[Resolvido] Não instalar anti-virus e nem o Hijackthis

[Roberto Restanho 0]

Pessoal, estou com o mesmo problema na minha máquina dos usuários JOMALOSA e FARBO, não consigo instalar quase nada no micro que ele da o erro de "este aplicativo não é w32". Fiz todos os procedimentos descritos no tópico do Farbo e não resolveu o problema.

Além disso, não consigo rodar o hijackthis, o sistema dá o mesmo alerta do anti-vírus, "este não é um aplicativo W32...".

O combofix também não consigo rodar...

 

Todo esse problema começou com a instalação do smilebox. Depois que eu fiz os procedimentos acima, quando ele reinicia o PC, aparece uma tela pedindo para eu localizar o arquivos EXE do smilebox... a partir daí o problema persiste.

Se alguém puder ajudar, agradeço.

 

O F-secure Black Light eu consegui rodar... segue relatório...

 

03/18/08 06:12:46 [info]: BlackLight Engine 1.0.67 initialized

03/18/08 06:12:46 [info]: OS: 5.1 build 2600 (Service Pack 2)

03/18/08 06:12:49 [Note]: 7019 4

03/18/08 06:12:49 [Note]: 7005 0

03/18/08 06:12:59 [Note]: 7006 0

03/18/08 06:12:59 [Note]: 7011 1472

03/18/08 06:13:06 [Note]: 7026 0

03/18/08 06:13:12 [Note]: 7026 0

03/18/08 06:13:12 [Note]: 7024 3

03/18/08 06:13:12 [info]: Hidden process: C:\WINDOWS\system32\drivers\hldrrr.exe

03/18/08 06:13:17 [Note]: FSRAW library version 1.7.1024

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1sptlPO.ex

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\w9_1geuk.cnt

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\W9_1GEUK.HLP

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\w9_1geus.cnt

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\W9_1GEUS.HLP

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\W9_1PO.HLP

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\w9_1sput.cnt

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1br.ths

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1cbe.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1cbeEN.CBD

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1cbepo.cbt

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1ce.icr

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1ce.sav

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1en.hwl

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1EN.mor

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1LDEN.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1LDPO.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1LDXX.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1LI.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1oz.icr

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1oz.sav

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1po.icr

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1po.lex

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1po.sav

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1po.ths

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1SPTLEN.HL

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1SPTP.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\WT9_1SPWP.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1uipo.dll

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1uk.adv

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1uk.icr

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1uk.rul

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1uk.sav

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\Wt9_1uk.ths

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1us.adv

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1us.icr

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1us.rul

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1us.sav

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:13:30 [info]: Hidden file: c:\Arquivos de programas\Arquivos comuns\Corel\Shared\Writing Tools\9.1\wt9_1us.ths

03/18/08 06:13:30 [Note]: 10002 3

03/18/08 06:15:03 [info]: Hidden file: c:\WINDOWS\system32\wintems.exe

03/18/08 06:15:03 [Note]: 10002 2

03/18/08 06:15:17 [info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys

03/18/08 06:15:17 [Note]: 10002 2

03/18/08 06:15:17 [info]: Hidden file: C:\WINDOWS\system32\drivers\hldrrr.exe

03/18/08 06:15:17 [Note]: 10002 2

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\100500.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\100515.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\102390.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\102500.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\102843.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\103109.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\103171.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\107203.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\111375.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\115843.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\119156.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\119468.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\120687.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\121406.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\121968.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\123218.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\125203.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\129953.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\133281.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\135000.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\139203.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\139796.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\141250.exe

03/18/08 06:15:19 [Note]: 10002 3

03/18/08 06:15:19 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1428906.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1431828.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1445421.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\144859.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1449109.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1453906.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\146156.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1465437.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14769234.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14770187.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\243578.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\245453.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\247109.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\248484.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\248750.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\249875.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\251046.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\252546.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\252578.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\255015.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\257312.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\261437.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\264093.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\264421.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\270421.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\274562.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\276968.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\282687.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\288890.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29338687.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29339625.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29355031.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29355234.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29360218.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29362843.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1625125.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1632125.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\165500.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\165781.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\165921.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\171625.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\171796.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\175437.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\176953.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\180890.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\181406.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\182968.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\185750.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\186609.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\188046.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\191140.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\191281.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\191921.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\193796.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\194343.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\194359.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\69156.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\69359.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\69781.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\71984.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\72562.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73400312.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73401421.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73404062.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73404234.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73409328.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73413281.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73413468.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73420437.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73462609.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73476156.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73480765.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73487703.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73523140.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73552640.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29428640.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29437281.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29440484.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29448218.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29479578.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29487609.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29489343.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29490140.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29494859.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29544203.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\295687.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29568859.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\296531.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\302875.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\306203.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\308890.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\312343.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\315843.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\316718.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\319328.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\325734.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\335609.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:20 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\342625.exe

03/18/08 06:15:20 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\364609.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\376375.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\43992500.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\43994343.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44007437.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44016203.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44019750.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44100562.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44130984.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44142890.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44148031.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44156437.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44177015.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44186765.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44189437.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44194109.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44201796.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44245171.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44252046.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\51515.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\52593.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\56296.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\56593.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14784781.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\159140.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\195250.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\242640.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\29368515.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\44006968.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\57250.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\67984.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73554359.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\57781.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58359.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58468.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58670109.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58671187.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58719640.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58719906.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58732203.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58736375.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58748468.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58815062.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58841046.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58845484.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58854359.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58859.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58875937.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58896796.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58899125.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58899968.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58906515.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58951671.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\58972531.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\59171.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\61562.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\64093.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\66562.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\66984.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73560578.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73612406.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\73625296.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\76671.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\77046.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\77265.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\77421.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\78859.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\79250.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\81250.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\85390.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\85625.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\86250.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\86984.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\87359.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\88468.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\90578.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\90625.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\91109.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\92125.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\92203.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\93718.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\95671.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\96546.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\98500.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14787234.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14789828.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14801859.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14828140.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14835437.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14843125.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\148453.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14847375.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14859078.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14869593.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14871109.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14871890.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14876890.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14918265.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\14923875.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1500609.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1512906.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1518250.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1524046.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\153718.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1549671.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\156421.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1571437.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1573343.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1574687.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\158000.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\1580625.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\195406.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\196703.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\198000.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\200671.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\201109.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\201843.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\203046.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\203625.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\205062.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\206156.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\206890.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\208796.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\210875.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\211703.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\211812.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\218312.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\230906.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\233187.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\239656.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:15:21 [info]: Hidden file: c:\WINDOWS\system32\drivers\down\240984.exe

03/18/08 06:15:21 [Note]: 10002 3

03/18/08 06:16:43 [Note]: 7007 0

[DigRam 144]

Boa Noite! Roberto Restanho

 

>@< Execute os procedimentos deste Tópico,e poste os relatórios: infoSat.txt + fsbl.xxxx.log

>@< Siga a ordenação,nas indicações dos procedimentos.

 

Abraços!

[Roberto Restanho 0]

Olá DigRam,

 

o combofix não funcionou... ainda...

 

abaixo o log do Elibagle...

 

 

 

Tue Mar 18 20:05:44 2008

EliBagle v11.16 ©2008 S.G.H. / Satinfo S.L.

----------------------------------------------

Lista de Acciones (por Acción Directa):

C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Bagle Acceso Denegado.

C:\WINDOWS\SYSTEM32\BAN_LIST.TXT --> Eliminado Bagle

C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Bagle (rootkit) Acceso Denegado.

C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Bagle.dldr Acceso Denegado.

Restaurada Clave: "SafeBoot\Minimal y Network"

Reinicie para Completar la Limpieza.

 

Tue Mar 18 20:06:13 2008

EliBagle v11.16 ©2008 S.G.H. / Satinfo S.L.

----------------------------------------------

Lista de Acciones (por Exploración):

Explorando Unidad C:\

C:\Documents and Settings\Roberto\SOUNDMAN.EXE --> Eliminado Bagle.dldr

C:\WINDOWS\system32\MDELK.EXE --> Acceso Denegado, Bagle (Reiniciar para completar la Limpieza)

 

Nº Total de Directorios: 12495

Nº Total de Ficheros: 161129

Nº de Ficheros Analizados: 6076

Nº de Ficheros Infectados: 2

Nº de Ficheros Limpiados: 2

 

Tue Mar 18 20:15:36 2008

EliBagle v11.16 ©2008 S.G.H. / Satinfo S.L.

----------------------------------------------

Lista de Acciones (por Acción Directa):

C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Eliminado Bagle

C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Eliminado Bagle (rootkit)

C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Eliminado Bagle.dldr

 

Tue Mar 18 20:15:44 2008

EliBagle v11.16 ©2008 S.G.H. / Satinfo S.L.

----------------------------------------------

Lista de Acciones (por Exploración):

Explorando Unidad C:\

C:\!KillBox\HLDRRR.EXE --> Eliminado Bagle.dldr

C:\!KillBox\SROSA.SYS --> Eliminado Bagle (rootkit)

C:\!KillBox\WINTEMS.EXE --> Eliminado Bagle

C:\!KillBox\down\103171.EXE --> Eliminado Bagle

C:\!KillBox\down\119468.EXE --> Eliminado Bagle

C:\!KillBox\down\165921.EXE --> Eliminado Bagle

C:\!KillBox\down\29355234.EXE --> Eliminado Bagle

C:\!KillBox\down\44007437.EXE --> Eliminado Bagle

C:\!KillBox\down\57781.EXE --> Eliminado Bagle

C:\!KillBox\down\58719906.EXE --> Eliminado Bagle

C:\!KillBox\down\58859.EXE --> Eliminado Bagle

C:\!KillBox\down\72234.EXE --> Eliminado Bagle

C:\!KillBox\down\73404234.EXE --> Eliminado Bagle

C:\!KillBox\down\77046.EXE --> Eliminado Bagle

C:\!KillBox\down\86250.EXE --> Eliminado Bagle

C:\!KillBox\down\91109.EXE --> Eliminado Bagle

C:\WINDOWS\system32\MDELK.EXE --> Eliminado Bagle

C:\WINDOWS\system32\drivers\down\119218.EXE --> Eliminado Bagle

C:\WINDOWS\system32\drivers\down\81265.EXE --> Eliminado Bagle

 

Nº Total de Directorios: 12537

Nº Total de Ficheros: 161890

Nº de Ficheros Analizados: 6123

Nº de Ficheros Infectados: 19

Nº de Ficheros Limpiados: 19

 

Tue Mar 18 20:23:56 2008

EliBagle v11.16 ©2008 S.G.H. / Satinfo S.L.

----------------------------------------------

Lista de Acciones (por Acción Directa):

 

e o log do black light

 

03/18/08 20:49:57 [info]: BlackLight Engine 1.0.67 initialized

03/18/08 20:49:57 [info]: OS: 5.1 build 2600 (Service Pack 2)

03/18/08 20:49:58 [Note]: 7019 4

03/18/08 20:49:58 [Note]: 7005 0

03/18/08 20:49:59 [Note]: 7006 0

03/18/08 20:49:59 [Note]: 7011 1480

03/18/08 20:50:00 [Note]: 7026 0

03/18/08 20:50:00 [Note]: 7026 0

03/18/08 20:50:01 [Note]: FSRAW library version 1.7.1024

03/18/08 20:52:16 [Note]: 7007 0

 

 

fazendo uma busca no forum, encontrei este tópico:

http://forum.imasters.com.br/index.php?showtopic=270057

Fiz os procedimentos até o Bitdefender

segue relatório do scan online:

 

 

[General]

App = "BitDefender Online Scanner v8"

Date = 18:03:2008

Time = 22:59:54

Scan Path = A:\;C:\;D:\;E:\;I:\;J:\;

 

[Engines Info]

Virus Definitions = 1010921

Engine build = "AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)"

Scan plugins = 16

Archive plugins = 41

Unpack plugins = 7

E-mail plugins = 6

System plugins = 5

 

[scan Statistics]

Folders = 13388

Files = 565825

Archives = 2646

Packed files = 24498

Identified viruses = 16

Infected files = 145

Warnings = 0

Suspect files = 0

Disinfected files = 0

Deleted files = 145

Copied files = 0

Moved files = 0

Renamed files = 0

I/O Errors = 29

 

[scan Settings]

SecondAction = Delete

FirstAction = Disinfect

Heuristics = 1

Enable Warnings = 1

Exclude Ext =

Extensions = *;

Scan Emails = 1

Scan Archives = 1

Scan Packed = 1

Scan Files = 1

Scan Boot = 1

Verify Memory = 0

 

[scan Results]

Line00000301 = "C:\Arquivos de programas\DAEMON Tools\SetupDTSB.exe Detected with: Application.Adware.Savenow.G"

Line00000300 = "C:\Arquivos de programas\DAEMON Tools\SetupDTSB.exe Disinfection failed"

Line00000299 = "C:\Arquivos de programas\DAEMON Tools\SetupDTSB.exe Deleted"

Line00000298 = "C:\Arquivos de programas\eMule\Incoming\Corel Paint Shop Pro Photo X2 Ver. 12.0 Multilenguaje + KeyGen + Corel Incentives.rar=>Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\keygen.exe Infected with: Backdoor.Bot.4115"

Line00000297 = "C:\Arquivos de programas\eMule\Incoming\Corel Paint Shop Pro Photo X2 Ver. 12.0 Multilenguaje + KeyGen + Corel Incentives.rar=>Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\keygen.exe Deleted"

Line00000296 = "C:\Arquivos de programas\eMule\Incoming\Corel Paint Shop Pro Photo X2 Ver. 12.0 Multilenguaje + KeyGen + Corel Incentives.rar Update failed"

Line00000295 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o)=>AMCIS.DLL Detected with: Adware.Aureate.A"

Line00000294 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o)=>AMCIS.DLL Deleted"

Line00000293 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o) Updated"

Line00000292 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o)=>ADVERT.DLL Detected with: Application.Aureate.Radiate.A"

Line00000291 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o)=>ADVERT.DLL Disinfection failed"

Line00000290 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o)=>ADVERT.DLL Deleted"

Line00000289 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe=>(ZIP Sfx o) Updated"

Line00000288 = "C:\Backup casa restanho\Revista\Jogos\QCabeca\Shapez\inst\shapez.exe Update failed"

Line00000287 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\4Z2BGDYR\b64_1[1].jpg Infected with: Trojan.Pakes.ZUS"

Line00000286 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\4Z2BGDYR\b64_1[1].jpg Deleted"

Line00000285 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\P83VTLSB\b64_1[1].jpg Infected with: Trojan.Pakes.ZUS"

Line00000284 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\P83VTLSB\b64_1[1].jpg Deleted"

Line00000283 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\SBU5A7OR\b64_31[1].jpg Infected with: Win32.Bagle.SUQ@mm"

Line00000282 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\SBU5A7OR\b64_31[1].jpg Deleted"

Line00000281 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\V4TJCU2R\b64_2[1].jpg Infected with: Win32.Bagle.SVG"

Line00000280 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\V4TJCU2R\b64_2[1].jpg Deleted"

Line00000279 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\V4TJCU2R\b64_31[1].jpg Infected with: Win32.Bagle.SUQ@mm"

Line00000278 = "C:\Documents and Settings\Roberto\Configurações locais\Temporary Internet Files\Content.IE5\V4TJCU2R\b64_31[1].jpg Deleted"

Line00000277 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\102390.exe Infected with: Win32.Bagle.SVG"

Line00000276 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\102390.exe Deleted"

Line00000275 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\1431828.exe Infected with: Trojan.Pakes.ZUS"

Line00000274 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\1431828.exe Deleted"

Line00000273 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\14770187.exe Infected with: Trojan.Pakes.ZUS"

Line00000272 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\14770187.exe Deleted"

Line00000271 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\29339625.exe Infected with: Trojan.Pakes.ZUS"

Line00000270 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\29339625.exe Deleted"

Line00000269 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\43994343.exe Infected with: Trojan.Pakes.ZUS"

Line00000268 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\43994343.exe Deleted"

Line00000267 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\56750.exe Infected with: Trojan.Pakes.ZUS"

Line00000266 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\56750.exe Deleted"

Line00000265 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\58359.exe Infected with: Trojan.Pakes.ZUS"

Line00000264 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\58359.exe Deleted"

Line00000263 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\58671187.exe Infected with: Win32.Bagle.SUM@mm"

Line00000262 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\58671187.exe Deleted"

Line00000261 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\61562.exe Infected with: Trojan.Pakes.ZUS"

Line00000260 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\61562.exe Deleted"

Line00000259 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\69156.exe Infected with: Trojan.Pakes.ZUS"

Line00000258 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\69156.exe Deleted"

Line00000257 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\69359.exe Infected with: Trojan.Pakes.ZUS"

Line00000256 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\69359.exe Deleted"

Line00000255 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\71984.exe Infected with: Trojan.Pakes.ZUS"

Line00000254 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\71984.exe Deleted"

Line00000253 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\73401421.exe Infected with: Trojan.Pakes.ZUS"

Line00000252 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\73401421.exe Deleted"

Line00000251 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\78859.exe Infected with: Win32.Bagle.SVG"

Line00000250 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\78859.exe Deleted"

Line00000249 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\79250.exe Infected with: Trojan.Pakes.ZUS"

Line00000248 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\79250.exe Deleted"

Line00000247 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\92203.exe Infected with: Trojan.Pakes.ZUS"

Line00000246 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\92203.exe Deleted"

Line00000245 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\93718.exe Infected with: Win32.Bagle.SVG"

Line00000244 = "C:\RECYCLER\S-1-5-21-776561741-1801674531-725345543-1003\Dc1\93718.exe Deleted"

Line00000243 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037625.exe Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000242 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037625.exe Deleted"

Line00000241 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037658.exe Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000240 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037658.exe Deleted"

Line00000239 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037668.sys Infected with: Rootkit.Bagle.F"

Line00000238 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037668.sys Deleted"

Line00000237 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037670.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000236 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037670.exe Deleted"

Line00000235 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037671.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000234 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037671.exe Deleted"

Line00000233 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037684.sys Infected with: Rootkit.Bagle.F"

Line00000232 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037684.sys Deleted"

Line00000231 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037685.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000230 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037685.exe Deleted"

Line00000229 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037687.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000228 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037687.exe Deleted"

Line00000227 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037809.sys Infected with: Rootkit.Bagle.F"

Line00000226 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037809.sys Deleted"

Line00000225 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037811.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000224 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037811.exe Deleted"

Line00000223 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037812.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000222 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037812.exe Deleted"

Line00000221 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037819.sys Infected with: Rootkit.Bagle.F"

Line00000220 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037819.sys Deleted"

Line00000219 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037829.sys Infected with: Rootkit.Bagle.F"

Line00000218 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0037829.sys Deleted"

Line00000217 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP419\A0037835.exe Infected with: Win32.Bagle.STX@mm"

Line00000216 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP419\A0037835.exe Deleted"

Line00000215 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP419\A0037836.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000214 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP419\A0037836.exe Deleted"

Line00000213 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP419\A0037837.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000212 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP419\A0037837.exe Deleted"

Line00000211 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037867.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000210 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037867.exe Deleted"

Line00000209 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037868.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000208 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037868.exe Deleted"

Line00000207 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037879.sys Infected with: Rootkit.Bagle.F"

Line00000206 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037879.sys Deleted"

Line00000205 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037883.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000204 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037883.exe Deleted"

Line00000203 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037884.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000202 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037884.exe Deleted"

Line00000201 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037967.sys Infected with: Rootkit.Bagle.F"

Line00000200 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037967.sys Deleted"

Line00000199 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037969.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000198 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037969.exe Deleted"

Line00000197 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037970.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000196 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037970.exe Deleted"

Line00000195 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037995.sys Infected with: Rootkit.Bagle.F"

Line00000194 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037995.sys Deleted"

Line00000193 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037996.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000192 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037996.exe Deleted"

Line00000191 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037997.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000190 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0037997.exe Deleted"

Line00000189 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038004.EXE Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000188 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038004.EXE Deleted"

Line00000187 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038013.sys Infected with: Rootkit.Bagle.F"

Line00000186 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038013.sys Deleted"

Line00000185 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038014.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000184 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038014.exe Deleted"

Line00000183 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038015.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000182 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038015.exe Deleted"

Line00000181 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038022.sys Infected with: Rootkit.Bagle.F"

Line00000180 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038022.sys Deleted"

Line00000179 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038023.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000178 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038023.exe Deleted"

Line00000177 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038024.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000176 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038024.exe Deleted"

Line00000175 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038029.exe Infected with: Win32.Bagle.SVG"

Line00000174 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038029.exe Deleted"

Line00000173 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038033.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000172 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038033.exe Deleted"

Line00000171 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038038.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000170 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038038.exe Deleted"

Line00000169 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038051.exe Infected with: Trojan.Pakes.ZUS"

Line00000168 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038051.exe Deleted"

Line00000167 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038059.exe Infected with: Trojan.Pakes.ZUS"

Line00000166 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038059.exe Deleted"

Line00000165 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038093.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000164 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038093.exe Deleted"

Line00000163 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038158.exe Infected with: Trojan.Pakes.ZUS"

Line00000162 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038158.exe Deleted"

Line00000161 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038160.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000160 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038160.exe Deleted"

Line00000159 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038192.exe Infected with: Trojan.Pakes.ZUS"

Line00000158 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038192.exe Deleted"

Line00000157 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038194.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000156 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038194.exe Deleted"

Line00000155 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038214.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000154 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038214.exe Deleted"

Line00000153 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038215.exe Infected with: Trojan.Pakes.ZUS"

Line00000152 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038215.exe Deleted"

Line00000151 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038218.exe Infected with: Win32.Bagle.SUM@mm"

Line00000150 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038218.exe Deleted"

Line00000149 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038220.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000148 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038220.exe Deleted"

Line00000147 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038228.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000146 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038228.exe Deleted"

Line00000145 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038237.exe Infected with: Trojan.Pakes.ZUS"

Line00000144 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038237.exe Deleted"

Line00000143 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038242.exe Infected with: Trojan.Pakes.ZUS"

Line00000142 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038242.exe Deleted"

Line00000141 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038243.exe Infected with: Trojan.Pakes.ZUS"

Line00000140 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038243.exe Deleted"

Line00000139 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038245.exe Infected with: Trojan.Pakes.ZUS"

Line00000138 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038245.exe Deleted"

Line00000137 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038248.exe Infected with: Trojan.Pakes.ZUS"

Line00000136 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038248.exe Deleted"

Line00000135 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038250.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000134 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038250.exe Deleted"

Line00000133 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038266.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000132 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038266.exe Deleted"

Line00000131 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038269.exe Infected with: Win32.Bagle.SVG"

Line00000130 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038269.exe Deleted"

Line00000129 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038270.exe Infected with: Trojan.Pakes.ZUS"

Line00000128 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038270.exe Deleted"

Line00000127 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038274.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000126 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038274.exe Deleted"

Line00000125 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038280.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000124 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038280.exe Deleted"

Line00000123 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038282.exe Infected with: Trojan.Pakes.ZUS"

Line00000122 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038282.exe Deleted"

Line00000121 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038283.exe Infected with: Win32.Bagle.SVG"

Line00000120 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038283.exe Deleted"

Line00000119 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038296.EXE Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000118 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0038296.EXE Deleted"

Line00000117 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039296.sys Infected with: Rootkit.Bagle.F"

Line00000116 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039296.sys Deleted"

Line00000115 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039297.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000114 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039297.exe Deleted"

Line00000113 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039298.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000112 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039298.exe Deleted"

Line00000111 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039305.sys Infected with: Rootkit.Bagle.F"

Line00000110 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039305.sys Deleted"

Line00000109 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039306.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000108 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039306.exe Deleted"

Line00000107 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039307.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000106 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP420\A0039307.exe Deleted"

Line00000105 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039308.EXE Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000104 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039308.EXE Deleted"

Line00000103 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039312.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000102 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039312.exe Deleted"

Line00000101 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039313.sys Infected with: Rootkit.Bagle.F"

Line00000100 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039313.sys Deleted"

Line00000099 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039314.exe Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000098 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039314.exe Deleted"

Line00000097 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039315.exe Infected with: Trojan.Dldr.Bagle.FW.Dam"

Line00000096 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039315.exe Deleted"

Line00000095 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039316.sys Infected with: Rootkit.Bagle.F"

Line00000094 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039316.sys Deleted"

Line00000093 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039317.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000092 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039317.exe Deleted"

Line00000091 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039318.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000090 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039318.exe Deleted"

Line00000089 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039319.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000088 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039319.exe Deleted"

Line00000087 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039320.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000086 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039320.exe Deleted"

Line00000085 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039321.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000084 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039321.exe Deleted"

Line00000083 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039322.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000082 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039322.exe Deleted"

Line00000081 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039323.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000080 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039323.exe Deleted"

Line00000079 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039324.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000078 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039324.exe Deleted"

Line00000077 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039325.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000076 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039325.exe Deleted"

Line00000075 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039326.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000074 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039326.exe Deleted"

Line00000073 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039327.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000072 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039327.exe Deleted"

Line00000071 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039328.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000070 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039328.exe Deleted"

Line00000069 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039329.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000068 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039329.exe Deleted"

Line00000067 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039330.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000066 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039330.exe Deleted"

Line00000065 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039331.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000064 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039331.exe Deleted"

Line00000063 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039332.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000062 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039332.exe Deleted"

Line00000061 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039333.exe Infected with: Win32.Bagle.SUQ@mm"

Line00000060 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039333.exe Deleted"

Line00000059 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039436.exe Detected with: Application.Adware.Savenow.G"

Line00000058 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039436.exe Disinfection failed"

Line00000057 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039436.exe Deleted"

Line00000056 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039437.exe Infected with: Win32.Bagle.SVG"

Line00000055 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039437.exe Deleted"

Line00000054 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039438.exe Infected with: Trojan.Pakes.ZUS"

Line00000053 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039438.exe Deleted"

Line00000052 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039439.exe Infected with: Trojan.Pakes.ZUS"

Line00000051 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039439.exe Deleted"

Line00000050 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039440.exe Infected with: Trojan.Pakes.ZUS"

Line00000049 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039440.exe Deleted"

Line00000048 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039441.exe Infected with: Trojan.Pakes.ZUS"

Line00000047 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039441.exe Deleted"

Line00000046 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039442.exe Infected with: Trojan.Pakes.ZUS"

Line00000045 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039442.exe Deleted"

Line00000044 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039443.exe Infected with: Trojan.Pakes.ZUS"

Line00000043 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039443.exe Deleted"

Line00000042 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039444.exe Infected with: Win32.Bagle.SUM@mm"

Line00000041 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039444.exe Deleted"

Line00000040 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039445.exe Infected with: Trojan.Pakes.ZUS"

Line00000039 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039445.exe Deleted"

Line00000038 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039446.exe Infected with: Trojan.Pakes.ZUS"

Line00000037 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039446.exe Deleted"

Line00000036 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039447.exe Infected with: Trojan.Pakes.ZUS"

Line00000035 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039447.exe Deleted"

Line00000034 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039448.exe Infected with: Trojan.Pakes.ZUS"

Line00000033 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039448.exe Deleted"

Line00000032 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039449.exe Infected with: Trojan.Pakes.ZUS"

Line00000031 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039449.exe Deleted"

Line00000030 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039450.exe Infected with: Win32.Bagle.SVG"

Line00000029 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039450.exe Deleted"

Line00000028 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039451.exe Infected with: Trojan.Pakes.ZUS"

Line00000027 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039451.exe Deleted"

Line00000026 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039452.exe Infected with: Trojan.Pakes.ZUS"

Line00000025 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039452.exe Deleted"

Line00000024 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039453.exe Infected with: Win32.Bagle.SVG"

Line00000023 = "C:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP421\A0039453.exe Deleted"

Line00000022 = "C:\WINDOWS\system32\drivers\down\53218.exe Infected with: Trojan.Pakes.ZUS"

Line00000021 = "C:\WINDOWS\system32\drivers\down\53218.exe Deleted"

Line00000020 = "C:\WINDOWS\system32\drivers\down\77093.exe Infected with: Trojan.Pakes.ZUS"

Line00000019 = "C:\WINDOWS\system32\drivers\down\77093.exe Deleted"

Line00000018 = "J:\System Volume Information\_restore{799F0A47-7EF3-4735-B8B1-48FD868CAB00}\RP4\A0000554.exe Detected with: Adware.Jumpgate.A"

Line00000017 = "J:\System Volume Information\_restore{799F0A47-7EF3-4735-B8B1-48FD868CAB00}\RP4\A0000554.exe Deleted"

Line00000016 = "J:\System Volume Information\_restore{799F0A47-7EF3-4735-B8B1-48FD868CAB00}\RP4\A0000555.exe Detected with: Adware.Jumpgate.A"

Line00000015 = "J:\System Volume Information\_restore{799F0A47-7EF3-4735-B8B1-48FD868CAB00}\RP4\A0000555.exe Deleted"

Line00000014 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0033 Detected with: Adware.Aureate.2"

Line00000013 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0033 Deleted"

Line00000012 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe Update failed"

Line00000011 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0034 Detected with: Adware.Aureate.2"

Line00000010 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0034 Deleted"

Line00000009 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe Update failed"

Line00000008 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0054 Detected with: Adware.Gator.AD"

Line00000007 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0054 Deleted"

Line00000006 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe Update failed"

Line00000005 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0055 Detected with: Adware.Newdotnet.P"

Line00000004 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe=>wise0055 Deleted"

Line00000003 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036803.exe Update failed"

Line00000002 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036833.exe Infected with: Trojan.Downloader.JJOM"

Line00000001 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036833.exe Disinfection failed"

Line00000000 = "J:\System Volume Information\_restore{EB500841-CDD9-44AB-85B7-A74887C353BC}\RP418\A0036833.exe Deleted"

 

 

Além disso, tenho 3 maquinas aqui em rede e duas estão infectadas... é melhor postar os relatórios das duas máquinas separados?

 

abraço e obrigado pela ajuda

Roberto

[DigRam 144]

Bom Dia! Roberto Restanho

 

Além disso, tenho 3 maquinas aqui em rede e duas estão infectadas... é melhor postar os relatórios das duas máquinas separados?

>@< Poste-os separados!

>@< Procure desconectar,da rede,esta máquina que está sendo desinfectada.Somente,reconecte-a,quando todas forem limpas!

________________________

 

>@< Vá em Iniciar >> Executar >> Digite: combofix.exe /u >> Clique Ok.

>@< Na mensagem,escolha o dois. ( 2 )

________________________

 

>@< BAIXE: < SysProtect Remover >

________________________

 

>@< Salve-o no Desktop!

>@< Reinicie o computador em Modo de Segurança. << Importante!

>@< Dê um duplo clique em: SysProtect Remover.exe

>@< Clique em Remove Now >> Clique em Sim.

>@< Na mensagem,dê o Ok. Aguarde!

>@< Terminando,feche a ferramenta e reinicie em Modo Normal.

________________________

 

>@< Baixe uma nova ferramenta! ( ComboFix.exe )

>@< Execute-a e poste o relatório: C:\ComboFix.txt

 

Abraços!

[Roberto Restanho 0]

Olá Digram,

 

não consigo executar o combofix.exe. O sistema não me retorna erro nenhum, apenas aparece a barrinha do combofix enchendo, a tela pisca e nada mais acontece.

 

porém o hijackthis esta funcionando, olha o log abaixo.

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 14:53:12, on 19/3/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Arquivos de programas\Ahead\InCD\InCDsrv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe

C:\Arquivos de programas\No-IP\DUC20.exe

C:\Arquivos de programas\Apache Software Foundation\Apache2.2\bin\httpd.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Arquivos de programas\Apache Software Foundation\Apache2.2\bin\httpd.exe

C:\Arquivos de programas\Mozilla Firefox\firefox.exe

C:\Arquivos de programas\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp

R3 - URLSearchHook: Barra de Ferramentas do Yahoo! com bloqueador de pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Arquivos de programas\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Arquivos de programas\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre1.5.0_09\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O3 - Toolbar: Barra de Ferramentas do Yahoo! com bloqueador de pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Arquivos de programas\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe

O4 - HKLM\..\Run: [VTTimer] VTTimer.exe

O4 - HKLM\..\Run: [avast!] C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: No-IP DUC.lnk = C:\Arquivos de programas\No-IP\DUC20.exe

O4 - Global Startup: Monitor Apache Servers.lnk = C:\Arquivos de programas\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.5.0_09\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.5.0_09\bin\ssv.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Arquivos de programas\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} - http://cid-a3ea1b1ea32473b8.spaces.live.co...ad/MsnPUpld.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{3ACE6D10-3921-42D6-A525-E853FD52ECB9}: NameServer = 10.1.1.1

O23 - Service: Apache2.2 - Apache Software Foundation - C:\Arquivos de programas\Apache Software Foundation\Apache2.2\bin\httpd.exe

O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Arquivos de programas\Ahead\InCD\InCDsrv.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

 

--

End of file - 5106 bytes

[DigRam 144]

Boa Tarde! Roberto Restanho

 

>@< Tente executá-lo,em Modo de Segurança,e veja se funciona!

 

Abraços!

[Roberto Restanho 0]

Olá DigRam,

 

também acontece a mesma coisa.

A boa notícia é que eu baixei a ultima versão do Avast e consegui instalá-lo. Aparentemente esta funcionando ok.

devo mais um postar um relatório do hijacthis?

 

abraço e grato pela ajuda até então.

 

Roberto

[DigRam 144]

Olá DigRam,

 

também acontece a mesma coisa.

A boa notícia é que eu baixei a ultima versão do Avast e consegui instalá-lo. Aparentemente esta funcionando ok.

devo mais um postar um relatório do hijacthis?

 

abraço e grato pela ajuda até então.

 

Roberto

___________________

 

Opa! Roberto Restanho

Boa Tarde!

 

>@< O Log do HijackThis,está limpo.

>@< E,voçê pode abortar a tentativa de rodar o ComboFix,já que a desinfecção em BitDefender e a ferramenta da Atribune,lhe liberaram a instalação e execução de antivírus.

>@< Faça,apenas,outra verificação em BitDefender,para confirmarmos a desinfecção do arquivo de volume.

>@< Delete o antigo relatório,e poste o deste scan.

 

Abraços!

[Mário Monteiro 179]

PROBLEMA RESOLVIDO!

 

Caso o autor necessite que o tópico seja reaberto é necessário enviar uma Mensagem Privada para um Moderador com um link para o tópico.