mesmo momento
desinstalações de alguns programas sozinhos
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:23:11, on 29/9/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Arquivos de programas\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Arquivos de programas\Yuna Software\Messenger Plus!\PlusService.exe
C:\Arquivos de programas\Real\RealPlayer\update\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Arquivos de programas\X'nBeep 1.1\XnBeep.exe
C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe
C:\Arquivos de programas\Java\jre6\bin\jqs.exe
C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp\wkego.exe
C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp\winoqvhmw.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
C:\Arquivos de programas\Windows Live\Contacts\wlcomm.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrador\Meus documentos\Downloads\HiJackThis.exe
C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O1 - Hosts: 199.180.132.192 www.hotmail.com
O1 - Hosts: 199.180.132.192 hotmail.com
O1 - Hosts: 199.180.132.192 msn.com
O1 - Hosts: 199.180.132.192 www.msn.com
O1 - Hosts: 199.180.132.192 live.com
O1 - Hosts: 199.180.132.192 www.live.com
O1 - Hosts: 173.0.61.235 www4.itau.com.br
O1 - Hosts: 173.0.61.235 itau.com.br
O1 - Hosts: 173.0.61.235 www.itau.com.br
O1 - Hosts: 173.0.61.235 www.bancoitau.com.br
O1 - Hosts: 173.0.61.235 bancoitau.com.br
O1 - Hosts: 173.0.61.235 www.itaupersonnalite.com.br
O1 - Hosts: 173.0.61.235 itaupersonnalite.com.br
O1 - Hosts: 199.180.132.197 bb.com.br
O1 - Hosts: 199.180.132.197 www.bb.com.br
O1 - Hosts: 199.180.132.197 www.bancodobrasil.com.br
O1 - Hosts: 199.180.132.197 bancodobrasil.com.br
O1 - Hosts: 208.89.213.119 www.santander.com.br
O1 - Hosts: 208.89.213.119 www4.santander.com.br
O1 - Hosts: 208.89.213.119 santander.com.br
O1 - Hosts: 208.89.213.119 www.santandernet.com.br
O1 - Hosts: 208.89.213.119 santandernet.com.br
O1 - Hosts: 208.89.213.119 www.banespa.com.br
O1 - Hosts: 199.180.132.65 www.cef.com.br
O1 - Hosts: 199.180.132.65 cef.com.br
O1 - Hosts: 199.180.132.65 www.caixa.gov.br
O1 - Hosts: 199.180.132.65 caixa.gov.br
O1 - Hosts: 199.180.132.65 www.caixa.com.br
O1 - Hosts: 199.180.132.65 caixa.com.br
O1 - Hosts: 199.180.132.65 www.caixaeconomica.com.br
O1 - Hosts: 199.180.132.65 caixaeconomica.com.br
O1 - Hosts: 199.180.132.65 www.caixaeconomica.gov.br
O1 - Hosts: 199.180.132.65 caixaeconomica.gov.br
O1 - Hosts: 199.180.132.65 www.caixaeconomicafederal.com.br
O1 - Hosts: 199.180.132.65 caixaeconomicafederal.com.br
O1 - Hosts: 199.180.132.65 www.caixaeconomicafederal.gov.br
O1 - Hosts: 199.180.132.65 caixaeconomicafederal.gov.br
O1 - Hosts: 199.180.132.209 www.sicredi.com.br
O1 - Hosts: 199.180.132.209 sicredi.com.br
O1 - Hosts: 199.180.132.58 bradesco.com.br
O1 - Hosts: 199.180.132.58 www.bradesco.com.br
O1 - Hosts: 199.180.132.58 www4.bradesco.com.br
O1 - Hosts: 199.180.132.58 www.prime.com.br
O1 - Hosts: 199.180.132.58 prime.com.br
O1 - Hosts: 199.180.132.58 www.bradescoprime.com.br
O1 - Hosts: 199.180.132.58 bradescoprime.com.br
O1 - Hosts: 199.180.132.56 www.serasa.com.br
O1 - Hosts: 199.180.132.56 serasa.com.br
O1 - Hosts: 199.180.132.54 www.banrisul.com.br
O1 - Hosts: 199.180.132.54 www4.banrisul.com.br
O1 - Hosts: 199.180.132.54 banrisul.com.br
O1 - Hosts: 199.180.132.52 www2.americanexpress.com.br
O1 - Hosts: 199.180.132.52 www.americanexpress.com.br
O1 - Hosts: 199.180.132.52 americanexpress.com.br
O1 - Hosts: 199.180.132.52 www.americanexpress.com
O1 - Hosts: 199.180.132.52 americanexpress.com
O1 - Hosts: 199.180.133.2 www.hsbc.com.br
O1 - Hosts: 199.180.133.2 hsbc.com.br
O1 - Hosts: 199.180.133.200 www.cetelem.com.br
O1 - Hosts: 199.180.133.200 cetelem.com.br
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Arquivos de programas\AskBarDis\bar\bin\askBar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Arquivos de programas\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programa Auxiliar de Início de Sessão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Arquivos de programas\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Arquivos de programas\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Arquivos de programas\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Arquivos de programas\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Arquivos de programas\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [PlusService] C:\Arquivos de programas\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Arquivos de programas\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [X'nBeep] C:\Arquivos de programas\X'nBeep 1.1\XnBeep.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Publicar em Blogue - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Arquivos de programas\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Publicar no Blogue no Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Arquivos de programas\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Arquivos de programas\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 10596 bytes
Carregando comentários...
