[Resolvido!] Mais um iexplore.exe que abre sozinho!

[Sharner 0]

Como o nome do tópico já diz, eu sou mais um com o problema do iexplore.exe que abre sozinho. Já procurei de tude que há no Google mas nada funciona. Pelo amor de Deus, me ajudem!

 

Log do HijackThis

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 22:08:28, on 19/04/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Arquivos de programas\Java\jre6\bin\jqs.exe

C:\Arquivos de programas\Network Associates\Common Framework\FrameworkService.exe

C:\Arquivos de programas\Network Associates\VirusScan\VsTskMgr.exe

C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Arquivos de programas\Microsoft Private Folder 1.0\PrfldSvc.exe

C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Arquivos de programas\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\system32\VTtrayp.exe

C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\OpenDNS Updater\OpenDNS Updater.exe

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Mozilla Firefox\firefox.exe

C:\Arquivos de programas\Network Associates\VirusScan\Mcshield.exe

C:\Documents and Settings\Victor\Desktop\Main\Programas\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com/

O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\ARQUIVOS DE PROGRAMAS\GBPLUGIN\gbieh.dll

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Arquivos de programas\Free Download Manager\iefdm2.dll

O4 - HKLM\..\Run: [VTTimer] VTTimer.exe

O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [OpenDNS Update] "C:\Arquivos de programas\OpenD

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKCU\..\Run: [ccleaner] "C:\Arquivos de programas\CCleaner\ccleaner.exe" /AUTO

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Typecash] C:\DOCUME~1\Victor\DADOSD~1\atom1\Livestore.exe

O4 - HKCU\..\Run: [uberIcon] "C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe"

O4 - HKCU\..\Run: [Free Download Manager] C:\Arquivos de programas\Free Download Manager\fdm.exe -autorun

O4 - HKCU\..\Run: [software Informer] "C:\Arquivos de programas\Software Informer\softinfo.exe" -autorun

O4 - Startup: OpenDNS Updater.lnk = C:\Arquivos de programas\OpenDNS Updater\OpenDNS Updater.exe

O4 - Startup: Speedy.lnk = ?

O4 - Startup: UberIcon.lnk = C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe

O8 - Extra context menu item: Baixar com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dllink.htm

O8 - Extra context menu item: Baixar tudo com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlall.htm

O8 - Extra context menu item: Baixar vídeo com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlfvideo.htm

O8 - Extra context menu item: Download selecionado pelo Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlselected.htm

O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O17 - HKLM\System\CCS\Services\Tcpip\..\{DA965675-D223-4121-B090-4B3CE6D0B039}: NameServer = 208.67.222.222 208.67.220.220

O20 - Winlogon Notify: GbPluginBb - C:\ARQUIVOS DE PROGRAMAS\GBPLUGIN\gbieh.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Arquivos de programas\Arquivos comuns\ArcSoft\Connection Service\Bin\ACService.exe (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Arquivos de programas\Arquivos comuns\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Arquivos de programas\Java\jre6\bin\jqs.exe

O23 - Service: Serviço McAfee Framework (McAfeeFramework) - Network Associates, Inc. - C:\Arquivos de programas\Network Associates\Common Framework\FrameworkService.exe

O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Arquivos de programas\Network Associates\VirusScan\Mcshield.exe

O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Arquivos de programas\Network Associates\VirusScan\VsTskMgr.exe

O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Arquivos de programas\Microsoft Private Folder 1.0\PrfldSvc.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Arquivos de programas\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

 

--

End of file - 5379 bytes

 

 

Qualquer ajuda já ta valendo! :thumbsup:

[DigRam 144]

Boa Noite! Sharner

 

<@> Baixe: < LopS&D >

<@> Salve-o no Disco Local-C!

<@> Instale o programa e clique em: LopSD.cmd

<@> Na janela que abrir,aperte o "p" --> Aperte Enter.

<@> Em outra janela,aperte a opção 2 --> Aperte Enter --> Aguarde!

<@> Ps: Fique atento às notificações de seu antivírus,enviando os ficheiros detectados,para a quarentena.

<@> Terminando,salve e poste o relatório. ( C:\Lop SD\LopR_1.txt )

<@> Poste,também,HijackThis atualizado.

 

Abraços!

[Sharner 0]

LopSD

 

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

 

Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3

X86-based PC ( Uniprocessor Free : Intel® Pentium® 4 CPU 2.66GHz )

BIOS : Default System BIOS

USER : Victor ( Administrator )

BOOT : Normal boot

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:74 Go (Free:19 Go)

D:\ (CD or DVD) - CDFS - Total:4 Go (Free:0 Go)

E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

 

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )

Option : [2] ( 20/04/2009|10:30 )

 

 

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ REMOVIDOS

 

Deletado! - C:\WINDOWS\Tasks\A43D4300918AF680.job

Deletado! - C:\WINDOWS\Tasks\A92D3715911AACA9.job

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\Aim Wave.dat

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\Aim Wave.exe

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\Bash Close.dat

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\Bash Close.exe

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\cool nurb.exe

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\Style Slow.dat

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse\Style Slow.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\akgydvjh.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\aynatfxp.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\csdhzspx.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\dzgqrbgg.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\ghzboign.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\Knob Start More.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\kyffbeab.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\lhuxbgct.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\Livestore.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\qsvplkqe.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\Roamgluempegdelete.exe

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1\sprqlllz.exe

Deletado! - C:\DOCUME~1\Cida.CD\DADOSD~1\atom1\Livestore.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\bcneaqgc.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\dpdwnnrq.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\fbwmuqiz.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\ffeaoqtj.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\frqvxpzk.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\iplqfvjn.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\jbkrgepx.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\Knob Start More.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\Livestore.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\ombwwpwy.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\qerqkouc.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\qxtidltg.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\Roamgluempegdelete.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\smciolsc.exe

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1\utfeqroa.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\dwzdxovx.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\Knob Start More.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\Livestore.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\nccnhvpz.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\phxhnyqj.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\pwkmdrmi.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\rlupiori.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\Roamgluempegdelete.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\robzynxx.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\texnytpt.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\utnbicbc.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\vpiqkivz.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\xbfhnofu.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\zjrvuutm.exe

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1\zsrrtqtq.exe

Deletado! - C:\Arquivos de programas\Orbitdownloader\addons

Deletado! - C:\DOCUME~1\ALLUSE~1\DADOSD~1\Audio 4 part browse

Deletado! - C:\DOCUME~1\Ana\DADOSD~1\atom1

Deletado! - C:\DOCUME~1\Cida.CD\DADOSD~1\atom1

Deletado! - C:\DOCUME~1\Ricardo\DADOSD~1\atom1

Deletado! - C:\DOCUME~1\Victor\DADOSD~1\atom1

Deletado! - C:\Arquivos de programas\atom1

Deletado! - C:\Arquivos de programas\Orbitdownloader

 

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

 

 

--------------------\\ Lista de pastas em DADOSD~1

 

[02/08/2008|23:02] C:\DOCUME~1\ADMINI~1\DADOSD~1\Adobe

[02/08/2008|22:26] C:\DOCUME~1\ADMINI~1\DADOSD~1\Ahead

[02/08/2008|20:10] C:\DOCUME~1\ADMINI~1\DADOSD~1\Identities

[02/08/2008|23:02] C:\DOCUME~1\ADMINI~1\DADOSD~1\Macromedia

[03/08/2008|10:59] C:\DOCUME~1\ADMINI~1\DADOSD~1\Microsoft

 

[22/12/2008|17:55] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Adobe

[07/08/2008|18:39] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Adobe Systems

[12/12/2008|13:56] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Apple Computer

[12/12/2008|13:56] C:\DOCUME~1\ALLUSE~1\DADOSD~1\ArcSoft

[21/08/2008|20:57] C:\DOCUME~1\ALLUSE~1\DADOSD~1\CenerTCPMessenger

[19/08/2008|21:24] C:\DOCUME~1\ALLUSE~1\DADOSD~1\DVD Shrink

[25/01/2009|15:13] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Electronic Arts

[14/10/2008|18:10] C:\DOCUME~1\ALLUSE~1\DADOSD~1\FLEXnet

[18/04/2009|09:47] C:\DOCUME~1\ALLUSE~1\DADOSD~1\FreeDownloadManager.ORG

[02/03/2009|21:21] C:\DOCUME~1\ALLUSE~1\DADOSD~1\GbPlugin

[12/08/2008|11:41] C:\DOCUME~1\ALLUSE~1\DADOSD~1\HP

[17/12/2008|17:16] C:\DOCUME~1\ALLUSE~1\DADOSD~1\HP Product Assistant

[12/12/2008|13:58] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Kodak

[19/03/2009|22:12] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Microsoft

[20/11/2008|12:20] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Microsoft Games

[02/08/2008|21:26] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Network Associates

[27/11/2008|21:42] C:\DOCUME~1\ALLUSE~1\DADOSD~1\NFS Underground

[13/04/2009|10:09] C:\DOCUME~1\ALLUSE~1\DADOSD~1\OpenDNS Updater

[25/01/2009|14:59] C:\DOCUME~1\ALLUSE~1\DADOSD~1\PCPitstop

[05/10/2008|16:37] C:\DOCUME~1\ALLUSE~1\DADOSD~1\PlayFirst

[06/08/2008|22:02] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Real

[22/08/2008|21:35] C:\DOCUME~1\ALLUSE~1\DADOSD~1\SpeedBit

[26/12/2008|20:16] C:\DOCUME~1\ALLUSE~1\DADOSD~1\TEMP

[18/04/2009|17:58] C:\DOCUME~1\ALLUSE~1\DADOSD~1\TrackMania

[02/08/2008|23:41] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Windows Genuine Advantage

[17/11/2008|20:32] C:\DOCUME~1\ALLUSE~1\DADOSD~1\WLInstaller

[31/10/2008|20:30] C:\DOCUME~1\ALLUSE~1\DADOSD~1\Zylom

 

[22/02/2009|14:47] C:\DOCUME~1\Ana\DADOSD~1\Adobe

[16/01/2009|20:27] C:\DOCUME~1\Ana\DADOSD~1\Ahead

[04/03/2009|16:25] C:\DOCUME~1\Ana\DADOSD~1\Apple Computer

[12/12/2008|18:22] C:\DOCUME~1\Ana\DADOSD~1\ArcSoft

[02/12/2008|12:18] C:\DOCUME~1\Ana\DADOSD~1\DivX

[24/08/2008|18:11] C:\DOCUME~1\Ana\DADOSD~1\HP

[31/10/2008|20:30] C:\DOCUME~1\Ana\DADOSD~1\Identities

[12/12/2008|18:56] C:\DOCUME~1\Ana\DADOSD~1\LimeWire

[03/08/2008|11:32] C:\DOCUME~1\Ana\DADOSD~1\Macromedia

[02/12/2008|12:18] C:\DOCUME~1\Ana\DADOSD~1\Media Player Classic

[22/02/2009|14:49] C:\DOCUME~1\Ana\DADOSD~1\Microsoft

[20/11/2008|18:18] C:\DOCUME~1\Ana\DADOSD~1\Microsoft Games

[17/01/2009|10:26] C:\DOCUME~1\Ana\DADOSD~1\MiniLyrics

[09/08/2008|10:16] C:\DOCUME~1\Ana\DADOSD~1\Mozilla

[09/12/2008|21:13] C:\DOCUME~1\Ana\DADOSD~1\MxBoost

[10/12/2008|10:43] C:\DOCUME~1\Ana\DADOSD~1\Opera

[13/01/2009|19:43] C:\DOCUME~1\Ana\DADOSD~1\Orbit

[06/10/2008|10:58] C:\DOCUME~1\Ana\DADOSD~1\PlayFirst

[16/01/2009|20:26] C:\DOCUME~1\Ana\DADOSD~1\Real

[09/09/2008|22:27] C:\DOCUME~1\Ana\DADOSD~1\Styler

[14/09/2008|13:22] C:\DOCUME~1\Ana\DADOSD~1\Sun

[25/10/2008|14:51] C:\DOCUME~1\Ana\DADOSD~1\VSRevoGroup

[12/08/2008|12:54] C:\DOCUME~1\Ana\DADOSD~1\WinRAR

[31/10/2008|20:30] C:\DOCUME~1\Ana\DADOSD~1\Zylom

 

[03/08/2008|11:04] C:\DOCUME~1\Cida\DADOSD~1\Identities

[03/08/2008|11:03] C:\DOCUME~1\Cida\DADOSD~1\Microsoft

 

[03/02/2009|18:54] C:\DOCUME~1\Cida.CD\DADOSD~1\Adobe

[20/12/2008|10:06] C:\DOCUME~1\Cida.CD\DADOSD~1\ArcSoft

[02/02/2009|10:22] C:\DOCUME~1\Cida.CD\DADOSD~1\Help

[06/08/2008|14:36] C:\DOCUME~1\Cida.CD\DADOSD~1\HP

[03/08/2008|11:13] C:\DOCUME~1\Cida.CD\DADOSD~1\Identities

[03/08/2008|11:17] C:\DOCUME~1\Cida.CD\DADOSD~1\Macromedia

[03/04/2009|19:00] C:\DOCUME~1\Cida.CD\DADOSD~1\Microsoft

[06/08/2008|21:48] C:\DOCUME~1\Cida.CD\DADOSD~1\Mozilla

[29/10/2008|12:51] C:\DOCUME~1\Cida.CD\DADOSD~1\Orbit

[11/11/2008|12:04] C:\DOCUME~1\Cida.CD\DADOSD~1\Real

[06/08/2008|22:21] C:\DOCUME~1\Cida.CD\DADOSD~1\Sun

[22/02/2009|12:30] C:\DOCUME~1\Cida.CD\DADOSD~1\Tibia

[06/08/2008|22:30] C:\DOCUME~1\Cida.CD\DADOSD~1\WinRAR

 

[02/08/2008|20:03] C:\DOCUME~1\DEFAUL~1\DADOSD~1\Microsoft

 

[02/08/2008|20:03] C:\DOCUME~1\LOCALS~1\DADOSD~1\Microsoft

 

[02/08/2008|20:03] C:\DOCUME~1\NETWOR~1\DADOSD~1\Microsoft

 

[25/02/2009|14:32] C:\DOCUME~1\Ricardo\DADOSD~1\Adobe

[19/11/2008|22:21] C:\DOCUME~1\Ricardo\DADOSD~1\Ahead

[14/02/2009|20:21] C:\DOCUME~1\Ricardo\DADOSD~1\Apple Computer

[12/12/2008|14:28] C:\DOCUME~1\Ricardo\DADOSD~1\ArcSoft

[11/08/2008|21:22] C:\DOCUME~1\Ricardo\DADOSD~1\Atari

[11/11/2008|19:08] C:\DOCUME~1\Ricardo\DADOSD~1\Blender Foundation

[03/09/2008|22:12] C:\DOCUME~1\Ricardo\DADOSD~1\DivX

[26/11/2008|09:58] C:\DOCUME~1\Ricardo\DADOSD~1\GrabPro

[22/08/2008|17:47] C:\DOCUME~1\Ricardo\DADOSD~1\HP

[03/08/2008|11:07] C:\DOCUME~1\Ricardo\DADOSD~1\Identities

[21/03/2009|23:08] C:\DOCUME~1\Ricardo\DADOSD~1\Image Zone Express

[08/01/2009|17:05] C:\DOCUME~1\Ricardo\DADOSD~1\IObit

[12/12/2008|14:36] C:\DOCUME~1\Ricardo\DADOSD~1\KodakCredentialStore

[16/11/2008|10:25] C:\DOCUME~1\Ricardo\DADOSD~1\LEGO Company

[04/09/2008|20:29] C:\DOCUME~1\Ricardo\DADOSD~1\LimeWire

[10/10/2008|11:11] C:\DOCUME~1\Ricardo\DADOSD~1\LimeWireTurbo

[05/08/2008|23:04] C:\DOCUME~1\Ricardo\DADOSD~1\Macromedia

[03/09/2008|22:12] C:\DOCUME~1\Ricardo\DADOSD~1\Media Player Classic

[30/03/2009|10:42] C:\DOCUME~1\Ricardo\DADOSD~1\Microsoft

[20/11/2008|15:10] C:\DOCUME~1\Ricardo\DADOSD~1\Microsoft Games

[21/03/2009|14:09] C:\DOCUME~1\Ricardo\DADOSD~1\MiniLyrics

[08/08/2008|10:45] C:\DOCUME~1\Ricardo\DADOSD~1\Mozilla

[09/12/2008|17:07] C:\DOCUME~1\Ricardo\DADOSD~1\MxBoost

[29/09/2008|10:42] C:\DOCUME~1\Ricardo\DADOSD~1\Netscape

[10/12/2008|12:32] C:\DOCUME~1\Ricardo\DADOSD~1\Opera

[11/02/2009|17:37] C:\DOCUME~1\Ricardo\DADOSD~1\Orbit

[08/11/2008|21:36] C:\DOCUME~1\Ricardo\DADOSD~1\Real

[12/12/2008|14:29] C:\DOCUME~1\Ricardo\DADOSD~1\Skinux

[22/08/2008|18:49] C:\DOCUME~1\Ricardo\DADOSD~1\Styler

[12/08/2008|22:06] C:\DOCUME~1\Ricardo\DADOSD~1\Sun

[07/02/2009|09:10] C:\DOCUME~1\Ricardo\DADOSD~1\Tibia

[21/10/2008|19:42] C:\DOCUME~1\Ricardo\DADOSD~1\VSRevoGroup

[12/08/2008|22:23] C:\DOCUME~1\Ricardo\DADOSD~1\WinRAR

 

[28/03/2009|18:57] C:\DOCUME~1\Victor\DADOSD~1\Adobe

[05/12/2008|21:00] C:\DOCUME~1\Victor\DADOSD~1\Ahead

[03/02/2009|09:29] C:\DOCUME~1\Victor\DADOSD~1\Apple Computer

[12/12/2008|20:18] C:\DOCUME~1\Victor\DADOSD~1\ArcSoft

[05/01/2009|15:09] C:\DOCUME~1\Victor\DADOSD~1\Atari

[26/12/2008|19:28] C:\DOCUME~1\Victor\DADOSD~1\Auslogics

[15/10/2008|17:30] C:\DOCUME~1\Victor\DADOSD~1\Change Folder Icons

[20/04/2009|10:34] C:\DOCUME~1\Victor\DADOSD~1\Free Download Manager

[18/10/2008|18:14] C:\DOCUME~1\Victor\DADOSD~1\GrabPro

[06/10/2008|17:56] C:\DOCUME~1\Victor\DADOSD~1\Hamachi

[30/11/2008|16:56] C:\DOCUME~1\Victor\DADOSD~1\HP

[03/08/2008|11:09] C:\DOCUME~1\Victor\DADOSD~1\Identities

[21/03/2009|10:03] C:\DOCUME~1\Victor\DADOSD~1\Image Zone Express

[08/01/2009|12:28] C:\DOCUME~1\Victor\DADOSD~1\IObit

[17/01/2009|18:24] C:\DOCUME~1\Victor\DADOSD~1\KodakCredentialStore

[22/12/2008|18:06] C:\DOCUME~1\Victor\DADOSD~1\Leadertech

[16/11/2008|11:54] C:\DOCUME~1\Victor\DADOSD~1\LEGO Company

[23/02/2009|21:59] C:\DOCUME~1\Victor\DADOSD~1\LimeWire

[12/11/2008|10:14] C:\DOCUME~1\Victor\DADOSD~1\LimeWireTurbo

[03/08/2008|11:26] C:\DOCUME~1\Victor\DADOSD~1\Macromedia

[02/09/2008|19:50] C:\DOCUME~1\Victor\DADOSD~1\Media Player Classic

[24/03/2009|18:12] C:\DOCUME~1\Victor\DADOSD~1\Microsoft

[24/11/2008|19:55] C:\DOCUME~1\Victor\DADOSD~1\Microsoft Games

[02/11/2008|21:04] C:\DOCUME~1\Victor\DADOSD~1\MilkShape 3D 1.x.x

[19/04/2009|14:35] C:\DOCUME~1\Victor\DADOSD~1\MiniLyrics

[27/09/2008|16:52] C:\DOCUME~1\Victor\DADOSD~1\Mozilla

[09/12/2008|19:45] C:\DOCUME~1\Victor\DADOSD~1\MxBoost

[29/09/2008|17:45] C:\DOCUME~1\Victor\DADOSD~1\Netscape

[10/12/2008|20:07] C:\DOCUME~1\Victor\DADOSD~1\Opera

[18/04/2009|09:43] C:\DOCUME~1\Victor\DADOSD~1\Orbit

[03/10/2008|22:18] C:\DOCUME~1\Victor\DADOSD~1\PlayFirst

[11/10/2008|19:32] C:\DOCUME~1\Victor\DADOSD~1\Real

[06/08/2008|21:28] C:\DOCUME~1\Victor\DADOSD~1\Sega

[12/12/2008|14:00] C:\DOCUME~1\Victor\DADOSD~1\Skinux

[20/04/2009|10:20] C:\DOCUME~1\Victor\DADOSD~1\Software Informer

[16/08/2008|14:45] C:\DOCUME~1\Victor\DADOSD~1\Sun

[06/02/2009|18:46] C:\DOCUME~1\Victor\DADOSD~1\Tibia

[17/09/2008|19:00] C:\DOCUME~1\Victor\DADOSD~1\ViStart

[03/11/2008|16:48] C:\DOCUME~1\Victor\DADOSD~1\VSRevoGroup

[03/01/2009|18:21] C:\DOCUME~1\Victor\DADOSD~1\WinRAR

 

--------------------\\ Tarefas Agendadas na pasta C:\WINDOWS\Tasks

 

[20/04/2009 10:21][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{8801DD26-D5CD-438A-995F-5A879E43B89C}.job

[18/04/2009 13:48][--a------] C:\WINDOWS\tasks\Auslogics Console Defragmentation.job

[03/04/2009 14:36][--a------] C:\WINDOWS\tasks\EasyShare Registration Task.job

[27/03/2009 15:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job

[20/04/2009 10:14][--ah-----] C:\WINDOWS\tasks\SA.DAT

[14/04/2008 09:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

 

--------------------\\ Lista de pastas em C:\Arquivos de programas

 

[12/04/2009|22:20] C:\Arquivos de programas\Adobe

[14/02/2009|20:15] C:\Arquivos de programas\Advanced SystemCare 3

[01/02/2009|15:39] C:\Arquivos de programas\Alcohol 120

[19/10/2008|15:32] C:\Arquivos de programas\Alcohol Soft

[02/01/2009|18:12] C:\Arquivos de programas\Apex

[12/12/2008|13:55] C:\Arquivos de programas\Arquivos comuns

[22/12/2008|17:57] C:\Arquivos de programas\Atari

[26/12/2008|19:28] C:\Arquivos de programas\AusLogics Disk Defrag

[11/02/2009|08:48] C:\Arquivos de programas\AVIConverter

[12/04/2009|21:22] C:\Arquivos de programas\AviSynth 2.5

[13/04/2009|12:10] C:\Arquivos de programas\AvRack

[06/08/2008|22:32] C:\Arquivos de programas\BitComet

[04/10/2008|20:20] C:\Arquivos de programas\Bonjour

[30/01/2009|10:20] C:\Arquivos de programas\Bruno Kitsune Web-Site

[18/04/2009|09:52] C:\Arquivos de programas\CCleaner

[15/10/2008|17:22] C:\Arquivos de programas\Change Folder Icons

[24/08/2008|16:15] C:\Arquivos de programas\CheMax

[02/08/2008|23:18] C:\Arquivos de programas\CONEXANT

[09/04/2009|17:34] C:\Arquivos de programas\Diner Dash

[06/08/2008|21:36] C:\Arquivos de programas\DirectX

[15/08/2008|22:24] C:\Arquivos de programas\D-Tools

[02/08/2008|22:31] C:\Arquivos de programas\DVD Shrink

[23/02/2009|17:13] C:\Arquivos de programas\EA GAMES

[10/09/2008|22:21] C:\Arquivos de programas\Folder Latch

[09/03/2009|20:49] C:\Arquivos de programas\FormatFactory

[18/04/2009|20:33] C:\Arquivos de programas\Free Download Manager

[12/04/2009|21:17] C:\Arquivos de programas\Free FLV Converter

[19/01/2009|13:02] C:\Arquivos de programas\GameJack 5

[20/04/2009|10:39] C:\Arquivos de programas\GbPlugin

[30/01/2009|10:47] C:\Arquivos de programas\Hasbro Interactive

[12/08/2008|11:31] C:\Arquivos de programas\Hewlett-Packard

[17/12/2008|17:20] C:\Arquivos de programas\HP

[18/04/2009|11:31] C:\Arquivos de programas\InstallShield Installation Information

[15/04/2009|09:41] C:\Arquivos de programas\Internet Explorer

[12/01/2009|16:16] C:\Arquivos de programas\IrfanView

[24/11/2008|03:50] C:\Arquivos de programas\Java

[05/11/2008|08:34] C:\Arquivos de programas\K-Lite Codec Pack

[12/12/2008|13:54] C:\Arquivos de programas\Kodak

[12/12/2008|13:29] C:\Arquivos de programas\Labtec

[12/04/2009|21:08] C:\Arquivos de programas\LevelUpGames

[30/01/2009|10:04] C:\Arquivos de programas\LimeWire

[26/01/2009|17:40] C:\Arquivos de programas\MeadCo Neptune

[14/10/2008|17:01] C:\Arquivos de programas\Messenger

[20/02/2009|21:18] C:\Arquivos de programas\Microsoft

[02/08/2008|20:04] C:\Arquivos de programas\microsoft frontpage

[28/11/2008|16:42] C:\Arquivos de programas\Microsoft Games

[24/11/2008|19:43] C:\Arquivos de programas\Microsoft Office

[20/02/2009|21:18] C:\Arquivos de programas\Microsoft Office Outlook Connector

[08/09/2008|21:58] C:\Arquivos de programas\Microsoft Private Folder 1.0

[19/04/2009|11:37] C:\Arquivos de programas\Microsoft Silverlight

[20/02/2009|21:13] C:\Arquivos de programas\Microsoft SQL Server Compact Edition

[20/02/2009|21:17] C:\Arquivos de programas\Microsoft Sync Framework

[02/08/2008|23:34] C:\Arquivos de programas\Microsoft Visual Studio

[04/01/2009|17:25] C:\Arquivos de programas\Microsoft Works

[02/08/2008|23:29] C:\Arquivos de programas\Microsoft.NET

[09/11/2008|16:44] C:\Arquivos de programas\Minilyrics

[04/12/2008|16:26] C:\Arquivos de programas\Movie Maker

[20/04/2009|10:25] C:\Arquivos de programas\Mozilla Firefox

[09/08/2008|11:07] C:\Arquivos de programas\MSECache

[02/08/2008|19:58] C:\Arquivos de programas\MSN Gaming Zone

[30/11/2008|11:19] C:\Arquivos de programas\Need For Speed Underground 2

[02/08/2008|22:18] C:\Arquivos de programas\Nero

[02/08/2008|20:01] C:\Arquivos de programas\NetMeeting

[10/11/2008|19:41] C:\Arquivos de programas\Netscape

[02/08/2008|21:26] C:\Arquivos de programas\Network Associates

[06/04/2009|10:21] C:\Arquivos de programas\Norton Security Scan

[19/10/2008|15:58] C:\Arquivos de programas\NtreevSoft

[05/01/2009|15:11] C:\Arquivos de programas\OnGame

[18/04/2009|10:09] C:\Arquivos de programas\OpenDNS Updater

[09/12/2008|21:27] C:\Arquivos de programas\Opera

[04/12/2008|16:26] C:\Arquivos de programas\Outlook Express

[12/08/2008|19:45] C:\Arquivos de programas\Photo Story 3 for Windows

[20/02/2009|17:22] C:\Arquivos de programas\Pokedex

[02/02/2009|10:19] C:\Arquivos de programas\Programas RFB

[07/04/2009|19:32] C:\Arquivos de programas\QuickTime

[30/01/2009|10:23] C:\Arquivos de programas\RCT

[11/10/2008|19:29] C:\Arquivos de programas\Real

[14/10/2008|17:00] C:\Arquivos de programas\Real Alternative

[13/04/2009|12:10] C:\Arquivos de programas\Realtek AC97

[02/08/2008|21:20] C:\Arquivos de programas\Realtek Sound Manager

[03/10/2008|22:11] C:\Arquivos de programas\ReflexiveArcade

[14/03/2009|12:18] C:\Arquivos de programas\Revo Uninstaller

[23/09/2008|19:16] C:\Arquivos de programas\RMVB Converter

[18/04/2009|11:31] C:\Arquivos de programas\Rockstar Games

[02/08/2008|21:08] C:\Arquivos de programas\S3

[02/08/2008|20:01] C:\Arquivos de programas\Servi‡os on-line

[03/04/2009|23:45] C:\Arquivos de programas\SimCity 3000

[06/01/2009|12:18] C:\Arquivos de programas\Sims2Pack Clean Installer

[23/10/2008|20:06] C:\Arquivos de programas\Sims2RoboFileMaid3000

[18/04/2009|09:47] C:\Arquivos de programas\Software Informer

[08/02/2009|20:35] C:\Arquivos de programas\SopCast

[18/04/2009|15:08] C:\Arquivos de programas\SpeedBit Video Accelerator

[16/10/2008|09:56] C:\Arquivos de programas\Stardock

[09/09/2008|22:27] C:\Arquivos de programas\Styler

[19/01/2009|13:29] C:\Arquivos de programas\SystemRequirementsLab

[07/01/2009|13:26] C:\Arquivos de programas\TaskSwitchXP

[06/02/2009|18:15] C:\Arquivos de programas\Tibia

[07/04/2009|19:42] C:\Arquivos de programas\TrackMania Forever

[26/02/2009|18:40] C:\Arquivos de programas\TransBar

[13/08/2008|19:46] C:\Arquivos de programas\UltraISO

[02/08/2008|20:10] C:\Arquivos de programas\Uninstall Information

[02/08/2008|21:14] C:\Arquivos de programas\VIA

[19/08/2008|22:06] C:\Arquivos de programas\ViStart

[10/03/2009|21:56] C:\Arquivos de programas\VobSub

[12/04/2009|21:18] C:\Arquivos de programas\WinAVI MP4 Converter

[29/01/2009|20:54] C:\Arquivos de programas\WinCustomize

[20/02/2009|21:18] C:\Arquivos de programas\Windows Live

[03/01/2009|18:47] C:\Arquivos de programas\Windows Live SkyDrive

[14/10/2008|17:00] C:\Arquivos de programas\Windows Media Connect 2

[28/02/2009|20:56] C:\Arquivos de programas\Windows Media Player

[02/08/2008|19:58] C:\Arquivos de programas\Windows NT

[02/08/2008|20:01] C:\Arquivos de programas\WindowsUpdate

[18/04/2009|13:48] C:\Arquivos de programas\WinRAR

[14/03/2009|21:42] C:\Arquivos de programas\WKIDS - Ecologia

[02/08/2008|20:04] C:\Arquivos de programas\xerox

 

--------------------\\ Lista de pastas em C:\Arquivos de programas\Arquivos comuns

 

[22/12/2008|17:55] C:\Arquivos de programas\Arquivos comuns\Adobe

[02/08/2008|22:26] C:\Arquivos de programas\Arquivos comuns\Ahead

[22/12/2008|11:03] C:\Arquivos de programas\Arquivos comuns\ArcSoft

[02/08/2008|21:26] C:\Arquivos de programas\Arquivos comuns\Cisco Systems

[02/08/2008|23:29] C:\Arquivos de programas\Arquivos comuns\DESIGNER

[27/11/2008|21:42] C:\Arquivos de programas\Arquivos comuns\DirectX

[13/08/2008|19:44] C:\Arquivos de programas\Arquivos comuns\EZB Systems

[12/08/2008|11:31] C:\Arquivos de programas\Arquivos comuns\Hewlett-Packard

[12/08/2008|11:40] C:\Arquivos de programas\Arquivos comuns\HP

[12/12/2008|13:55] C:\Arquivos de programas\Arquivos comuns\InstallShield

[12/08/2008|20:56] C:\Arquivos de programas\Arquivos comuns\Java

[12/12/2008|13:53] C:\Arquivos de programas\Arquivos comuns\Kodak

[04/10/2008|19:36] C:\Arquivos de programas\Arquivos comuns\Macrovision Shared

[20/02/2009|21:08] C:\Arquivos de programas\Arquivos comuns\Microsoft Shared

[02/08/2008|20:01] C:\Arquivos de programas\Arquivos comuns\MSSoap

[02/08/2008|21:26] C:\Arquivos de programas\Arquivos comuns\Network Associates

[02/08/2008|16:50] C:\Arquivos de programas\Arquivos comuns\ODBC

[11/10/2008|19:31] C:\Arquivos de programas\Arquivos comuns\Real

[02/08/2008|20:01] C:\Arquivos de programas\Arquivos comuns\Servi‡os

[02/08/2008|16:49] C:\Arquivos de programas\Arquivos comuns\SpeechEngines

[23/02/2009|19:29] C:\Arquivos de programas\Arquivos comuns\Stardock

[02/03/2009|19:44] C:\Arquivos de programas\Arquivos comuns\Symantec Shared

[20/02/2009|21:18] C:\Arquivos de programas\Arquivos comuns\System

[18/09/2008|19:53] C:\Arquivos de programas\Arquivos comuns\Windows Live

[23/08/2008|19:38] C:\Arquivos de programas\Arquivos comuns\Wise Installation Wizard

[11/10/2008|19:31] C:\Arquivos de programas\Arquivos comuns\xing shared

 

--------------------\\ Process

 

( 39 Processes )

 

... OK !

 

--------------------\\ Procura pelo S_Lop

 

Não foram encontradas pastas com o Lop!

 

--------------------\\ Procura por Arquivos/Ficheiros e pastas do Lop

 

Não foram encontradas pastas com o Lop!

 

--------------------\\ Procura no Registro

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

 

..... OK !

 

--------------------\\ Verificando o Arquivos/Ficheiros Hosts

 

Arquivos/Ficheiros Hosts LIMPO

 

 

--------------------\\ Procurando Arquivos/Ficheiros ocultos com o Catchme

 

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-04-20 11:09:31

Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden files ...

scan completed successfully

hidden processes: 0

hidden files: 1

 

--------------------\\ Procurando por outras infecções

 

--------------------\\ Cracks & Keygens ..

 

C:\DOCUME~1\Victor\Desktop\GTA III\CD 1\Crack

C:\DOCUME~1\Victor\Desktop\GTA III\CD 1\Crack\gta3.exe

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\dev-gt3a_really_working.ppf

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\deviance.nfo

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\gta3.exe

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\oku .txt

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\gta3.set

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf1.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf2.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf3.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf4.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf5.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf6.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\GTA3sf7.b

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\oku.txt

C:\DOCUME~1\Victor\Desktop\GTA III\CD 2\crack version2\save\replay.rep

C:\DOCUME~1\Victor\Desktop\Main\Programas\Photoshop\crack_ps

C:\DOCUME~1\Victor\Desktop\Main\Programas\Photoshop\crack_ps\Adobe Photoshop CS3

C:\DOCUME~1\Victor\Desktop\Main\Programas\Photoshop\crack_ps\Adobe Photoshop CS3\Photoshop.exe

 

 

[F:29][D:3]-> C:\DOCUME~1\Victor\CONFIG~1\Temp

[F:5][D:0]-> C:\DOCUME~1\Victor\Cookies

[F:26][D:4]-> C:\DOCUME~1\Victor\CONFIG~1\TEMPOR~1\content.IE5

 

1 - "C:\Lop SD\LopR_1.txt" - 20/04/2009|11:14 - Option : [2]

 

--------------------\\ Verificação completa em 11:14:16

 

 

 

HijackThis

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:16:01, on 20/04/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe

C:\Arquivos de programas\Java\jre6\bin\jqs.exe

C:\Arquivos de programas\Network Associates\Common Framework\FrameworkService.exe

C:\Arquivos de programas\Network Associates\VirusScan\Mcshield.exe

C:\Arquivos de programas\Network Associates\VirusScan\VsTskMgr.exe

C:\ARQUIV~1\NETWOR~1\COMMON~1\naPrdMgr.exe

C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Arquivos de programas\Microsoft Private Folder 1.0\PrfldSvc.exe

C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Arquivos de programas\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\system32\VTtrayp.exe

C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe

C:\Arquivos de programas\Free Download Manager\fdm.exe

C:\Arquivos de programas\OpenDNS Updater\OpenDNS Updater.exe

C:\Arquivos de programas\EA GAMES\The Sims 2 Mansões e Jardins Coleção de Objetos\TSBin\Sims2ep9.exe

C:\Arquivos de programas\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Victor\Desktop\Main\Programas\HijackThis.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com/

O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\ARQUIVOS DE PROGRAMAS\GBPLUGIN\gbieh.dll

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Arquivos de programas\Free Download Manager\iefdm2.dll

O4 - HKLM\..\Run: [VTTimer] VTTimer.exe

O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [OpenDNS Update] "C:\Arquivos de programas\OpenD

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKCU\..\Run: [ccleaner] "C:\Arquivos de programas\CCleaner\ccleaner.exe" /AUTO

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [uberIcon] "C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe"

O4 - HKCU\..\Run: [Free Download Manager] C:\Arquivos de programas\Free Download Manager\fdm.exe -autorun

O4 - HKCU\..\Run: [software Informer] "C:\Arquivos de programas\Software Informer\softinfo.exe" -autorun

O4 - Startup: OpenDNS Updater.lnk = C:\Arquivos de programas\OpenDNS Updater\OpenDNS Updater.exe

O4 - Startup: Speedy.lnk = ?

O4 - Startup: UberIcon.lnk = C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe

O8 - Extra context menu item: Baixar com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dllink.htm

O8 - Extra context menu item: Baixar tudo com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlall.htm

O8 - Extra context menu item: Baixar vídeo com o Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlfvideo.htm

O8 - Extra context menu item: Download selecionado pelo Free Download Manager - file://C:\Arquivos de programas\Free Download Manager\dlselected.htm

O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O17 - HKLM\System\CCS\Services\Tcpip\..\{DA965675-D223-4121-B090-4B3CE6D0B039}: NameServer = 208.67.222.222 208.67.220.220

O20 - Winlogon Notify: GbPluginBb - C:\ARQUIVOS DE PROGRAMAS\GBPLUGIN\gbieh.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Arquivos de programas\Arquivos comuns\ArcSoft\Connection Service\Bin\ACService.exe (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Arquivos de programas\Arquivos comuns\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Arquivos de programas\Java\jre6\bin\jqs.exe

O23 - Service: Serviço McAfee Framework (McAfeeFramework) - Network Associates, Inc. - C:\Arquivos de programas\Network Associates\Common Framework\FrameworkService.exe

O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Arquivos de programas\Network Associates\VirusScan\Mcshield.exe

O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Arquivos de programas\Network Associates\VirusScan\VsTskMgr.exe

O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Arquivos de programas\Microsoft Private Folder 1.0\PrfldSvc.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Arquivos de programas\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

 

--

End of file - 5620 bytes

[DigRam 144]

Bom Dia! Sharner

 

<@> Baixe: < FindLop >

<@> Descompacte-o e envie os arquivos,para uma pasta própria: < C:\FindLop.exe >

<@> Mas,não execute-o ainda!

<@> Baixe: < new_uninstall >

<@> Caso o antivírus bloqueie o download,ignore o aviso e permita sua execução.

<@> Se o navegador impedir o download,coloque: < http://lop.com >,como Site Preferencial.

<@> Desabilite as proteções residentes de antivírus e antispywares.

<@> Execute o desinstalador!

<@> Digite os números e,confirme!

<@> Ps: Não sendo possível,executar o desinstalador,siga apenas com o FindLop.

<@> Execute,agora,o findlop.bat.

<@> Será gerado um relatório ( findlop.txt ) no Disco local (C)

<@> Poste: findlop.txt

<><><><><><><><><><>

<@> Baixe: < DDS > ( ...by sUBs )

<@> Salve-o no desktop!

<@> Desabilite seus programas de proteção: antivírus,antimalware,antispyware ou firewall.

<@> Estando desconectado,execute a ferramenta! --> Duplo clique em dds.scr.

<@> Aguarde o término do scan,até obtermos o relatório. ( DDS.txt ) <--

<@> Surgirá,também,uma nova janela: "D.D.S - Optional_Scan" --> Clique em Sim.

<@> O Bloco de Notas irá abrir,com outro relatório. ( Attach.txt ) <--

<@> Ps: Caso o relatório seja incompreensível,renomeie o executável para DDS.exe e repita o scan.

<@> Outra janela,finalmente,abrir-se-à! --> Clique em OK.

<@> Salve os relatórios: DDS.txt + Attach.txt <-- Poste-os!

 

Abraços!

[Sharner 0]

FindLop

 

 

[TRACE] Enumerating jobs and queues

[TRACE] Activating job 'Auslogics Console Defragmentation.job'

[TRACE] Printing all job properties

 

ApplicationName: 'C:\Arquivos de programas\AusLogics Disk Defrag\cdefrag.exe'

Parameters: 'C: -bk -log:"C:\Documents and Settings\Victor\Dados de aplicativos\Auslogics\Disk Defrag\CDefrag\"'

WorkingDirectory: ''

Comment: 'Hard disks defragmentation'

Creator: 'Victor'

Priority: NORMAL

MaxRunTime: 259200000 (3d 0:00:00)

IdleWait: 10

IdleDeadline: 60

MostRecentRun: 04/18/2009 12:00:00

NextRun: 04/25/2009 12:00:00

StartError: S_OK

ExitCode: 0x8

Status: SCHED_S_TASK_READY

ScheduledWorkItem Flags:

DeleteWhenDone = 0

Suspend = 0

StartOnlyIfIdle = 0

KillOnIdleEnd = 0

RestartOnIdleResume = 0

DontStartIfOnBatteries = 0

KillIfGoingOnBatteries = 0

RunOnlyIfLoggedOn = 0

SystemRequired = 0

Hidden = 0

TaskFlags: 0

 

1 Trigger

 

Trigger 0:

Type: Weekly

WeeksInterval: 1

DaysOfTheWeek: ......A

StartDate: 01/08/2009

EndDate: 00/00/0000

StartTime: 12:00

MinutesDuration: 0

MinutesInterval: 0

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

 

 

[TRACE] Activating job 'EasyShare Registration Task.job'

[TRACE] Printing all job properties

 

ApplicationName: 'C:\WINDOWS\system32\rundll32.exe'

Parameters: 'C:\DOCUME~1\ALLUSE~1\DADOSD~1\Kodak\EasyShareSetup\$REGIS~1\Registration_7.9.20.1.sxt _RegistrationOffer@16'

WorkingDirectory: ''

Comment: ''

Creator: 'Victor'

Priority: NORMAL

MaxRunTime: 259200000 (3d 0:00:00)

IdleWait: 10

IdleDeadline: 60

MostRecentRun: 01/23/2009 14:36:00

NextRun: 05/01/2009 14:36:00

StartError: S_OK

ExitCode: 0

Status: SCHED_S_TASK_READY

ScheduledWorkItem Flags:

DeleteWhenDone = 0

Suspend = 0

StartOnlyIfIdle = 0

KillOnIdleEnd = 0

RestartOnIdleResume = 0

DontStartIfOnBatteries = 1

KillIfGoingOnBatteries = 1

RunOnlyIfLoggedOn = 1

SystemRequired = 0

Hidden = 0

TaskFlags: 0

 

1 Trigger

 

Trigger 0:

Type: Daily

DaysInterval: 14

StartDate: 12/12/2008

EndDate: 00/00/0000

StartTime: 14:36

MinutesDuration: 0

MinutesInterval: 0

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

 

 

[TRACE] Activating job 'Norton Security Scan.job'

[TRACE] Printing all job properties

 

ApplicationName: 'C:\Arquivos de programas\Norton Security Scan\Nss.exe'

Parameters: '/scan-full /scheduled'

WorkingDirectory: 'C:\Arquivos de programas\Norton Security Scan'

Comment: 'Norton Security Scan'

Creator: 'Victor'

Priority: NORMAL

MaxRunTime: 259200000 (3d 0:00:00)

IdleWait: 10

IdleDeadline: 60

MostRecentRun: 01/09/2009 15:00:01

NextRun: 04/24/2009 15:00:00

StartError: S_OK

ExitCode: 0

Status: SCHED_S_TASK_READY

ScheduledWorkItem Flags:

DeleteWhenDone = 0

Suspend = 0

StartOnlyIfIdle = 0

KillOnIdleEnd = 0

RestartOnIdleResume = 0

DontStartIfOnBatteries = 0

KillIfGoingOnBatteries = 0

RunOnlyIfLoggedOn = 1

SystemRequired = 0

Hidden = 0

TaskFlags: 0

 

1 Trigger

 

Trigger 0:

Type: Weekly

WeeksInterval: 1

DaysOfTheWeek: .....F.

StartDate: 09/14/2008

EndDate: 00/00/0000

StartTime: 15:00

MinutesDuration: 0

MinutesInterval: 0

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

 

 

[TRACE] Activating job 'User_Feed_Synchronization-{8801DD26-D5CD-438A-995F-5A87

9E43B89C}.job'

[TRACE] Printing all job properties

 

ApplicationName: 'C:\WINDOWS\system32\msfeedssync.exe'

Parameters: 'sync'

WorkingDirectory: 'C:\Arquivos de programas\Internet Explorer'

Comment: 'Atualiza feeds desatualizados do sistema.'

Creator: 'Victor'

Priority: NORMAL

MaxRunTime: 259200000 (3d 0:00:00)

IdleWait: 10

IdleDeadline: 60

MostRecentRun: 04/20/2009 13:28:00

NextRun: 04/20/2009 16:43:00

StartError: S_OK

ExitCode: 0

Status: SCHED_S_TASK_READY

ScheduledWorkItem Flags:

DeleteWhenDone = 0

Suspend = 0

StartOnlyIfIdle = 0

KillOnIdleEnd = 0

RestartOnIdleResume = 0

DontStartIfOnBatteries = 0

KillIfGoingOnBatteries = 0

RunOnlyIfLoggedOn = 1

SystemRequired = 0

Hidden = 1

TaskFlags: 0

 

2 Triggers

 

Trigger 0:

Type: Once

StartDate: 04/20/2009

EndDate: 00/00/0000

StartTime: 16:43

MinutesDuration: 437

MinutesInterval: 5

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

 

Trigger 1:

Type: Daily

DaysInterval: 1

StartDate: 04/21/2009

EndDate: 00/00/0000

StartTime: 00:00

MinutesDuration: 1440

MinutesInterval: 5

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

 

 

__________________

 

 

 

DDS

 

 

DDS (Ver_09-03-16.01) - NTFSx86

Run by Victor at 13:46:32,48 on 20/04/2009

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_10

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2015.1258 [GMT -3:00]

 

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)

 

============== Running Processes ===============

 

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

svchost.exe

C:\Arquivos de programas\Java\jre6\bin\jqs.exe

C:\Arquivos de programas\Network Associates\Common Framework\FrameworkService.exe

C:\Arquivos de programas\Network Associates\VirusScan\Mcshield.exe

C:\Arquivos de programas\Network Associates\VirusScan\VsTskMgr.exe

C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Arquivos de programas\Microsoft Private Folder 1.0\PrfldSvc.exe

C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Arquivos de programas\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\ARQUIV~1\AVG\AVG8\avgwdsvc.exe

C:\ARQUIV~1\AVG\AVG8\avgrsx.exe

C:\Arquivos de programas\AVG\AVG8\avgcsrvx.exe

C:\ARQUIV~1\AVG\AVG8\avgnsx.exe

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\system32\VTtrayp.exe

C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\ARQUIV~1\AVG\AVG8\avgtray.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Documents and Settings\Victor\Desktop\Main\Deskmod\Vista\Vista Inspirat 2\UberIcon\UberIcon Manager.exe

C:\Arquivos de programas\OpenDNS Updater\OpenDNS Updater.exe

C:\WINDOWS\system32\Notepad.exe

C:\WINDOWS\explorer.exe

C:\ARQUIV~1\FREEDO~1\fdm.exe

C:\Documents and Settings\Victor\Desktop\dds.scr

 

============== Pseudo HJT Report ===============

 

uStart Page = hxxp://www.orkut.com/

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\arquivos de programas\avg\avg8\avgssie.dll

BHO: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\arquiv~1\avg\avg8\AVGTOO~1.DLL

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540000} - c:\arquivos de programas\gbplugin\gbieh.dll

BHO: FDMIECookiesBHO Class: {cc59e0f9-7e43-44fa-9faa-8377850bf205} - c:\arquivos de programas\free download manager\iefdm2.dll

TB: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\arquiv~1\avg\avg8\AVGTOO~1.DLL

TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\arquivos de programas\windows live\toolbar\wltcore.dll

uRun: [ccleaner] "c:\arquivos de programas\ccleaner\ccleaner.exe" /AUTO

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [uberIcon] "c:\documents and settings\victor\desktop\main\deskmod\vista\vista inspirat 2\ubericon\UberIcon Manager.exe"

uRun: [Free Download Manager] c:\arquivos de programas\free download manager\fdm.exe -autorun

uRun: [software Informer] "c:\arquivos de programas\software informer\softinfo.exe" -autorun

uRun: [fsm]

mRun: [VTTimer] VTTimer.exe

mRun: [VTTrayp] VTtrayp.exe

mRun: [TkBellExe] "c:\arquivos de programas\arquivos comuns\real\update_ob\realsched.exe" -osboot

mRun: [OpenDNS Update] "c:\arquivos de programas\OpenD

mRun: [soundMan] SOUNDMAN.EXE

mRun: [AVG8_TRAY] c:\arquiv~1\avg\avg8\avgtray.exe

StartupFolder: c:\docume~1\victor\menuin~1\progra~1\inicia~1\opendn~1.lnk - c:\arquivos de programas\opendns updater\OpenDNS Updater.exe

StartupFolder: c:\docume~1\victor\menuin~1\progra~1\inicia~1\Speedy.lnk -

StartupFolder: c:\docume~1\victor\menuin~1\progra~1\inicia~1\ubericon.lnk - c:\documents and settings\victor\desktop\main\deskmod\vista\vista inspirat 2\ubericon\UberIcon Manager.exe

StartupFolder: c:\docume~1\victor\menuin~1\progra~1\inicia~1\opendn~1.lnk - c:\arquivos de programas\opendns updater\OpenDNS Updater.exe

StartupFolder: c:\docume~1\victor\menuin~1\progra~1\inicia~1\Speedy.lnk -

StartupFolder: c:\docume~1\victor\menuin~1\progra~1\inicia~1\ubericon.lnk - c:\documents and settings\victor\desktop\main\deskmod\vista\vista inspirat 2\ubericon\UberIcon Manager.exe

IE: Baixar com o Free Download Manager - file://c:\arquivos de programas\free download manager\dllink.htm

IE: Baixar tudo com o Free Download Manager - file://c:\arquivos de programas\free download manager\dlall.htm

IE: Baixar vídeo com o Free Download Manager - file://c:\arquivos de programas\free download manager\dlfvideo.htm

IE: Download selecionado pelo Free Download Manager - file://c:\arquivos de programas\free download manager\dlselected.htm

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~2\office11\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg8\avgpp.dll

Notify: GbPluginBb - c:\arquivos de programas\gbplugin\gbieh.dll

Notify: avgrsstarter - avgrsstx.dll

Notify: WBSrv - c:\arquivos de programas\stardock\object desktop\windowblinds\wbsrv.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399f83} - c:\arquivos de programas\gbplugin\gbieh.dll

 

================= FIREFOX ===================

 

FF - ProfilePath - c:\docume~1\victor\dadosd~1\mozilla\firefox\profiles\dgvv52f6.default\

FF - component: c:\arquivos de programas\avg\avg8\firefox\components\avgssff.dll

FF - component: c:\arquivos de programas\avg\avg8\toolbarff\components\vmAVGConnector.dll

FF - component: c:\arquivos de programas\free download manager\firefox\extension\components\vmsfdmff.dll

FF - component: c:\arquivos de programas\real\realplayer\browserrecord\components\nprpbrowserrecordplugin.dll

FF - plugin: c:\arquivos de programas\microsoft\office live\npOLW.dll

FF - plugin: c:\arquivos de programas\mozilla firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll

FF - plugin: c:\arquivos de programas\mozilla firefox\plugins\npzylomgamesplayer.dll

FF - plugin: c:\arquivos de programas\windows live\photo gallery\NPWLPG.dll

FF - plugin: c:\documents and settings\all users\dados de aplicativos\zylom\zylomgamesplayer\npzylomgamesplayer.dll

 

---- FIREFOX POLICIES ----

c:\arquivos de programas\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".com.br");

 

============= SERVICES / DRIVERS ===============

 

R0 xfilt;VIA SATA IDE Hot-plug Driver;c:\windows\system32\drivers\xfilt.sys [2009-4-18 21144]

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-4-20 325640]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-4-20 27656]

R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-4-20 108552]

R1 NaiAvTdi1;NaiAvTdi1;c:\windows\system32\drivers\mvstdi5x.sys [2008-8-2 58048]

R2 avg8wd;AVG Free8 WatchDog;c:\arquiv~1\avg\avg8\avgwdsvc.exe [2009-4-20 298264]

R2 McAfeeFramework;Serviço McAfee Framework;c:\arquivos de programas\network associates\common framework\FrameworkService.exe [2008-8-2 102463]

R2 McShield;Network Associates McShield;c:\arquivos de programas\network associates\virusscan\Mcshield.exe [2004-9-22 221191]

R2 McTaskManager;Network Associates Task Manager;c:\arquivos de programas\network associates\virusscan\VsTskMgr.exe [2004-9-22 28672]

R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [2006-4-21 70912]

R2 sbbotdi;sbbotdi;c:\arquiv~1\speedb~1\sbbotdi.sys [2008-8-11 35584]

R2 SeaPort;SeaPort;c:\arquivos de programas\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-1-14 226656]

R3 NaiAvFilter1;NaiAvFilter1;c:\windows\system32\drivers\naiavf5x.sys [2008-8-2 108256]

S3 usbanyka;USB Web Camera;c:\windows\system32\drivers\usbanyka.sys [2008-12-26 17536]

S3 XDva223;XDva223;\??\c:\windows\system32\xdva223.sys --> c:\windows\system32\XDva223.sys [?]

S4 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]

S4 VideoAcceleratorService;VideoAcceleratorService;c:\arquiv~1\speedb~1\videoacceleratorservice.exe -start -scm --> c:\arquiv~1\speedb~1\VideoAcceleratorService.exe -start -scm [?]

 

============== File Associations ===============

 

inffile=Notepad.exe "%1"

inifile=Notepad.exe "%1"

txtfile=Notepad.exe "%1"

 

=============== Created Last 30 ================

 

2009-04-20 13:39 <DIR> --d----- C:\FindLop

2009-04-20 11:51 10,520 a------- c:\windows\system32\avgrsstx.dll

2009-04-20 11:51 108,552 a------- c:\windows\system32\drivers\avgtdix.sys

2009-04-20 11:46 325,640 a------- c:\windows\system32\drivers\avgldx86.sys

2009-04-20 11:45 <DIR> --d----- c:\windows\system32\drivers\Avg

2009-04-20 11:45 <DIR> --d----- c:\docume~1\victor\dadosd~1\AVGTOOLBAR

2009-04-20 11:45 <DIR> --d----- c:\arquivos de programas\AVG

2009-04-20 11:45 <DIR> --d----- c:\docume~1\alluse~1\dadosd~1\avg8

2009-04-20 10:28 <DIR> --d----- C:\Lop SD

2009-04-19 13:12 <DIR> --d----- C:\!KillBox

2009-04-19 11:39 <DIR> --d----- C:\Drivers

2009-04-18 13:37 21,144 a------- c:\windows\system32\drivers\xfilt.sys

2009-04-18 13:37 13,976 a------- c:\windows\system32\drivers\videX32.sys

2009-04-18 11:31 <DIR> --d----- c:\arquivos de programas\Rockstar Games

2009-04-18 09:47 <DIR> --d----- c:\docume~1\victor\dadosd~1\Software Informer

2009-04-18 09:47 <DIR> --d----- c:\arquivos de programas\Software Informer

2009-04-18 09:47 <DIR> --d----- c:\docume~1\victor\dadosd~1\Free Download Manager

2009-04-18 09:47 <DIR> --d----- c:\docume~1\alluse~1\dadosd~1\FreeDownloadManager.ORG

2009-04-18 09:47 <DIR> --d----- c:\arquivos de programas\Free Download Manager

2009-04-17 21:52 <DIR> --d----- C:\Lyrics

2009-04-15 10:56 <DIR> --dsh--- c:\documents and settings\victor\PrivacIE

2009-04-15 09:50 <DIR> --dsh--- c:\documents and settings\victor\IECompatCache

2009-04-15 09:50 <DIR> --dsh--- c:\documents and settings\victor\IETldCache

2009-04-14 19:11 <DIR> --d----- c:\documents and settings\victor\SystemRequirementsLab

2009-04-14 19:10 <DIR> --d----- c:\windows\ie8updates

2009-04-14 19:04 <DIR> -cd-h--- c:\windows\ie8

2009-04-14 18:49 105,984 -c------ c:\windows\system32\dllcache\iecompat.dll

2009-04-13 12:10 164 a------- c:\windows\avrack.ini

2009-04-13 12:10 <DIR> --d----- c:\arquivos de programas\Realtek AC97

2009-04-13 10:08 <DIR> --d----- c:\docume~1\alluse~1\dadosd~1\OpenDNS Updater

2009-04-13 10:08 <DIR> --d----- c:\arquivos de programas\OpenDNS Updater

2009-04-07 20:03 7,742 a------- c:\windows\BricoPackFoldersDelete.cmd

2009-04-03 23:12 <DIR> --d----- c:\windows\SC3K

2009-04-03 23:12 <DIR> --d----- c:\arquivos de programas\SimCity 3000

2009-03-23 21:06 1,654,869 a------- c:\docume~1\alluse~1\dadosd~1\DynuEncrypt.dll

 

==================== Find3M ====================

 

2009-04-17 17:02 428,340 a------- c:\windows\system32\perfh016.dat

2009-04-17 17:02 68,408 a------- c:\windows\system32\perfc016.dat

2009-04-07 20:07 86,834 a------- c:\windows\BricoPackUninst.cmd

2009-03-27 20:36 290,816 a------- c:\windows\system32\TubeFinder.exe

2009-03-08 04:34 914,944 a------- c:\windows\system32\wininet.dll

2009-03-08 04:34 43,008 a------- c:\windows\system32\licmgr10.dll

2009-03-08 04:33 18,944 a------- c:\windows\system32\corpol.dll

2009-03-08 04:33 420,352 a------- c:\windows\system32\vbscript.dll

2009-03-08 04:32 72,704 a------- c:\windows\system32\admparse.dll

2009-03-08 04:32 71,680 a------- c:\windows\system32\iesetup.dll

2009-03-08 04:31 34,816 a------- c:\windows\system32\imgutil.dll

2009-03-08 04:31 48,128 a------- c:\windows\system32\mshtmler.dll

2009-03-08 04:31 45,568 a------- c:\windows\system32\mshta.exe

2009-03-08 04:22 156,160 a------- c:\windows\system32\msls31.dll

2009-03-06 11:20 286,208 a------- c:\windows\system32\pdh.dll

2009-02-24 17:08 218,624 a------- c:\windows\system32\uxtheme.dll

2009-02-10 19:07 2,070,272 a------- c:\windows\system32\ntkrnlpa.exe

2009-02-09 11:06 1,846,912 a------- c:\windows\system32\win32k.sys

2009-02-09 08:25 2,193,280 a------- c:\windows\system32\ntoskrnl.exe

2009-02-09 08:25 111,104 a------- c:\windows\system32\services.exe

2009-02-09 07:53 731,648 a------- c:\windows\system32\lsasrv.dll

2009-02-09 07:53 730,624 a------- c:\windows\system32\ntdll.dll

2009-02-09 07:53 683,520 a------- c:\windows\system32\advapi32.dll

2009-02-09 07:53 401,408 a------- c:\windows\system32\rpcss.dll

2009-02-06 19:14 308,088 a------- c:\windows\WLXPGSS.SCR

2009-02-06 18:52 49,504 a------- c:\windows\system32\sirenacm.dll

2009-02-06 07:39 35,328 a------- c:\windows\system32\sc.exe

2009-02-03 16:58 56,832 a------- c:\windows\system32\secur32.dll

2009-01-31 18:30 10,499,072 a------- c:\windows\system32\logonuiX.exe

2009-01-29 21:12 11,047,052 a------- c:\windows\system32\Doom 3 Screensaver.scr

2009-01-25 15:08 107,888 a------- c:\windows\system32\CmdLineExt.dll

2009-01-25 15:07 6,928 a------- c:\windows\system32\ealregsnapshot1.reg

2008-11-26 14:16 801,280 a------- c:\documents and settings\victor\FolderLatch.exe

2008-04-14 09:00 60,416 a--sh--- c:\windows\bricopacks\sysfiles\80_msimn.exe

 

============= FINISH: 13:48:14,84 ===============

 

 

 

Attach

 

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

 

DDS (Ver_09-03-16.01)

 

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 02/08/2008 20:06:38

System Uptime: 20/04/2009 10:14:07 (3 hours ago)

 

Motherboard: ECS | | P4M800PRO-M

Processor: Intel® Pentium® 4 CPU 2.66GHz | CPU 1 | 2661/133mhz

 

==== Disk Partitions =========================

 

A: is Removable

C: is FIXED (NTFS) - 75 GiB total, 19,041 GiB free.

D: is CDROM (CDFS)

E: is CDROM (CDFS)

 

==== Disabled Device Manager Items =============

 

==== System Restore Points ===================

 

RP211: 12/04/2009 21:22:16 - Revo Uninstaller's restore point - AviSynth 2.5

RP212: 12/04/2009 21:36:03 - Revo Uninstaller's restore point - Megacubo 5.0.9

RP213: 13/04/2009 12:09:28 - Instalado Realtek AC'97 Audio

RP214: 13/04/2009 12:15:13 - Configured Platform

RP215: 14/04/2009 18:56:37 - Software Distribution Service 3.0

RP216: 14/04/2009 19:07:00 - Windows Internet Explorer 8 Instalado.

RP217: 14/04/2009 19:09:45 - Software Distribution Service 3.0

RP218: 15/04/2009 22:19:34 - Software Distribution Service 3.0

RP219: 16/04/2009 16:17:25 - Software Distribution Service 3.0

RP220: 17/04/2009 17:44:15 - Software Distribution Service 3.0

RP221: 18/04/2009 09:43:15 - Revo Uninstaller's restore point - Orbit Downloader

RP222: 18/04/2009 11:31:08 - Instalado GTAIII

RP223: 18/04/2009 13:37:45 - Configured Platform

RP224: 20/04/2009 11:45:37 - Installed AVG Free 8.5

RP225: 20/04/2009 13:32:01 - Avg8 Update

 

==== Installed Programs ======================

 

Adobe Anchor Service CS3

Adobe Asset Services CS3

Adobe Bridge CS3

Adobe Bridge Start Meeting

Adobe Camera Raw 4.0

Adobe CMaps

Adobe Color - Photoshop Specific

Adobe Color Common Settings

Adobe Color EU Extra Settings

Adobe Color JA Extra Settings

Adobe Color NA Recommended Settings

Adobe Default Language CS3

Adobe Device Central CS3

Adobe ExtendScript Toolkit 2

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Fonts All

Adobe Help Viewer CS3

Adobe Linguistics CS3

Adobe PDF Library Files

Adobe Photoshop CS3

Adobe Reader 8.1.4 - Português

Adobe Setup

Adobe Shockwave Player

Adobe Stock Photos CS3

Adobe Type Support

Adobe Update Manager CS3

Adobe Version Cue CS3 Client

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS3

AiO_Scan_CDA

AiOSoftwareNPI

Assistente de Conexão do Windows Live

Atualização Crítica para o Windows Media Player 11 (KB959772)

Atualização de Segurança para o Windows Media Player (KB952069)

Atualização de Segurança para o Windows Media Player 10 (KB936782)

Atualização de Segurança para o Windows Media Player 11 (KB936782)

Atualização de Segurança para o Windows Media Player 11 (KB954154)

Atualização de Segurança para Windows Internet Explorer 7 (KB938127-v2)

Atualização de Segurança para Windows Internet Explorer 7 (KB950759)

Atualização de Segurança para Windows Internet Explorer 7 (KB953838)

Atualização de Segurança para Windows Internet Explorer 7 (KB956390)

Atualização de Segurança para Windows Internet Explorer 7 (KB958215)

Atualização de Segurança para Windows Internet Explorer 7 (KB960714)

Atualização de Segurança para Windows Internet Explorer 7 (KB961260)

Atualização de Segurança para Windows XP (KB923561)

Atualização de Segurança para Windows XP (KB923689)

Atualização de Segurança para Windows XP (KB938464)

Atualização de Segurança para Windows XP (KB941569)

Atualização de Segurança para Windows XP (KB946648)

Atualização de Segurança para Windows XP (KB950759)

Atualização de Segurança para Windows XP (KB950760)

Atualização de Segurança para Windows XP (KB950762)

Atualização de Segurança para Windows XP (KB950974)

Atualização de Segurança para Windows XP (KB951066)

Atualização de Segurança para Windows XP (KB951376-v2)

Atualização de Segurança para Windows XP (KB951698)

Atualização de Segurança para Windows XP (KB951748)

Atualização de Segurança para Windows XP (KB952004)

Atualização de Segurança para Windows XP (KB952954)

Atualização de Segurança para Windows XP (KB953839)

Atualização de Segurança para Windows XP (KB954211)

Atualização de Segurança para Windows XP (KB954459)

Atualização de Segurança para Windows XP (KB954600)

Atualização de Segurança para Windows XP (KB955069)

Atualização de Segurança para Windows XP (KB956391)

Atualização de Segurança para Windows XP (KB956572)

Atualização de Segurança para Windows XP (KB956802)

Atualização de Segurança para Windows XP (KB956803)

Atualização de Segurança para Windows XP (KB956841)

Atualização de Segurança para Windows XP (KB957095)

Atualização de Segurança para Windows XP (KB957097)

Atualização de Segurança para Windows XP (KB958644)

Atualização de Segurança para Windows XP (KB958687)

Atualização de Segurança para Windows XP (KB958690)

Atualização de Segurança para Windows XP (KB959426)

Atualização de Segurança para Windows XP (KB960225)

Atualização de Segurança para Windows XP (KB960715)

Atualização de Segurança para Windows XP (KB960803)

Atualização de Segurança para Windows XP (KB961373)

Atualização para Windows Internet Explorer 8 (KB968220)

Atualização para Windows XP (KB898461)

Atualização para Windows XP (KB942763)

Atualização para Windows XP (KB951072-v2)

Atualização para Windows XP (KB951978)

Atualização para Windows XP (KB955839)

Atualização para Windows XP (KB967715)

AusLogics Disk Defrag

AVG 8.5

AVIConverter 3.0

BitComet 1.00

BufferChm

C3100

c3100_Help

CCleaner (remove only)

CCScore

CEP - Color Enable Package

CheMax 8.8

Choice Guard

Compatibility Pack for the 2007 Office system

CustomerResearchQFolder

DAEMON Tools

Destinations

DeviceManagementQFolder

Diner Dash

DirectX for Managed Code Update (Summer 2004)

DocProc

DocProcQFolder

DVD Shrink 3.2

ESSBrwr

ESSCDBK

ESScore

ESSgui

ESSini

ESSPCD

ESSPDock

ESSTOOLS

essvatgt

eSupportQFolder

Fax_CDA

Ferramenta de Carregamento do Windows Live

fflink

Folder Latch version

FormatFactory

Free Download Manager 3.0

Free FLV Converter V 6.23.0

GameJack 5

GTAIII

HijackThis 2.0.2

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix para o Windows Media Player 11 (KB939683)

Hotfix para Windows XP (KB932716-v2)

Hotfix para Windows XP (KB952287)

HP Customer Participation Program 7.0

HP Imaging Device Functions 7.0

HP Photosmart Essential

HP Photosmart, Officejet and Deskjet 7.0.A

HP Product Assistant

HP Solution Center 7.0

HP Update

HPPhotoSmartExpress

HPProductAssistant

InstantShareDevicesMFC

IrfanView (remove only)

IRPF2008 Windows - Declaração de Ajuste Anual

IRPF2009 - Declaração de Ajuste Anual e Final de Espólio

Java 6 Update 10

Java 6 Update 7

Junk Mail filter update

K-Lite Mega Codec Pack 3.6.2

kgcbaby

kgchday

kgchlwn

kgcinvt

kgckids

kgcmove

kgcvday

Labtec Desktop V5.1

LimeWire 5.0.9

Lunia

MarketResearch

McAfee VirusScan Enterprise

Microsoft .NET Framework 2.0

Microsoft Application Error Reporting

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft National Language Support Downlevel APIs

Microsoft Office Live Add-in 1.3

Microsoft Office Outlook Connector

Microsoft Office Professional Edição 2003

Microsoft Private Folder 1.0

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Sync Framework Runtime Native v1.0 (x86)

Microsoft Sync Framework Services Native v1.0 (x86)

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 Redistributable

Minilyrics(remove only)

Mozilla Firefox (3.0.8)

MSVCRT

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 (KB954430)

Nero 7 Premium

netbrdg

NewCopy_CDA

Norton Security Scan

OCR Software by I.R.I.S 7.0

OfotoXMI

OpenDNS Updater 1.3.0.187

Opera 9.62

Pack Vista Inspirat 2 1.0

PanoStandAlone

PDF Settings

Photo Story 3 for Windows

Platform

ProductContextNPI

QuickTime

RCT

Readme

Real Alternative 1.8.2

RealPlayer

Realtek AC'97 Audio

Receitanet 2009

Revo Uninstaller 1.80

SC3K

Scan

ScannerCopy

Security Update para o produto Microsoft .NET Framework 2.0 (KB928365)

Segoe UI

SFR

SHASTA

Sims 2 RoboFileMaid 3000

Sims2Pack Clean Installer

skin0001

SKINXSDK

SoftV92 Data Fax Modem

Software Informer 1.0 BETA

Software Kodak EasyShare

SolutionCenter

SONIC ADVENTURE DX-Director's Cut

SpeedBit Video Accelerator

staticcr

Status

Styler

System Requirements Lab

TaskSwitchXP

The Sims 2

The Sims 2 - Aberto Para Negócios

The Sims 2 Diversão em Família Coleção de Objetos

The Sims 2 HomeCrafter Plus

The Sims 2 Vida de Universitário

The Sims 2: Vida Noturna

The Sims™ 2 Bichos de Estimação

The Sims™ 2 Celebrações! Coleção de Objetos

The Sims™ 2 Cozinhas & Banheiros Design de Interiores Coleção de Objetos

The Sims™ 2 Estilo Teen Coleção de Objetos

The Sims™ 2 Glamour Coleção de Objetos

The Sims™ 2 H&M® Fashion Coleção de Objetos

The Sims™ 2 Lar IKEA® - Coleção de Objetos

The Sims™ 2 Mansões e Jardins Coleção de Objetos

Tibia

TmNationsForever

Toolbox

tooltips

TransBar

TrayApp

Tweakui Powertoy for Windows XP

UltraISO 8.12 Premium Edition

Unload

VIA Platform Device Manager

VIA Rhine-Family Fast-Ethernet Adapter

VIA/S3G Display Driver 6.14.10.0331

VobSub 2.23

VPRINTOL

WebFldrs XP

WebReg

WinAVI MP4 Converter

WindowBlinds

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 7

Windows Internet Explorer 8

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Galeria de Fotos

Windows Live Mail

Windows Live Messenger

Windows Live Sync

Windows Live Toolbar

Windows Live Writer

Windows Media Format 11 runtime

Windows Media Player 11

WinRAR archiver

WIRELESS

WKIDS - Ecologia 1.0

Zune Desktop Theme

 

==== End Of File ===========================

[DigRam 144]

Boa Noite! Sharner

 

<@> Atualize o Java.

<@> Versões antigas têm vulnerabilidades que,malwares,podem usar para infectar seu sistema.

<><><><><><><><><><><><><><><>

<@> Faça download da última versão do Java Runtime Environment (JRE) 6u13.

<@> Localize: "Java Runtime Environment (JRE) 6 Update 13"

<@> Clique no botão Download.

<@> Marque a opção que diz: "Accept License Agreement"

<@> A página será atualizada!

<@> Clique no link,para download do Windows Offline Installation --> Salve-o no desktop!

<@> Feche o IE ou Firefox + Programas que estejam sendo executados.

<@> Vá em Iniciar --> Painel de Controle.

<@> Em Adicionar ou Remover Programas;remova todas as antigas versões do Java.

<><><><><><><><><><><><><><><>

<@> Exemplos de antigas versões:

 

< > Java 2 Runtime Environment, SE v1.4.2

< > J2SE Runtime Environment 5.0

< > J2SE Runtime Environment 5.0 Update 6

 

<@> Selecione qualquer item com nome: Java Runtime Environment (JRE ou J2SE)

<@> Clique no botão Remover ou Alterar/Remover.

<@> Repita quantas vezes for necessária,para remover cada versão do Java.

<@> Concluindo,reinicie o computador!

<@> Instale a nova versão,com um duplo clique em jre-6u13-windows-i586-p.exe.

<><><><><><><><><><><><><><><>

<@> Estando tudo Ok,crie um ponto limpo na Restauração do Sistema.

<@> Clique com o direito do mouse,em cima de Meu Computador --> Propriedades --> Restauração do Sistema.

<@> Marque: Desativar Restauração do Sistema --> Aplicar --> Aguarde! --> Ok.

<@> Depois,desmarque novamente! --> Aplicar --> Aguarde! --> Ok.

<@> Para maiores detalhes,leia o Tutorial: < Link >

<><><><><><><><><><><><><><><>

<!> O log está limpo!

<!> Tudo Ok?

 

Abraços!

[Sharner 0]

Desculpe a demora pra responder, DigRam. Está tudo certo aqui, e tudo que era problema com o IE saiu! :thumbsup:

Valeu por tudo!!! :D

[DigRam 144]

PROBLEMA RESOLVIDO!

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.