[Arquivado] &nbspPasta com .exe

[Marostegan 0]

Olá pessoal, estou com um problema aqui que não consigo resolver... busquei solução na internet, mas nada deu certo.

 

O problema é que todas as pastas do meu PenDrive viraram .exe e não abrem mais... e apareceu a pasta do !@#$#$!@ RECYCLED e tudo o que deleta da pen, volta novamente.

 

Tentei formatar e não dá!

 

Coloquei uma outra pen drive no meu computador e agora ela também está com o mesmo problema...

 

Gostaria de saber como faz pra deletar essa porcaria de vírus da pen drive e do computador? (porque além da pen está infectada, agora todas as oyutras pen que ligo em meu computador começam a dar o mesmoproblema...)

 

Tentei remover essa criaturinha do inferno com os seguintes programas:

 

- Avast

- AVG

- PenClean

- Malwarebytes

- ComboxFix

 

Porém nenhuma identificou e removeu o vírus/malware (criaturinha do inferno ou sei lá o que) :o

 

 

Se aguém souber alguma solução e puder me ajudar.

 

Desde já agradeço a atenção.

[Renato Utsch 24]

Olá!

 

Seja bem vindo à seção de Remoção de Malwares do fórum IMasters.

 

DURANTE A REMOÇÃO, SIGA ATENTAMENTE A ORDEM DADA, NÃO PULE UM PASSO! CASO NÃO CONSEGUIR EXECUTAR ALGUM PASSO, PARE DE REALIZAR AS ETAPAS E ME AVISE!

 

Por favor, siga as instruções abaixo:

 

---

 

<< 1 >>

 

Faça o Download do DDS e salve no Desktop (Área de trabalho).

 

• Temporariamente desative os seus programas de proteção.
  
• Duplo clique em dds.scr.
  
• Irá surgir uma tela preta com algumas informações. Não clique em nada, apenas aguarde!
  
• Quando terminar, duas janelas abrirão: DDS.txt e Attach.txt.
  
• Salve o resultado e cole-o no seu tópico.
  

 

OBS: Caso o link disponibilizado não funcione, tente baixar o DDS por ESTE link.

 

 

<< 2 >>

 

Siga o tutorial abaixo e Execute o USBFix. Utilize a opção Clean e poste o log gerado.

 

Tutorial do USBFix

 

 

<< 3 >>

 

Poste um novo log do DDS, atualizado (não se esqueça de postar o log anterior à execução do USBFix.

 

Eu preciso de 2 logs pra verificar qual a diferença antes e depois do usbfix, só pra ter certeza ;D

 

 

Ah, e não use o ComboFix sem supervisão, pois é uma ferramenta perigosa que pode danificar seu computador no caso de utilização incorreta.

 

 

 

Abraços :D

[Marostegan 0]

LOGS

 

DDS

 

DDS (Ver_10-12-12.02) - NTFSx86

Run by Daniel at 9:16:01,09 on ter 14/12/2010

Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_22

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2047.1280 [GMT -2:00]

 

AV: AVG Anti-Virus *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}

 

============== Running Processes ===============

 

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\Arquivos de programas\AVG\AVG9\avgchsvx.exe

C:\Arquivos de programas\AVG\AVG9\avgrsx.exe

C:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Arquivos de programas\Google\Update\GoogleUpdate.exe

C:\WINDOWS\Explorer.EXE

C:\Arquivos de programas\Java\jre6\bin\jqs.exe

C:\Arquivos de programas\LogMeIn\x86\RaMaint.exe

C:\Arquivos de programas\LogMeIn\x86\LogMeIn.exe

C:\Arquivos de programas\LogMeIn\x86\LMIGuardianSvc.exe

C:\Arquivos de programas\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Arquivos de programas\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Arquivos de programas\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Arquivos de programas\CyberLink DVD Solution\PowerDVD\PDVDServ.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe

C:\ARQUIV~1\AVG\AVG9\avgtray.exe

C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe

C:\Arquivos de programas\LogMeIn\x86\LMIGuardianSvc.exe

C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe

C:\WINDOWS\system32\issas.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\DAEMON Tools Lite\DTLite.exe

C:\Arquivos de programas\Mozilla Firefox\firefox.exe

C:\Arquivos de programas\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Documents and Settings\Daniel\Desktop\dds.scr

 

============== Pseudo HJT Report ===============

 

uStart Page = hxxp://www.google.com.br/

BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\arquivos de programas\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\arquivos de programas\avg\avg9\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\arquivos de programas\arquivos comuns\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\arquivos de programas\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [ares] "c:\arquivos de programas\ares\Ares.exe" -h

uRun: [DAEMON Tools Lite] "c:\arquivos de programas\daemon tools lite\DTLite.exe" -autorun

mRun: [startCCC] "c:\arquivos de programas\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun

mRun: [RemoteControl] "c:\arquivos de programas\cyberlink dvd solution\powerdvd\PDVDServ.exe"

mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [skyTel] SkyTel.EXE

mRun: [Alcmtr] ALCMTR.EXE

mRun: [samsung PanelMgr] c:\windows\samsung\panelmgr\SSMMgr.exe /autorun

mRun: [AVG9_TRAY] c:\arquiv~1\avg\avg9\avgtray.exe

mRun: [LogMeIn GUI] "c:\arquivos de programas\logmein\x86\LogMeInSystray.exe"

mRun: [sunJavaUpdateSched] "c:\arquivos de programas\arquivos comuns\java\java update\jusched.exe"

mRun: [Microsoft Install Manager] c:\windows\system32\issas.exe

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

dRunOnce: [nltide_2] regsvr32 /s /n /i:U shell32

dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N

StartupFolder: c:\docume~1\daniel\menuin~1\progra~1\inicia~1\adobeg~1.lnk - c:\arquivos de programas\arquivos comuns\adobe\calibration\Adobe Gamma Loader.exe

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\micros~2\office11\EXCEL.EXE/3000

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~2\office11\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg9\avgpp.dll

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\arquiv~1\arquiv~1\skype\SKYPE4~1.DLL

Notify: AtiExtEvent - Ati2evxx.dll

Notify: avgrsstarter - avgrsstx.dll

Notify: LMIinit - LMIinit.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll

 

================= FIREFOX ===================

 

FF - ProfilePath - c:\docume~1\daniel\dadosd~1\mozilla\firefox\profiles\d1gjq8s5.default\

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://mystart.hiyo.com/?loc=ff_address&search=

FF - component: c:\arquivos de programas\avg\avg9\firefox\components\avgssff.dll

FF - component: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e886c}\components\GbMzhBb.dll

FF - component: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\components\RadioWMPCoreGecko19.dll

FF - component: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll

FF - plugin: c:\arquivos de programas\google\update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: c:\arquivos de programas\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\logmeinclient@logmein.com\plugins\npRACtrl.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\arquivos de programas\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Java Quick Starter: jqs@sun.com - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ff

FF - Ext: AVG Safe Search: {3f963a5b-e555-4543-90e2-c3908898db71} - c:\arquivos de programas\avg\avg9\Firefox

FF - Ext: Módulo de Segurança - Banco do Brasil: {87F8774F-B485-47E2-A755-A40A8A5E886C} - %profile%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}

FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF - Ext: LogMeIn, Inc. Remote Access Plugin: LogMeInClient@logmein.com - %profile%\extensions\LogMeInClient@logmein.com

FF - Ext: BitTorrentBar Community Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - %profile%\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}

FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

 

============= SERVICES / DRIVERS ===============

 

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-4-10 216400]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-4-10 29584]

R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-4-10 243024]

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\logmein\x86\rainfo.sys [2010-1-27 12856]

R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2010-8-3 47640]

S2 SSPORT;SSPORT;\??\c:\windows\system32\drivers\ssport.sys --> c:\windows\system32\drivers\SSPORT.sys [?]

S4 avg9emc;AVG Free E-mail Scanner;c:\arquivos de programas\avg\avg9\avgemc.exe [2010-7-21 921952]

S4 avg9wd;AVG Free WatchDog;c:\arquivos de programas\avg\avg9\avgwdsvc.exe [2010-6-22 308136]

S4 gupdate;Google Update Service (gupdate);c:\arquivos de programas\google\update\GoogleUpdate.exe [2010-9-6 136176]

S4 LMIGuardianSvc;LMIGuardianSvc;c:\arquivos de programas\logmein\x86\LMIGuardianSvc.exe [2010-10-1 374152]

S4 LMIRfsClientNP;LMIRfsClientNP; [x]

 

=============== Created Last 30 ================

 

2010-12-14 11:12:01 -------- d-----w- c:\windows\pss

2010-12-13 22:41:40 -------- d-----w- c:\documents and settings\daniel\DoctorWeb

2010-12-13 22:07:47 -------- d-----w- c:\docume~1\daniel\dadosd~1\Malwarebytes

2010-12-13 22:07:40 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\Malwarebytes

2010-12-13 22:07:37 -------- d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware

2010-12-13 22:02:43 517930 ----a-w- c:\windows\system32\issas.exe

2010-12-13 22:01:39 -------- d-----w- C:\LinhaDefensiva

2010-12-13 21:41:39 -------- d-----w- C:\PenClean

2010-12-08 17:51:11 -------- d-----w- C:\ProgramData

2010-12-08 17:51:11 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\Electronic Arts

2010-12-08 17:43:59 447752 ----a-r- c:\windows\system32\vp6vfw.dll

2010-12-08 17:43:57 -------- d-----w- c:\arquivos de programas\Microsoft WSE

2010-12-08 17:42:19 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll

2010-12-08 17:42:16 -------- d-----w- c:\windows\Logs

2010-12-08 16:51:51 -------- d--h--w- c:\windows\system32issas

2010-12-08 12:07:26 83765096 ----a-w- c:\arquivos de programas\arquivos comuns\windows live\.cache\wlc119.tmp

2010-12-01 18:34:27 -------- d-----w- c:\docume~1\daniel\config~1\dadosd~1\Sony

2010-12-01 18:31:56 -------- d-----w- c:\arquivos de programas\Sony

2010-12-01 12:07:38 -------- d-----w- c:\windows\system32\URTTEMP

2010-11-30 22:20:22 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-11-30 22:20:12 -------- d-----w- c:\arquivos de programas\DAEMON Tools Lite

2010-11-30 22:19:55 -------- d-----w- c:\docume~1\daniel\dadosd~1\DAEMON Tools Lite

2010-11-30 22:19:53 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\DAEMON Tools Lite

2010-11-30 21:45:47 -------- d-----w- c:\docume~1\daniel\config~1\dadosd~1\WinAVI

2010-11-30 21:45:23 -------- d-----w- c:\windows\WinAVI Video Converter 9.0

2010-11-30 21:45:23 -------- d-----w- c:\arquivos de programas\WinAVI Video Converter 9.0

2010-11-29 11:28:03 -------- d-----w- c:\arquivos de programas\Ares

2010-11-27 19:59:44 -------- d-----w- c:\arquivos de programas\arquivos comuns\Adobe Systems Shared

2010-11-27 19:59:06 20016 ------w- c:\windows\system32\drivers\pxhelp20.sys

2010-11-27 17:47:31 -------- d-----w- C:\videos_paula

2010-11-24 16:37:38 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\vsosdk

2010-11-24 16:02:01 87608 ----a-w- c:\docume~1\daniel\dadosd~1\inst.exe

2010-11-24 16:02:01 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys

2010-11-24 16:02:01 47360 ----a-w- c:\docume~1\daniel\dadosd~1\pcouffin.sys

2010-11-24 16:01:56 65602 ----a-w- c:\windows\system32\cook3260.dll

2010-11-24 16:01:56 217127 ----a-w- c:\windows\system32\drv43260.dll

2010-11-24 16:01:56 208935 ----a-w- c:\windows\system32\drv33260.dll

2010-11-24 16:01:56 176165 ----a-w- c:\windows\system32\drv23260.dll

2010-11-24 16:01:54 -------- d-----w- c:\arquivos de programas\VSO

2010-11-19 11:47:28 -------- d-----w- c:\docume~1\daniel\dadosd~1\PriceGong

 

==================== Find3M ====================

 

2010-11-01 20:05:29 196608 ----a-w- c:\windows\system32\ssleay32.dll

2010-11-01 20:05:29 1040384 ----a-w- c:\windows\system32\libeay32.dll

2010-09-30 10:47:26 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll

2010-09-30 10:47:25 53632 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\LMIproc.dll

2010-09-30 10:47:24 87424 ----a-w- c:\windows\system32\LMIinit.dll

2010-09-30 10:47:24 29568 ----a-w- c:\windows\system32\LMIport.dll

2004-03-11 16:27:22 40960 ----a-w- c:\arquivos de programas\Uninstall_CDS.exe

 

============= FINISH: 9:18:14,48 ===============

 

 

ATTACH

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

 

DDS (Ver_10-12-12.02)

 

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 28/9/2001 12:42:24

System Uptime: 14/12/2010 09:13:41 (0 hours ago)

 

Motherboard: ASUSTeK Computer INC. | | M2N-MX SE Plus

Processor: AMD Athlon 64 X2 Dual Core Processor 5200+ | AM2 | 2712/200mhz

 

==== Disk Partitions =========================

 

A: is Removable

C: is FIXED (NTFS) - 149 GiB total, 103,292 GiB free.

D: is FIXED (NTFS) - 233 GiB total, 102,387 GiB free.

E: is CDROM ()

F: is CDROM ()

G: is CDROM ()

H: is Removable

 

==== Disabled Device Manager Items =============

 

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: Controlador de vídeo de multimídia

Device ID: PCI\VEN_109E&DEV_036E&SUBSYS_40111554&REV_11\4&25700A26&0&3020

Manufacturer:

Name: Controlador de vídeo de multimídia

PNP Device ID: PCI\VEN_109E&DEV_036E&SUBSYS_40111554&REV_11\4&25700A26&0&3020

Service:

 

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: Controlador de multimídia

Device ID: PCI\VEN_109E&DEV_0878&SUBSYS_40111554&REV_11\4&25700A26&0&3120

Manufacturer:

Name: Controlador de multimídia

PNP Device ID: PCI\VEN_109E&DEV_0878&SUBSYS_40111554&REV_11\4&25700A26&0&3120

Service:

 

==== System Restore Points ===================

 

RP151: 10/9/2010 16:29:53 - Ponto de verificação do sistema

RP152: 11/9/2010 18:05:08 - Installed Java 6 Update 21

RP153: 13/9/2010 14:50:04 - Ponto de verificação do sistema

RP154: 14/9/2010 14:57:34 - Ponto de verificação do sistema

RP155: 16/9/2010 10:33:45 - Ponto de verificação do sistema

RP156: 17/9/2010 12:34:32 - Ponto de verificação do sistema

RP157: 20/9/2010 08:29:16 - Avg Update

RP158: 20/9/2010 08:30:34 - Avg Update

RP159: 21/9/2010 09:26:03 - Ponto de verificação do sistema

RP160: 22/9/2010 09:57:17 - Ponto de verificação do sistema

RP161: 30/9/2010 10:43:18 - Ponto de verificação do sistema

RP162: 30/9/2010 10:52:06 - Avg Update

RP163: 1/10/2010 15:28:42 - Driver de impressão LogMeIn Printer Driver instalado

RP164: 3/10/2010 12:29:44 - Ponto de verificação do sistema

RP165: 4/10/2010 14:55:31 - Ponto de verificação do sistema

RP166: 5/10/2010 17:06:33 - Ponto de verificação do sistema

RP167: 6/10/2010 17:44:26 - Ponto de verificação do sistema

RP168: 7/10/2010 18:41:43 - Ponto de verificação do sistema

RP169: 8/10/2010 09:15:19 - Avg Update

RP170: 9/10/2010 10:59:36 - Ponto de verificação do sistema

RP171: 12/10/2010 14:17:49 - Ponto de verificação do sistema

RP172: 13/10/2010 14:34:31 - Ponto de verificação do sistema

RP173: 14/10/2010 18:52:27 - Ponto de verificação do sistema

RP174: 15/10/2010 18:54:40 - Ponto de verificação do sistema

RP175: 18/10/2010 21:06:45 - Ponto de verificação do sistema

RP176: 20/10/2010 13:29:57 - Ponto de verificação do sistema

RP177: 21/10/2010 14:13:56 - Ponto de verificação do sistema

RP178: 22/10/2010 15:26:08 - Ponto de verificação do sistema

RP179: 24/10/2010 17:09:17 - Ponto de verificação do sistema

RP180: 25/10/2010 17:33:17 - Ponto de verificação do sistema

RP181: 26/10/2010 10:42:31 - Avg Update

RP182: 27/10/2010 14:04:42 - Ponto de verificação do sistema

RP183: 28/10/2010 14:08:14 - Ponto de verificação do sistema

RP184: 29/10/2010 09:48:20 - Installed Java 6 Update 22

RP185: 30/10/2010 13:17:19 - Ponto de verificação do sistema

RP186: 31/10/2010 13:20:39 - Ponto de verificação do sistema

RP187: 1/11/2010 18:53:57 - Ponto de verificação do sistema

RP188: 3/11/2010 16:42:12 - Driver de impressão Samsung ML-2010 Series instalado

RP189: 3/11/2010 16:59:00 - Removido Ponto de Restauração do InstallShield

RP190: 3/11/2010 17:00:51 - Removido Google Earth.

RP191: 3/11/2010 17:01:34 - Removed Ghostscript GPL 8.64 (Msi Setup).

RP192: 3/11/2010 18:13:24 - Driver de impressão Samsung ML-2010 Series instalado

RP193: 5/11/2010 13:35:27 - Ponto de verificação do sistema

RP194: 7/11/2010 12:51:22 - Ponto de verificação do sistema

RP195: 8/11/2010 16:21:51 - Ponto de verificação do sistema

RP196: 9/11/2010 19:26:39 - Ponto de verificação do sistema

RP197: 10/11/2010 09:42:28 - Avg Update

RP198: 10/11/2010 09:43:56 - Avg Update

RP199: 11/11/2010 09:53:06 - Ponto de verificação do sistema

RP200: 16/11/2010 11:01:50 - Ponto de verificação do sistema

RP201: 17/11/2010 11:47:40 - Ponto de verificação do sistema

RP202: 18/11/2010 15:09:00 - Ponto de verificação do sistema

RP203: 20/11/2010 12:50:35 - Ponto de verificação do sistema

RP204: 22/11/2010 10:51:30 - Ponto de verificação do sistema

RP205: 23/11/2010 11:09:13 - Ponto de verificação do sistema

RP206: 24/11/2010 19:36:55 - Ponto de verificação do sistema

RP207: 25/11/2010 08:01:05 - Avg Update

RP208: 25/11/2010 08:02:29 - Avg Update

RP209: 26/11/2010 11:25:05 - Ponto de verificação do sistema

RP210: 27/11/2010 16:22:35 - Ponto de verificação do sistema

RP211: 27/11/2010 17:59:04 - Installed Adobe Premiere Pro 2.0

RP212: 28/11/2010 20:08:34 - Ponto de verificação do sistema

RP213: 29/11/2010 20:29:21 - Ponto de verificação do sistema

RP214: 30/11/2010 20:20:22 - SPTD setup V1.62

RP215: 1/12/2010 10:07:24 - Installed Microsoft .NET Framework 1.1

RP216: 1/12/2010 16:31:20 - Instalado Microsoft Visual C++ 2005 Redistributable

RP217: 1/12/2010 16:31:54 - Installed Sound Forge Pro 10.0

RP218: 2/12/2010 18:51:53 - Ponto de verificação do sistema

RP219: 4/12/2010 15:35:59 - Ponto de verificação do sistema

RP220: 5/12/2010 16:31:47 - Ponto de verificação do sistema

RP221: 6/12/2010 16:38:57 - Ponto de verificação do sistema

RP222: 7/12/2010 19:18:59 - Ponto de verificação do sistema

RP223: 8/12/2010 15:30:52 - Installed The Sims 3

RP224: 8/12/2010 15:33:45 - Installed The Sims 3

RP225: 11/12/2010 12:24:13 - Removed The Sims 3

RP226: 11/12/2010 14:18:41 - Instalado The Sims 3

RP227: 11/12/2010 15:30:06 - Instalado The Sims 3

RP228: 14/12/2010 08:53:58 - Removed AVG 9.0

RP229: 14/12/2010 08:54:35 - Removed AVG 9.0

 

==== Installed Programs ======================

 

Add or Remove Adobe Creative Suite 3 Design Premium

Adobe Anchor Service CS3

Adobe Asset Services CS3

Adobe Bridge 1.0

Adobe Bridge CS3

Adobe Bridge Start Meeting

Adobe BridgeTalk Plugin CS3

Adobe Camera Raw 4.0

Adobe CMaps

Adobe Color - Photoshop Specific

Adobe Color Common Settings

Adobe Color EU Extra Settings

Adobe Color JA Extra Settings

Adobe Color NA Recommended Settings

Adobe Common File Installer

Adobe Creative Suite 3 Design Premium

Adobe Default Language CS3

Adobe Device Central CS3

Adobe Dreamweaver CS3

Adobe ExtendScript Toolkit 2

Adobe Extension Manager CS3

Adobe Flash CS3

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Flash Player 9 ActiveX

Adobe Fonts All

Adobe Help Center 2.0

Adobe Help Viewer CS3

Adobe InDesign CS3 Icon Handler

Adobe Linguistics CS3

Adobe MotionPicture Color Files

Adobe PDF Library Files

Adobe Photoshop CS3

Adobe Premiere Pro 2.0

Adobe Reader 6.0

Adobe Setup

Adobe SING CS3

Adobe Stock Photos 1.0

Adobe Stock Photos CS3

Adobe Type Support

Adobe Update Manager CS3

Adobe Version Cue CS3 Client

Adobe WAS CS3

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS3

AHV content for Acrobat and Flash

Ares 2.1.7

Assistente de Conexão do Windows Live

ATI - Utilitário de desinstalação de software

ATI AVIVO Codecs

ATI Catalyst Control Center

ATI Display Driver

ATI Parental Control & Encoder

AVG Free 9.0

BitTorrent

Borland Delphi 7

Camtasia Studio 6

Catalyst Control Center - Branding

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Common

Catalyst Control Center HydraVision Full

Catalyst Control Center Localization All

ccc-core-preinstall

ccc-core-static

ccc-utility

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Corel Graphics - Windows Shell Extension

CorelDRAW Graphics Suite X5

CorelDRAW Graphics Suite X5 - BR

CorelDRAW Graphics Suite X5 - Capture

CorelDRAW Graphics Suite X5 - Common

CorelDRAW Graphics Suite X5 - Connect

CorelDRAW Graphics Suite X5 - Custom Data

CorelDRAW Graphics Suite X5 - Draw

CorelDRAW Graphics Suite X5 - Filters

CorelDRAW Graphics Suite X5 - FontNav

CorelDRAW Graphics Suite X5 - IPM

CorelDRAW Graphics Suite X5 - PHOTO-PAINT

CorelDRAW Graphics Suite X5 - Photozoom Plugin

CorelDRAW Graphics Suite X5 - Redist

CorelDRAW Graphics Suite X5 - Setup Files

CorelDRAW Graphics Suite X5 - VBA

CorelDRAW Graphics Suite X5 - VideoBrowser

CorelDRAW Graphics Suite X5 - VSTA

CorelDRAW Graphics Suite X5 - WT

CorelDRAW® Graphics Suite X5

Doro 1.38

DVD Decrypter (Remove Only)

DVD Shrink 3.2

DVD Solution

EA Download Manager

Ferramenta de Carregamento do Windows Live

Google Update Helper

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)

Hotfix for Windows XP (KB915865)

Hotfix for Windows XP (KB954550-v5)

Hotfix para Windows XP (KB942288-v3)

IcoFX 1.6

IrfanView (remove only)

Java Auto Updater

Java 6 Update 22

LogMeIn

Macromedia Fireworks 8

Messenger Plus! Live

Microsoft .NET Framework 1.1

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PTB

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PTB

Microsoft .NET Framework 3.5 Language Pack SP1 - ptb

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Office Professional Edição 2003

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual Studio Tools for Applications 2.0 - ENU

Microsoft Visual Studio Tools for Applications 2.0 Runtime

Microsoft Web Publishing Wizard 1.53

Microsoft WSE 3.0 Runtime

Mozilla Firefox (3.6.13)

MSI to redistribute MS VS2005 CRT libraries

MSVCRT

MSXML 6.0 Parser

Multimedia Launcher

Nero OEM

NVIDIA Drivers

NVIDIA ForceWare Network Access Manager

Pacote de Compatibilidade para o sistema Office 2007

Pacote de Driver do Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)

Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB

PDF Settings

PowerDVD

Real Alternative 2.0.2

Realtek High Definition Audio Driver

Samsung SCX-4200 Series

Segoe UI

Skins

Skype Toolbars

Skype™ 4.2

SmarThru 4

SMPlayer 0.6.4

Sound Forge Pro 10.0

The Sims™ 3

UltraVNC 1.0.4 RC8

Uninstall 1.0.0.1

Uninstall Crystal FTP Pro

VDownloader 2.10.509.2

Visual Basic for Applications ® Core

Visual Basic for Applications ® Core - English

Visual Basic for Applications ® Core - Portuguese (Brazil)

WebFldrs XP

WinAVI Video Converter 9.0

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

WinRAR archiver

XML Paper Specification Shared Components Language Pack 1.0

 

==== End Of File ===========================

 

LOG

 

USBFIX

 

############################## | UsbFix 7.035 | [supressão]

 

Usuário: Daniel (Administrador) # SERVER [ ]

Atualizado em 05/12/10 por El Desaparecido / C_XX

Começou em 09:21:37 | 14/12/2010

Site: http://www.teamxscript.org

Contato: eldesaparecido@teamxscript.org

 

CPU: AMD Athlon 64 X2 Dual Core Processor 5200+

CPU 2: AMD Athlon 64 X2 Dual Core Processor 5200+

Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 3

Internet Explorer 7.0.5730.11

 

Windows Firewall: Habilitado

Antivirus: AVG Anti-Virus 9.0 [Enabled | Updated]

RAM -> 2047 Mb

C:\ (%systemdrive%) -> Disco fixo # 149 Gb (103 Mb livre - 69%) [] # NTFS

D:\ -> Disco fixo # 233 Gb (102 Mb livre - 44%) [Dados] # NTFS

E:\ -> CD-ROM

F:\ -> CD-ROM

G:\ -> CD-ROM

H:\ -> Disco removível # 8 Gb (7 Mb livre - 93%) [DAN®] # FAT32

 

################## | Ficheiros # pastas infeciosos |

 

 

Supprimido ! C:\DOCUME~1\Daniel\CONFIG~1\Temp\VWL148.tmp

Supprimido ! C:\Recycler\S-1-5-21-2000478354-436374069-839522115-1003

Supprimido ! C:\Recycler\S-1-5-21-2000478354-436374069-839522115-500

Supprimido ! D:\Recycler\S-1-5-21-1409082233-1972579041-725345543-1003

Supprimido ! D:\Recycler\S-1-5-21-1606980848-448539723-725345543-1003

Supprimido ! D:\Recycler\S-1-5-21-1644491937-1606980848-725345543-1001

Supprimido ! D:\Recycler\S-1-5-21-1960408961-776561741-682003330-1003

Supprimido ! D:\Recycler\S-1-5-21-2000478354-436374069-839522115-1003

Supprimido ! D:\Recycler\S-1-5-21-343818398-308236825-682003330-1003

Supprimido ! D:\Recycler\S-1-5-21-343818398-308236825-682003330-500

Supprimido ! D:\Recycler\S-1-5-21-854245398-261903793-839522115-1003

Supprimido ! H:\Recycled.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\BRAGA - MAETERIAS.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\drivers.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\listagem.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\pen drive.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\REVELAR.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\sis_visualdm.exe

Supprimido ! C:\Documents and Settings\Daniel\Desktop\pen drive - dan\wiimob.exe

Supprimido ! C:\WINDOWS\system32\issas.exe

Supprimido ! H:\listagem.exe

Supprimido ! H:\sis_visualdm.exe

Supprimido ! H:\wiimob.exe

Supprimido ! H:\pen drive.exe

Supprimido ! H:\BRAGA - MAETERIAS.exe

Supprimido ! H:\REVELAR.exe

Supprimido ! H:\drivers.exe

Supprimido ! H:\Nova pasta.exe

Supprimido ! H:\DRIVER.exe

 

################## | Registro |

 

 

################## | Mountpoints2 |

 

Supprimido ! HKCU\.\.\.\.\Explorer\MountPoints2\{1e2dba82-44ac-11df-8237-001fc67b8d21}

 

################## | Listing |

 

[29/04/2010 - 12:59:28 | D ] C:\$AVG

[08/09/2010 - 13:19:49 | D ] C:\ALIANÇA

[14/12/2010 - 08:55:42 | D ] C:\Arquivos de programas

[28/09/2001 - 13:22:52 | N | 0] C:\AUTOEXEC.BAT

[14/12/2010 - 09:13:10 | N | 223] C:\boot.ini

[28/10/2001 - 13:06:10 | N | 4952] C:\Bootfont.bin

[01/09/2010 - 18:18:22 | D ] C:\c9bc8db3f8999b2fef04

[11/12/2010 - 15:40:03 | D ] C:\Config.Msi

[28/09/2001 - 13:22:52 | N | 0] C:\CONFIG.SYS

[14/12/2010 - 08:56:01 | D ] C:\Documents and Settings

[28/09/2001 - 14:43:22 | D ] C:\FACUL

[28/09/2001 - 13:22:52 | N | 0] C:\IO.SYS

[13/12/2010 - 20:02:11 | D ] C:\LinhaDefensiva

[29/11/2010 - 09:16:36 | D ] C:\listagem

[28/09/2001 - 13:22:52 | N | 0] C:\MSDOS.SYS

[28/09/2001 - 13:51:06 | RHD ] C:\MSOCache

[05/01/2002 - 04:38:38 | N | 54784] C:\msvci70.dll

[13/04/2008 - 09:43:04 | N | 47564] C:\NTDETECT.COM

[13/04/2008 - 11:31:44 | N | 251696] C:\ntldr

[14/12/2010 - 09:14:03 | ASH | 2145386496] C:\pagefile.sys

[09/09/2010 - 16:58:28 | N | 13030] C:\PDOXUSRS.NET

[13/12/2010 - 19:42:18 | D ] C:\PenClean

[08/12/2010 - 15:51:11 | D ] C:\ProgramData

[13/12/2010 - 20:12:33 | D ] C:\Qoobox

[14/12/2010 - 09:29:50 | SHD ] C:\RECYCLER

[28/09/2001 - 16:37:58 | N | 524] C:\RHDSetup.log

[28/09/2001 - 13:43:25 | SHD ] C:\System Volume Information

[14/12/2010 - 09:29:50 | D ] C:\UsbFix

[14/12/2010 - 09:29:50 | A | 2643] C:\UsbFix.txt

[30/11/2010 - 16:32:16 | D ] C:\videos_paula

[14/12/2010 - 09:12:01 | D ] C:\WINDOWS

[21/04/2010 - 22:40:40 | D ] D:\$AVG

[06/08/2009 - 20:32:53 | D ] D:\4e94796d582f3d53733ef6eb94ce8e

[26/05/2009 - 08:50:59 | D ] D:\Artigos Informática

[11/11/2010 - 11:17:13 | D ] D:\Daniel

[02/08/2010 - 14:42:22 | D ] D:\DELPHI

[28/10/2010 - 15:42:59 | D ] D:\Diablo II

[29/11/2010 - 15:42:42 | D ] D:\DVD´s Filmes

[02/08/2010 - 17:49:54 | D ] D:\DVD´s Shows

[02/01/2010 - 21:31:56 | D ] D:\FOTOS

[22/08/2009 - 10:45:22 | D ] D:\LOCADORA - DELPHI VIDEO AULA

[25/11/2010 - 09:27:45 | D ] D:\MP3

[24/04/2009 - 13:54:21 | RHD ] D:\MSOCache

[09/04/2009 - 02:42:22 | D ] D:\Professor

[14/12/2010 - 09:01:43 | D ] D:\Programas

[14/12/2010 - 09:29:50 | SHD ] D:\RECYCLER

[28/09/2001 - 13:50:03 | SHD ] D:\System Volume Information

[20/04/2009 - 12:45:04 | ASH | 57344] D:\Thumbs.db

[26/05/2010 - 10:15:51 | D ] D:\TUDO 8º Semestre

[25/11/2010 - 09:59:24 | D ] D:\WM8

[05/01/2009 - 18:13:34 | D ] D:\Ícones Organizados

[20/10/2010 - 12:38:30 | D ] H:\listagem

[07/12/2010 - 11:35:26 | N | 19968] H:\Crachás.xls

[13/12/2010 - 19:41:58 | D ] H:\autorun.inf

[13/12/2010 - 19:05:36 | D ] H:\DRIVER

[25/10/2010 - 22:50:52 | D ] H:\Recycled

[14/12/2010 - 09:07:28 | N | 1498] H:\BOOTEX.LOG

[13/12/2010 - 10:11:56 | D ] H:\Nova pasta

[22/11/2010 - 12:36:32 | D ] H:\pen drive

[07/12/2010 - 10:13:04 | D ] H:\BRAGA - MAETERIAS

[07/12/2010 - 10:13:14 | D ] H:\REVELAR

[07/12/2010 - 11:18:06 | N | 40] H:\brindes.txt

[12/06/2008 - 16:07:18 | N | 4762292] H:\apostila_adobe_premiere_portugues_cursosfree.blogspot.com.pdf

[09/12/2010 - 12:30:00 | D ] H:\drivers

 

################## | Vaccin |

 

C:\Autorun.inf -> Folder criado por UsbFix (El Desaparecido & C_XX)

D:\Autorun.inf -> Folder criado por UsbFix (El Desaparecido & C_XX)

H:\Autorun.inf -> Folder criado por UsbFix (El Desaparecido & C_XX)

 

 

LOGS DEPOIS DO USBFIX

 

DDS

 

DDS (Ver_10-12-12.02) - NTFSx86

Run by Daniel at 9:35:28,45 on ter 14/12/2010

Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_22

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2047.1349 [GMT -2:00]

 

AV: AVG Anti-Virus *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}

 

============== Running Processes ===============

 

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Mozilla Firefox\firefox.exe

C:\Arquivos de programas\Mozilla Firefox\plugin-container.exe

C:\Documents and Settings\Daniel\Desktop\dds.scr

 

============== Pseudo HJT Report ===============

 

uWindow Title =

BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\arquivos de programas\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\arquivos de programas\avg\avg9\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\arquivos de programas\arquivos comuns\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\arquivos de programas\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [ares] "c:\arquivos de programas\ares\Ares.exe" -h

uRun: [DAEMON Tools Lite] "c:\arquivos de programas\daemon tools lite\DTLite.exe" -autorun

mRun: [startCCC] "c:\arquivos de programas\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun

mRun: [RemoteControl] "c:\arquivos de programas\cyberlink dvd solution\powerdvd\PDVDServ.exe"

mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [skyTel] SkyTel.EXE

mRun: [Alcmtr] ALCMTR.EXE

mRun: [samsung PanelMgr] c:\windows\samsung\panelmgr\SSMMgr.exe /autorun

mRun: [AVG9_TRAY] c:\arquiv~1\avg\avg9\avgtray.exe

mRun: [LogMeIn GUI] "c:\arquivos de programas\logmein\x86\LogMeInSystray.exe"

mRun: [sunJavaUpdateSched] "c:\arquivos de programas\arquivos comuns\java\java update\jusched.exe"

mRun: [Microsoft Install Manager] c:\windows\system32\issas.exe

mRunOnce: [<NO NAME>]

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

dRunOnce: [nltide_2] regsvr32 /s /n /i:U shell32

dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N

StartupFolder: c:\docume~1\daniel\menuin~1\progra~1\inicia~1\adobeg~1.lnk - c:\arquivos de programas\arquivos comuns\adobe\calibration\Adobe Gamma Loader.exe

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\micros~2\office11\EXCEL.EXE/3000

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~2\office11\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg9\avgpp.dll

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\arquiv~1\arquiv~1\skype\SKYPE4~1.DLL

Notify: AtiExtEvent - Ati2evxx.dll

Notify: avgrsstarter - avgrsstx.dll

Notify: LMIinit - LMIinit.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll

 

================= FIREFOX ===================

 

FF - ProfilePath - c:\docume~1\daniel\dadosd~1\mozilla\firefox\profiles\d1gjq8s5.default\

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://mystart.hiyo.com/?loc=ff_address&search=

FF - component: c:\arquivos de programas\avg\avg9\firefox\components\avgssff.dll

FF - component: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e886c}\components\GbMzhBb.dll

FF - component: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\components\RadioWMPCoreGecko19.dll

FF - component: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll

FF - plugin: c:\arquivos de programas\google\update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: c:\arquivos de programas\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\documents and settings\daniel\dados de aplicativos\mozilla\firefox\profiles\d1gjq8s5.default\extensions\logmeinclient@logmein.com\plugins\npRACtrl.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\arquivos de programas\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Java Quick Starter: jqs@sun.com - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ff

FF - Ext: AVG Safe Search: {3f963a5b-e555-4543-90e2-c3908898db71} - c:\arquivos de programas\avg\avg9\Firefox

FF - Ext: Módulo de Segurança - Banco do Brasil: {87F8774F-B485-47E2-A755-A40A8A5E886C} - %profile%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}

FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF - Ext: LogMeIn, Inc. Remote Access Plugin: LogMeInClient@logmein.com - %profile%\extensions\LogMeInClient@logmein.com

FF - Ext: BitTorrentBar Community Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - %profile%\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}

FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

 

============= SERVICES / DRIVERS ===============

 

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-4-10 216400]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-4-10 29584]

R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-4-10 243024]

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\logmein\x86\rainfo.sys [2010-1-27 12856]

R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2010-8-3 47640]

S2 SSPORT;SSPORT;\??\c:\windows\system32\drivers\ssport.sys --> c:\windows\system32\drivers\SSPORT.sys [?]

S4 avg9emc;AVG Free E-mail Scanner;c:\arquivos de programas\avg\avg9\avgemc.exe [2010-7-21 921952]

S4 avg9wd;AVG Free WatchDog;c:\arquivos de programas\avg\avg9\avgwdsvc.exe [2010-6-22 308136]

S4 gupdate;Google Update Service (gupdate);c:\arquivos de programas\google\update\GoogleUpdate.exe [2010-9-6 136176]

S4 LMIGuardianSvc;LMIGuardianSvc;c:\arquivos de programas\logmein\x86\LMIGuardianSvc.exe [2010-10-1 374152]

S4 LMIRfsClientNP;LMIRfsClientNP; [x]

 

=============== Created Last 30 ================

 

2010-12-14 11:29:57 -------- d-----w- C:\UsbFix_Upload_Me

2010-12-14 11:21:18 -------- d-----w- C:\UsbFix

2010-12-14 11:12:01 -------- d-----w- c:\windows\pss

2010-12-13 22:41:40 -------- d-----w- c:\documents and settings\daniel\DoctorWeb

2010-12-13 22:07:47 -------- d-----w- c:\docume~1\daniel\dadosd~1\Malwarebytes

2010-12-13 22:07:40 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\Malwarebytes

2010-12-13 22:07:37 -------- d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware

2010-12-13 22:01:39 -------- d-----w- C:\LinhaDefensiva

2010-12-13 21:41:39 -------- d-----w- C:\PenClean

2010-12-08 17:51:11 -------- d-----w- C:\ProgramData

2010-12-08 17:51:11 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\Electronic Arts

2010-12-08 17:43:59 447752 ----a-r- c:\windows\system32\vp6vfw.dll

2010-12-08 17:43:57 -------- d-----w- c:\arquivos de programas\Microsoft WSE

2010-12-08 17:42:19 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll

2010-12-08 17:42:16 -------- d-----w- c:\windows\Logs

2010-12-08 16:51:51 -------- d--h--w- c:\windows\system32issas

2010-12-08 12:07:26 83765096 ----a-w- c:\arquivos de programas\arquivos comuns\windows live\.cache\wlc119.tmp

2010-12-01 18:34:27 -------- d-----w- c:\docume~1\daniel\config~1\dadosd~1\Sony

2010-12-01 18:31:56 -------- d-----w- c:\arquivos de programas\Sony

2010-12-01 12:07:38 -------- d-----w- c:\windows\system32\URTTEMP

2010-11-30 22:20:22 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-11-30 22:20:12 -------- d-----w- c:\arquivos de programas\DAEMON Tools Lite

2010-11-30 22:19:55 -------- d-----w- c:\docume~1\daniel\dadosd~1\DAEMON Tools Lite

2010-11-30 22:19:53 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\DAEMON Tools Lite

2010-11-30 21:45:47 -------- d-----w- c:\docume~1\daniel\config~1\dadosd~1\WinAVI

2010-11-30 21:45:23 -------- d-----w- c:\windows\WinAVI Video Converter 9.0

2010-11-30 21:45:23 -------- d-----w- c:\arquivos de programas\WinAVI Video Converter 9.0

2010-11-29 11:28:03 -------- d-----w- c:\arquivos de programas\Ares

2010-11-27 19:59:44 -------- d-----w- c:\arquivos de programas\arquivos comuns\Adobe Systems Shared

2010-11-27 19:59:06 20016 ------w- c:\windows\system32\drivers\pxhelp20.sys

2010-11-27 17:47:31 -------- d-----w- C:\videos_paula

2010-11-24 16:37:38 -------- d-----w- c:\docume~1\alluse~1\dadosd~1\vsosdk

2010-11-24 16:02:01 87608 ----a-w- c:\docume~1\daniel\dadosd~1\inst.exe

2010-11-24 16:02:01 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys

2010-11-24 16:02:01 47360 ----a-w- c:\docume~1\daniel\dadosd~1\pcouffin.sys

2010-11-24 16:01:56 65602 ----a-w- c:\windows\system32\cook3260.dll

2010-11-24 16:01:56 217127 ----a-w- c:\windows\system32\drv43260.dll

2010-11-24 16:01:56 208935 ----a-w- c:\windows\system32\drv33260.dll

2010-11-24 16:01:56 176165 ----a-w- c:\windows\system32\drv23260.dll

2010-11-24 16:01:54 -------- d-----w- c:\arquivos de programas\VSO

2010-11-19 11:47:28 -------- d-----w- c:\docume~1\daniel\dadosd~1\PriceGong

 

==================== Find3M ====================

 

2010-11-01 20:05:29 196608 ----a-w- c:\windows\system32\ssleay32.dll

2010-11-01 20:05:29 1040384 ----a-w- c:\windows\system32\libeay32.dll

2010-09-30 10:47:26 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll

2010-09-30 10:47:25 53632 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\LMIproc.dll

2010-09-30 10:47:24 87424 ----a-w- c:\windows\system32\LMIinit.dll

2010-09-30 10:47:24 29568 ----a-w- c:\windows\system32\LMIport.dll

2004-03-11 16:27:22 40960 ----a-w- c:\arquivos de programas\Uninstall_CDS.exe

 

============= FINISH: 9:36:56,31 ===============

 

 

ATTACH

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

 

DDS (Ver_10-12-12.02)

 

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 28/9/2001 12:42:24

System Uptime: 14/12/2010 09:13:41 (0 hours ago)

 

Motherboard: ASUSTeK Computer INC. | | M2N-MX SE Plus

Processor: AMD Athlon 64 X2 Dual Core Processor 5200+ | AM2 | 2712/200mhz

 

==== Disk Partitions =========================

 

A: is Removable

C: is FIXED (NTFS) - 149 GiB total, 99,357 GiB free.

D: is FIXED (NTFS) - 233 GiB total, 103,789 GiB free.

E: is CDROM ()

F: is CDROM ()

G: is CDROM ()

H: is Removable

 

==== Disabled Device Manager Items =============

 

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: Controlador de vídeo de multimídia

Device ID: PCI\VEN_109E&DEV_036E&SUBSYS_40111554&REV_11\4&25700A26&0&3020

Manufacturer:

Name: Controlador de vídeo de multimídia

PNP Device ID: PCI\VEN_109E&DEV_036E&SUBSYS_40111554&REV_11\4&25700A26&0&3020

Service:

 

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: Controlador de multimídia

Device ID: PCI\VEN_109E&DEV_0878&SUBSYS_40111554&REV_11\4&25700A26&0&3120

Manufacturer:

Name: Controlador de multimídia

PNP Device ID: PCI\VEN_109E&DEV_0878&SUBSYS_40111554&REV_11\4&25700A26&0&3120

Service:

 

==== System Restore Points ===================

 

RP151: 10/9/2010 16:29:53 - Ponto de verificação do sistema

RP152: 11/9/2010 18:05:08 - Installed Java 6 Update 21

RP153: 13/9/2010 14:50:04 - Ponto de verificação do sistema

RP154: 14/9/2010 14:57:34 - Ponto de verificação do sistema

RP155: 16/9/2010 10:33:45 - Ponto de verificação do sistema

RP156: 17/9/2010 12:34:32 - Ponto de verificação do sistema

RP157: 20/9/2010 08:29:16 - Avg Update

RP158: 20/9/2010 08:30:34 - Avg Update

RP159: 21/9/2010 09:26:03 - Ponto de verificação do sistema

RP160: 22/9/2010 09:57:17 - Ponto de verificação do sistema

RP161: 30/9/2010 10:43:18 - Ponto de verificação do sistema

RP162: 30/9/2010 10:52:06 - Avg Update

RP163: 1/10/2010 15:28:42 - Driver de impressão LogMeIn Printer Driver instalado

RP164: 3/10/2010 12:29:44 - Ponto de verificação do sistema

RP165: 4/10/2010 14:55:31 - Ponto de verificação do sistema

RP166: 5/10/2010 17:06:33 - Ponto de verificação do sistema

RP167: 6/10/2010 17:44:26 - Ponto de verificação do sistema

RP168: 7/10/2010 18:41:43 - Ponto de verificação do sistema

RP169: 8/10/2010 09:15:19 - Avg Update

RP170: 9/10/2010 10:59:36 - Ponto de verificação do sistema

RP171: 12/10/2010 14:17:49 - Ponto de verificação do sistema

RP172: 13/10/2010 14:34:31 - Ponto de verificação do sistema

RP173: 14/10/2010 18:52:27 - Ponto de verificação do sistema

RP174: 15/10/2010 18:54:40 - Ponto de verificação do sistema

RP175: 18/10/2010 21:06:45 - Ponto de verificação do sistema

RP176: 20/10/2010 13:29:57 - Ponto de verificação do sistema

RP177: 21/10/2010 14:13:56 - Ponto de verificação do sistema

RP178: 22/10/2010 15:26:08 - Ponto de verificação do sistema

RP179: 24/10/2010 17:09:17 - Ponto de verificação do sistema

RP180: 25/10/2010 17:33:17 - Ponto de verificação do sistema

RP181: 26/10/2010 10:42:31 - Avg Update

RP182: 27/10/2010 14:04:42 - Ponto de verificação do sistema

RP183: 28/10/2010 14:08:14 - Ponto de verificação do sistema

RP184: 29/10/2010 09:48:20 - Installed Java 6 Update 22

RP185: 30/10/2010 13:17:19 - Ponto de verificação do sistema

RP186: 31/10/2010 13:20:39 - Ponto de verificação do sistema

RP187: 1/11/2010 18:53:57 - Ponto de verificação do sistema

RP188: 3/11/2010 16:42:12 - Driver de impressão Samsung ML-2010 Series instalado

RP189: 3/11/2010 16:59:00 - Removido Ponto de Restauração do InstallShield

RP190: 3/11/2010 17:00:51 - Removido Google Earth.

RP191: 3/11/2010 17:01:34 - Removed Ghostscript GPL 8.64 (Msi Setup).

RP192: 3/11/2010 18:13:24 - Driver de impressão Samsung ML-2010 Series instalado

RP193: 5/11/2010 13:35:27 - Ponto de verificação do sistema

RP194: 7/11/2010 12:51:22 - Ponto de verificação do sistema

RP195: 8/11/2010 16:21:51 - Ponto de verificação do sistema

RP196: 9/11/2010 19:26:39 - Ponto de verificação do sistema

RP197: 10/11/2010 09:42:28 - Avg Update

RP198: 10/11/2010 09:43:56 - Avg Update

RP199: 11/11/2010 09:53:06 - Ponto de verificação do sistema

RP200: 16/11/2010 11:01:50 - Ponto de verificação do sistema

RP201: 17/11/2010 11:47:40 - Ponto de verificação do sistema

RP202: 18/11/2010 15:09:00 - Ponto de verificação do sistema

RP203: 20/11/2010 12:50:35 - Ponto de verificação do sistema

RP204: 22/11/2010 10:51:30 - Ponto de verificação do sistema

RP205: 23/11/2010 11:09:13 - Ponto de verificação do sistema

RP206: 24/11/2010 19:36:55 - Ponto de verificação do sistema

RP207: 25/11/2010 08:01:05 - Avg Update

RP208: 25/11/2010 08:02:29 - Avg Update

RP209: 26/11/2010 11:25:05 - Ponto de verificação do sistema

RP210: 27/11/2010 16:22:35 - Ponto de verificação do sistema

RP211: 27/11/2010 17:59:04 - Installed Adobe Premiere Pro 2.0

RP212: 28/11/2010 20:08:34 - Ponto de verificação do sistema

RP213: 29/11/2010 20:29:21 - Ponto de verificação do sistema

RP214: 30/11/2010 20:20:22 - SPTD setup V1.62

RP215: 1/12/2010 10:07:24 - Installed Microsoft .NET Framework 1.1

RP216: 1/12/2010 16:31:20 - Instalado Microsoft Visual C++ 2005 Redistributable

RP217: 1/12/2010 16:31:54 - Installed Sound Forge Pro 10.0

RP218: 2/12/2010 18:51:53 - Ponto de verificação do sistema

RP219: 4/12/2010 15:35:59 - Ponto de verificação do sistema

RP220: 5/12/2010 16:31:47 - Ponto de verificação do sistema

RP221: 6/12/2010 16:38:57 - Ponto de verificação do sistema

RP222: 7/12/2010 19:18:59 - Ponto de verificação do sistema

RP223: 8/12/2010 15:30:52 - Installed The Sims 3

RP224: 8/12/2010 15:33:45 - Installed The Sims 3

RP225: 11/12/2010 12:24:13 - Removed The Sims 3

RP226: 11/12/2010 14:18:41 - Instalado The Sims 3

RP227: 11/12/2010 15:30:06 - Instalado The Sims 3

RP228: 14/12/2010 08:53:58 - Removed AVG 9.0

RP229: 14/12/2010 08:54:35 - Removed AVG 9.0

 

==== Installed Programs ======================

 

Add or Remove Adobe Creative Suite 3 Design Premium

Adobe Anchor Service CS3

Adobe Asset Services CS3

Adobe Bridge 1.0

Adobe Bridge CS3

Adobe Bridge Start Meeting

Adobe BridgeTalk Plugin CS3

Adobe Camera Raw 4.0

Adobe CMaps

Adobe Color - Photoshop Specific

Adobe Color Common Settings

Adobe Color EU Extra Settings

Adobe Color JA Extra Settings

Adobe Color NA Recommended Settings

Adobe Common File Installer

Adobe Creative Suite 3 Design Premium

Adobe Default Language CS3

Adobe Device Central CS3

Adobe Dreamweaver CS3

Adobe ExtendScript Toolkit 2

Adobe Extension Manager CS3

Adobe Flash CS3

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Flash Player 9 ActiveX

Adobe Fonts All

Adobe Help Center 2.0

Adobe Help Viewer CS3

Adobe InDesign CS3 Icon Handler

Adobe Linguistics CS3

Adobe MotionPicture Color Files

Adobe PDF Library Files

Adobe Photoshop CS3

Adobe Premiere Pro 2.0

Adobe Reader 6.0

Adobe Setup

Adobe SING CS3

Adobe Stock Photos 1.0

Adobe Stock Photos CS3

Adobe Type Support

Adobe Update Manager CS3

Adobe Version Cue CS3 Client

Adobe WAS CS3

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS3

AHV content for Acrobat and Flash

Ares 2.1.7

Assistente de Conexão do Windows Live

ATI - Utilitário de desinstalação de software

ATI AVIVO Codecs

ATI Catalyst Control Center

ATI Display Driver

ATI Parental Control & Encoder

AVG Free 9.0

BitTorrent

Borland Delphi 7

Camtasia Studio 6

Catalyst Control Center - Branding

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Common

Catalyst Control Center HydraVision Full

Catalyst Control Center Localization All

ccc-core-preinstall

ccc-core-static

ccc-utility

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Corel Graphics - Windows Shell Extension

CorelDRAW Graphics Suite X5

CorelDRAW Graphics Suite X5 - BR

CorelDRAW Graphics Suite X5 - Capture

CorelDRAW Graphics Suite X5 - Common

CorelDRAW Graphics Suite X5 - Connect

CorelDRAW Graphics Suite X5 - Custom Data

CorelDRAW Graphics Suite X5 - Draw

CorelDRAW Graphics Suite X5 - Filters

CorelDRAW Graphics Suite X5 - FontNav

CorelDRAW Graphics Suite X5 - IPM

CorelDRAW Graphics Suite X5 - PHOTO-PAINT

CorelDRAW Graphics Suite X5 - Photozoom Plugin

CorelDRAW Graphics Suite X5 - Redist

CorelDRAW Graphics Suite X5 - Setup Files

CorelDRAW Graphics Suite X5 - VBA

CorelDRAW Graphics Suite X5 - VideoBrowser

CorelDRAW Graphics Suite X5 - VSTA

CorelDRAW Graphics Suite X5 - WT

CorelDRAW® Graphics Suite X5

Doro 1.38

DVD Decrypter (Remove Only)

DVD Shrink 3.2

DVD Solution

EA Download Manager

Ferramenta de Carregamento do Windows Live

Google Update Helper

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)

Hotfix for Windows XP (KB915865)

Hotfix for Windows XP (KB954550-v5)

Hotfix para Windows XP (KB942288-v3)

IcoFX 1.6

IrfanView (remove only)

Java Auto Updater

Java 6 Update 22

LogMeIn

Macromedia Fireworks 8

Messenger Plus! Live

Microsoft .NET Framework 1.1

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PTB

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PTB

Microsoft .NET Framework 3.5 Language Pack SP1 - ptb

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Office Professional Edição 2003

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual Studio Tools for Applications 2.0 - ENU

Microsoft Visual Studio Tools for Applications 2.0 Runtime

Microsoft Web Publishing Wizard 1.53

Microsoft WSE 3.0 Runtime

Mozilla Firefox (3.6.13)

MSI to redistribute MS VS2005 CRT libraries

MSVCRT

MSXML 6.0 Parser

Multimedia Launcher

Nero OEM

NVIDIA Drivers

NVIDIA ForceWare Network Access Manager

Pacote de Compatibilidade para o sistema Office 2007

Pacote de Driver do Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)

Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB

PDF Settings

PowerDVD

Real Alternative 2.0.2

Realtek High Definition Audio Driver

Samsung SCX-4200 Series

Segoe UI

Skins

Skype Toolbars

Skype™ 4.2

SmarThru 4

SMPlayer 0.6.4

Sound Forge Pro 10.0

The Sims™ 3

UltraVNC 1.0.4 RC8

Uninstall 1.0.0.1

Uninstall Crystal FTP Pro

UsbFix By El Desaparecido & C_XX

VDownloader 2.10.509.2

Visual Basic for Applications ® Core

Visual Basic for Applications ® Core - English

Visual Basic for Applications ® Core - Portuguese (Brazil)

WebFldrs XP

WinAVI Video Converter 9.0

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

WinRAR archiver

XML Paper Specification Shared Components Language Pack 1.0

 

==== End Of File ===========================

 

 

Cara... poxaa!! agora minha PenDrive voltou ao normal1!!! MUITO OBRIGADOO!!! :joia: :joia:

 

só uma dúvida!!!

 

esse pangaré que tava atrapalhando tudo, era só um malware no pendrive ou ele fica no comutador também?

 

obrigado!!! :clap: :clap: :clap: :clap:

 

PS.: Ahh... só 1 coisa, eu percebi agora... é que nenhuma PenDrive agora desconecta mais... quando clico ali perto do reloginho (no Tray) pra desconectar o dispositivo USB, fala q está sendo utilizado...

 

tentei reiniciar opc e só conectar e depois desconectar a PenDrive.. mas dá sempre o msm erro...

 

será que esse pangaré ainda está no computador ou na pen??? (porém as pastas estão abrindo normal... pedi pra mostrar arquivo oculto, e não tem nada, até a pasta Recycled sumiu)

 

 

aaahhhh... e quando eu marco pra mostrar arquivos ocultos... ele mostrae depois ele automaticamente volta na opção esconder arquivos ocultos... 0o'''

[Renato Utsch 24]

Olá!

 

Seu computador estava infectado, e o backup do seu pendrive que estava no seu computador também. Você ainda está infectado.

 

 

<< 1 >>

 

Delete o ComboFix.exe de seu desktop e acesse a pasta C:\QooBox. Poste todos os logs (arquivos .txt ou .log) que estiverem nesse diretório.

 

 

<< 2 >>

 

Delete o diretório C:\QooBox e siga o tutorial abaixo (se não conseguir deletar, só me avise, ok?):

 

 

 

Por favor, siga o tutorial no link abaixo:

 

#### Como usar o ComboFix ####

 

Sugiro que imprima as instruções abaixo pois não poderá lê-las enquanto utiliza a ferramenta.

 

• Siga o tutorial e execute o ComboFix.
  
• Quando a ferramenta terminar de rodar, gerará um log (o arquivo C:\ComboFix.txt). Copie e cole o conteúdo desse arquivo na sua proxima resposta.

 

NÃO utilize a ferramenta por conta própria. É uma ferramenta poderosa criada pra lidar com infecções sofisticadas e caso não a utilize corretamente poderá danificar o seu computador.

 

• Existem vários malwares que impedem a execução correta da ferramenta e com isso danificar gravemente o computador. Analistas habilitados a utilizar o ComboFix conhecem esses casos e sabem lidar com estas situações.
  
• De forma alguma saia do ComboFix usando o "X" do programa. Caso queira sair, tecle "N".
  
• Muitos dos Analistas não respondem a topicos em que vejam que o ComboFix foi utilizado sem supervisão.
  
• Existem varias ferramentas anti-malware generalistas em que os autores ao elaborarem a programação das mesmas, estão pensando nos usuários finais e para serem usadas sem supervisão. O Combofix não é uma ferramenta desse tipo, e assim sendo e até por respeito ao autor da ferramenta, não utilize sem supervisão.

 

 

 

Abraços :D

[Marostegan 0]

bom dia!!

 

fiz o que me recomendou, com o ComboFix... será que meu PC está limpo agora?

 

segue abaixo meu log

 

 

ComboFix 10-12-14.05 - Daniel 15/12/2010 9:29.1.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2047.1594 [GMT -2:00]

Executando de: c:\documents and settings\Daniel\Desktop\ComboFix.exe

.

 

((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\arquivos de programas\TimeSink

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Done.cdb

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Done.idx

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Done1.cdb

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Done1.idx

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Pending.cdb

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Pending.idx

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Pending1.cdb

c:\arquivos de programas\TimeSink\AdGateway\Profiles\CuteFTP\Daniel\GlobalSCAPE\Pending1.idx

c:\arquivos de programas\TimeSink\AdGateway\Users\Daniel\Sched.cdb

c:\arquivos de programas\TimeSink\AdGateway\Users\Daniel\Sched.idx

c:\arquivos de programas\TimeSink\AdGateway\Users\Daniel\Sched1.cdb

c:\arquivos de programas\TimeSink\AdGateway\Users\Daniel\Sched1.idx

c:\documents and settings\Daniel\Dados de aplicativos\inst.exe

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\1.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\a.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\b.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\c.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\d.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\e.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\f.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\g.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\h.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\i.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\J.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\k.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\l.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\m.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\mru.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\n.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\o.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\p.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\q.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\r.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\s.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\t.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\u.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\v.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\w.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\x.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\y.xml

c:\documents and settings\Daniel\Dados de aplicativos\PriceGong\Data\z.xml

c:\windows\system32\issas.exe

c:\windows\system32\libmysql41.dll

 

.

(((((((((((((((( Arquivos/Ficheiros criados de 2010-11-15 to 2010-12-15 ))))))))))))))))))))))))))))

.

 

2010-12-14 17:21 . 2010-12-14 17:21 -------- d-----w- C:\fotos paula

2010-12-14 11:21 . 2010-12-14 21:46 -------- d-----w- C:\UsbFix

2010-12-14 10:56 . 2010-12-14 10:56 -------- d-----w- c:\documents and settings\Administrador

2010-12-13 22:41 . 2010-12-13 22:41 -------- d-----w- c:\documents and settings\Daniel\DoctorWeb

2010-12-13 22:07 . 2010-12-13 22:07 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Malwarebytes

2010-12-13 22:07 . 2010-12-13 22:07 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Malwarebytes

2010-12-13 22:07 . 2010-12-13 22:39 -------- d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware

2010-12-11 17:30 . 2010-12-11 17:30 -------- d-----w- c:\arquivos de programas\Electronic Arts

2010-12-08 20:28 . 2010-12-08 22:49 -------- d-----w- c:\arquivos de programas\7-Zip

2010-12-08 17:51 . 2010-12-08 17:51 -------- d-----w- C:\ProgramData

2010-12-08 17:51 . 2010-12-08 17:51 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Electronic Arts

2010-12-08 17:43 . 2008-09-04 20:11 447752 ----a-r- c:\windows\system32\vp6vfw.dll

2010-12-08 17:43 . 2010-12-08 17:43 -------- d-----w- c:\arquivos de programas\Microsoft WSE

2010-12-08 17:42 . 2006-09-28 18:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll

2010-12-08 17:42 . 2010-12-08 17:42 -------- d-----w- c:\windows\Logs

2010-12-08 16:51 . 2010-12-08 16:51 -------- d--h--w- c:\windows\system32issas

2010-12-08 12:07 . 2010-12-08 12:07 83765096 ----a-w- c:\arquivos de programas\Arquivos comuns\Windows Live\.cache\wlc119.tmp

2010-12-01 18:48 . 2010-12-01 18:48 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Publish Providers

2010-12-01 18:34 . 2010-12-01 18:48 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Sony

2010-12-01 18:34 . 2010-12-01 18:34 -------- d-----w- c:\documents and settings\Daniel\Configurações locais\Dados de aplicativos\Sony

2010-12-01 18:32 . 2010-12-01 18:32 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Sony

2010-12-01 18:31 . 2010-12-01 18:31 -------- d-----w- c:\arquivos de programas\Sony

2010-12-01 12:07 . 2010-12-01 12:07 -------- d-----w- c:\windows\system32\URTTEMP

2010-11-30 22:20 . 2010-11-30 22:20 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-11-30 22:20 . 2010-11-30 22:20 -------- d-----w- c:\arquivos de programas\DAEMON Tools Lite

2010-11-30 22:19 . 2010-12-01 12:06 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\DAEMON Tools Lite

2010-11-30 22:19 . 2010-11-30 22:19 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\DAEMON Tools Lite

2010-11-30 21:45 . 2010-11-30 21:45 -------- d-----w- c:\documents and settings\Daniel\Configurações locais\Dados de aplicativos\WinAVI

2010-11-30 21:45 . 2010-11-30 21:45 -------- d-----w- c:\arquivos de programas\WinAVI Video Converter 9.0

2010-11-30 21:45 . 2010-11-30 21:45 -------- d-----w- c:\windows\WinAVI Video Converter 9.0

2010-11-29 11:28 . 2010-11-29 11:28 -------- d-----w- c:\arquivos de programas\Ares

2010-11-27 19:59 . 2010-11-27 19:59 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Adobe Systems

2010-11-27 19:59 . 2010-11-27 19:59 -------- d-----w- c:\arquivos de programas\Arquivos comuns\Adobe Systems Shared

2010-11-27 19:59 . 2010-11-27 19:58 20016 ------w- c:\windows\system32\drivers\pxhelp20.sys

2010-11-27 17:47 . 2010-11-30 18:32 -------- d-----w- C:\videos_paula

2010-11-24 16:37 . 2010-11-24 16:37 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\vsosdk

2010-11-24 16:02 . 2010-11-24 19:21 47360 ----a-w- c:\documents and settings\Daniel\Dados de aplicativos\pcouffin.sys

2010-11-24 16:02 . 2010-11-24 16:02 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys

2010-11-24 16:02 . 2010-11-24 19:21 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Vso

2010-11-24 16:01 . 2007-03-18 23:37 65602 ----a-w- c:\windows\system32\cook3260.dll

2010-11-24 16:01 . 2006-09-29 15:26 176165 ----a-w- c:\windows\system32\drv23260.dll

2010-11-24 16:01 . 2006-09-29 15:25 208935 ----a-w- c:\windows\system32\drv33260.dll

2010-11-24 16:01 . 2006-09-29 15:24 217127 ----a-w- c:\windows\system32\drv43260.dll

2010-11-24 16:01 . 2010-11-24 19:21 -------- d-----w- c:\arquivos de programas\VSO

 

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-11-01 20:05 . 2010-11-01 20:05 196608 ----a-w- c:\windows\system32\ssleay32.dll

2010-11-01 20:05 . 2010-11-01 20:05 1040384 ----a-w- c:\windows\system32\libeay32.dll

2010-09-30 10:47 . 2010-08-03 14:59 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll

2010-09-30 10:47 . 2010-08-03 14:59 53632 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\LMIproc.dll

2010-09-30 10:47 . 2010-08-03 14:59 29568 ----a-w- c:\windows\system32\LMIport.dll

2010-09-30 10:47 . 2010-08-03 14:59 87424 ----a-w- c:\windows\system32\LMIinit.dll

2004-03-11 16:27 . 2001-09-28 16:43 40960 ----a-w- c:\arquivos de programas\Uninstall_CDS.exe

.

 

------- Sigcheck -------

 

[-] 2008-05-27 . 030DC4D48CC2B894FEE2F390D8E66AD5 . 361344 . . [5.1.2600.5512] . . c:\windows\system32\drivers\tcpip.sys

 

[-] 2008-05-27 . D4C5FC8EA6D45FCFA154EB45D856E2F6 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por defeito não são mostradas.

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ares"="c:\arquivos de programas\Ares\Ares.exe" [2010-10-27 1015808]

"DAEMON Tools Lite"="c:\arquivos de programas\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\arquivos de programas\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]

"RemoteControl"="c:\arquivos de programas\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" [2003-12-08 32768]

"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]

"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]

"SkyTel"="SkyTel.EXE" [2007-06-15 1826816]

"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2008-02-12 536576]

"LogMeIn GUI"="c:\arquivos de programas\LogMeIn\x86\LogMeInSystray.exe" [2010-01-27 63048]

"SunJavaUpdateSched"="c:\arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" [2010-05-14 248552]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"nltide_2"="shell32" [X]

"nltide_3"="advpack.dll" [2008-05-27 123904]

 

c:\documents and settings\Daniel\Menu Iniciar\Programas\Inicializar\

Adobe Gamma.lnk - c:\arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]

2010-09-30 10:47 87424 ----a-w- c:\windows\system32\LMIinit.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"LMIGuardianSvc"=2 (0x2)

"gupdate"=2 (0x2)

"ForcewareWebInterface"=2 (0x2)

"FLEXnet Licensing Service"=3 (0x3)

"Bonjour Service"=2 (0x2)

"avg9wd"=2 (0x2)

"avg9emc"=2 (0x2)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Arquivos de programas\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=

"c:\\Arquivos de programas\\Bonjour\\mDNSResponder.exe"=

"c:\\Arquivos de programas\\UltraVNC\\vncviewer.exe"=

"c:\\Arquivos de programas\\Skype\\Plugin Manager\\skypePM.exe"=

"c:\\Arquivos de programas\\Ares\\Ares.exe"=

"c:\\Arquivos de programas\\Mozilla Firefox\\firefox.exe"=

"c:\\Arquivos de programas\\BitTorrent\\BitTorrent.exe"=

"c:\\Arquivos de programas\\Skype\\Phone\\Skype.exe"=

"c:\\Arquivos de programas\\Windows Live\\Messenger\\msnmsgr.exe"=

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"5900:TCP"= 5900:TCP:vnc5900

"5800:TCP"= 5800:TCP:vnc5800

 

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\LogMeIn\x86\rainfo.sys [27/1/2010 13:22 12856]

S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]

S4 gupdate;Google Update Service (gupdate);c:\arquivos de programas\Google\Update\GoogleUpdate.exe [6/9/2010 19:11 136176]

S4 LMIGuardianSvc;LMIGuardianSvc;c:\arquivos de programas\LogMeIn\x86\LMIGuardianSvc.exe [1/10/2010 16:27 374152]

S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [30/11/2010 20:20 691696]

.

Conteúdo da pasta 'Tarefas Agendadas'

 

2010-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-09-06 21:11]

 

2010-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-09-06 21:11]

.

.

------- Scan Suplementar -------

.

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

FF - ProfilePath - c:\documents and settings\Daniel\Dados de aplicativos\Mozilla\Firefox\Profiles\d1gjq8s5.default\

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://mystart.hiyo.com/?loc=ff_address&search=

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\arquivos de programas\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Java Quick Starter: jqs@sun.com - c:\arquivos de programas\Java\jre6\lib\deploy\jqs\ff

FF - Ext: Módulo de Segurança - Banco do Brasil: {87F8774F-B485-47E2-A755-A40A8A5E886C} - %profile%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}

FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF - Ext: LogMeIn, Inc. Remote Access Plugin: LogMeInClient@logmein.com - %profile%\extensions\LogMeInClient@logmein.com

FF - Ext: BitTorrentBar Community Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - %profile%\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}

FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

.

- - - - ORFÃOS REMOVIDOS - - - -

 

HKLM-Run-Microsoft Install Manager - c:\windows\system32\issas.exe

Notify-avgrsstarter - (no file)

AddRemove-EADM - c:\arquivos de programas\Electronic Arts\EADM\Uninstall.exe

AddRemove-Usbfix - c:\usbfix\Un-UsbFix.exe

 

 

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-12-15 09:35

Windows 5.1.2600 Service Pack 3 NTFS

 

Procurando processos ocultos ...

 

Procurando entradas auto inicializáveis ocultas ...

 

Procurando ficheiros/arquivos ocultos ...

 

Varredura completada com sucesso

arquivos/ficheiros ocultos: 0

 

**************************************************************************

.

--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------

 

- - - - - - - > 'winlogon.exe'(676)

c:\windows\system32\Ati2evxx.dll

c:\windows\system32\LMIinit.dll

c:\windows\system32\LMIRfsClientNP.dll

.

Tempo para conclusão: 2010-12-15 09:36:51

ComboFix-quarantined-files.txt 2010-12-15 11:36

 

Pré-execução: 14 pasta(s) 108.472.631.296 bytes disponíveis

Pós execução: 17 pasta(s) 110.818.455.552 bytes disponíveis

 

WindowsXP-KB310994-SP2-Pro-BootDisk-PTG.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

UnsupportedDebug="do not select this" /debug

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /usepmtimer

 

- - End Of File - - AAD31504FE289D70544B86EA802C6921

 

 

 

obrigado!!

 

PS. acabei e conectar meu pendrive no PC... ela nao abriu automaticamente e quando eu abri no meu computador, aparece todas as pastas duplicadas... uma pasta abre normal e a outra está abrindo em nova janela! será que o malware nao se foi?? 0o''''

 

passei novamente o combofix

 

 

ComboFix 10-12-14.05 - Daniel 15/12/2010 10:00:23.2.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2047.1638 [GMT -2:00]

Executando de: c:\documents and settings\Daniel\Desktop\ComboFix.exe

.

 

((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\windows\system32\issas.exe

 

.

(((((((((((((((( Arquivos/Ficheiros criados de 2010-11-15 to 2010-12-15 ))))))))))))))))))))))))))))

.

 

2010-12-14 17:21 . 2010-12-14 17:21 -------- d-----w- C:\fotos paula

2010-12-14 11:21 . 2010-12-15 11:55 -------- d-----w- C:\UsbFix

2010-12-14 10:56 . 2010-12-14 10:56 -------- d-----w- c:\documents and settings\Administrador

2010-12-13 22:41 . 2010-12-13 22:41 -------- d-----w- c:\documents and settings\Daniel\DoctorWeb

2010-12-13 22:07 . 2010-12-13 22:07 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Malwarebytes

2010-12-13 22:07 . 2010-12-13 22:07 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Malwarebytes

2010-12-13 22:07 . 2010-12-13 22:39 -------- d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware

2010-12-11 17:30 . 2010-12-11 17:30 -------- d-----w- c:\arquivos de programas\Electronic Arts

2010-12-08 20:28 . 2010-12-08 22:49 -------- d-----w- c:\arquivos de programas\7-Zip

2010-12-08 17:51 . 2010-12-08 17:51 -------- d-----w- C:\ProgramData

2010-12-08 17:51 . 2010-12-08 17:51 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Electronic Arts

2010-12-08 17:43 . 2008-09-04 20:11 447752 ----a-r- c:\windows\system32\vp6vfw.dll

2010-12-08 17:43 . 2010-12-08 17:43 -------- d-----w- c:\arquivos de programas\Microsoft WSE

2010-12-08 17:42 . 2006-09-28 18:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll

2010-12-08 17:42 . 2010-12-08 17:42 -------- d-----w- c:\windows\Logs

2010-12-08 16:51 . 2010-12-08 16:51 -------- d--h--w- c:\windows\system32issas

2010-12-08 12:07 . 2010-12-08 12:07 83765096 ----a-w- c:\arquivos de programas\Arquivos comuns\Windows Live\.cache\wlc119.tmp

2010-12-01 18:48 . 2010-12-01 18:48 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Publish Providers

2010-12-01 18:34 . 2010-12-01 18:48 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Sony

2010-12-01 18:34 . 2010-12-01 18:34 -------- d-----w- c:\documents and settings\Daniel\Configurações locais\Dados de aplicativos\Sony

2010-12-01 18:32 . 2010-12-01 18:32 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Sony

2010-12-01 18:31 . 2010-12-01 18:31 -------- d-----w- c:\arquivos de programas\Sony

2010-12-01 12:07 . 2010-12-01 12:07 -------- d-----w- c:\windows\system32\URTTEMP

2010-11-30 22:20 . 2010-11-30 22:20 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-11-30 22:20 . 2010-11-30 22:20 -------- d-----w- c:\arquivos de programas\DAEMON Tools Lite

2010-11-30 22:19 . 2010-12-01 12:06 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\DAEMON Tools Lite

2010-11-30 22:19 . 2010-11-30 22:19 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\DAEMON Tools Lite

2010-11-30 21:45 . 2010-11-30 21:45 -------- d-----w- c:\documents and settings\Daniel\Configurações locais\Dados de aplicativos\WinAVI

2010-11-30 21:45 . 2010-11-30 21:45 -------- d-----w- c:\arquivos de programas\WinAVI Video Converter 9.0

2010-11-30 21:45 . 2010-11-30 21:45 -------- d-----w- c:\windows\WinAVI Video Converter 9.0

2010-11-29 11:28 . 2010-11-29 11:28 -------- d-----w- c:\arquivos de programas\Ares

2010-11-27 19:59 . 2010-11-27 19:59 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Adobe Systems

2010-11-27 19:59 . 2010-11-27 19:59 -------- d-----w- c:\arquivos de programas\Arquivos comuns\Adobe Systems Shared

2010-11-27 19:59 . 2010-11-27 19:58 20016 ------w- c:\windows\system32\drivers\pxhelp20.sys

2010-11-27 17:47 . 2010-11-30 18:32 -------- d-----w- C:\videos_paula

2010-11-24 16:37 . 2010-11-24 16:37 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\vsosdk

2010-11-24 16:02 . 2010-11-24 19:21 47360 ----a-w- c:\documents and settings\Daniel\Dados de aplicativos\pcouffin.sys

2010-11-24 16:02 . 2010-11-24 16:02 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys

2010-11-24 16:02 . 2010-11-24 19:21 -------- d-----w- c:\documents and settings\Daniel\Dados de aplicativos\Vso

2010-11-24 16:01 . 2007-03-18 23:37 65602 ----a-w- c:\windows\system32\cook3260.dll

2010-11-24 16:01 . 2006-09-29 15:26 176165 ----a-w- c:\windows\system32\drv23260.dll

2010-11-24 16:01 . 2006-09-29 15:25 208935 ----a-w- c:\windows\system32\drv33260.dll

2010-11-24 16:01 . 2006-09-29 15:24 217127 ----a-w- c:\windows\system32\drv43260.dll

2010-11-24 16:01 . 2010-11-24 19:21 -------- d-----w- c:\arquivos de programas\VSO

 

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-12-15 11:55 . 2010-12-15 11:48 1534426383 ----a-w- C:\UsbFix_Upload_Me_SERVER.zip

2010-11-01 20:05 . 2010-11-01 20:05 196608 ----a-w- c:\windows\system32\ssleay32.dll

2010-11-01 20:05 . 2010-11-01 20:05 1040384 ----a-w- c:\windows\system32\libeay32.dll

2010-09-30 10:47 . 2010-08-03 14:59 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll

2010-09-30 10:47 . 2010-08-03 14:59 53632 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\LMIproc.dll

2010-09-30 10:47 . 2010-08-03 14:59 29568 ----a-w- c:\windows\system32\LMIport.dll

2010-09-30 10:47 . 2010-08-03 14:59 87424 ----a-w- c:\windows\system32\LMIinit.dll

2004-03-11 16:27 . 2001-09-28 16:43 40960 ----a-w- c:\arquivos de programas\Uninstall_CDS.exe

.

 

------- Sigcheck -------

 

[-] 2008-05-27 . 030DC4D48CC2B894FEE2F390D8E66AD5 . 361344 . . [5.1.2600.5512] . . c:\windows\system32\drivers\tcpip.sys

 

[-] 2008-05-27 . D4C5FC8EA6D45FCFA154EB45D856E2F6 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por defeito não são mostradas.

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ares"="c:\arquivos de programas\Ares\Ares.exe" [2010-10-27 1015808]

"DAEMON Tools Lite"="c:\arquivos de programas\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\arquivos de programas\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]

"RemoteControl"="c:\arquivos de programas\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" [2003-12-08 32768]

"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]

"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]

"SkyTel"="SkyTel.EXE" [2007-06-15 1826816]

"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2008-02-12 536576]

"LogMeIn GUI"="c:\arquivos de programas\LogMeIn\x86\LogMeInSystray.exe" [2010-01-27 63048]

"SunJavaUpdateSched"="c:\arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" [2010-05-14 248552]

"Microsoft Install Manager"="c:\windows\system32\issas.exe" [bU]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"nltide_2"="shell32" [X]

"nltide_3"="advpack.dll" [2008-05-27 123904]

 

c:\documents and settings\Daniel\Menu Iniciar\Programas\Inicializar\

Adobe Gamma.lnk - c:\arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]

2010-09-30 10:47 87424 ----a-w- c:\windows\system32\LMIinit.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"LMIGuardianSvc"=2 (0x2)

"gupdate"=2 (0x2)

"ForcewareWebInterface"=2 (0x2)

"FLEXnet Licensing Service"=3 (0x3)

"Bonjour Service"=2 (0x2)

"avg9wd"=2 (0x2)

"avg9emc"=2 (0x2)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Arquivos de programas\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=

"c:\\Arquivos de programas\\Bonjour\\mDNSResponder.exe"=

"c:\\Arquivos de programas\\UltraVNC\\vncviewer.exe"=

"c:\\Arquivos de programas\\Skype\\Plugin Manager\\skypePM.exe"=

"c:\\Arquivos de programas\\Ares\\Ares.exe"=

"c:\\Arquivos de programas\\Mozilla Firefox\\firefox.exe"=

"c:\\Arquivos de programas\\BitTorrent\\BitTorrent.exe"=

"c:\\Arquivos de programas\\Skype\\Phone\\Skype.exe"=

"c:\\Arquivos de programas\\Windows Live\\Messenger\\msnmsgr.exe"=

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"5900:TCP"= 5900:TCP:vnc5900

"5800:TCP"= 5800:TCP:vnc5800

 

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\LogMeIn\x86\rainfo.sys [27/1/2010 13:22 12856]

S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]

S4 gupdate;Google Update Service (gupdate);c:\arquivos de programas\Google\Update\GoogleUpdate.exe [6/9/2010 19:11 136176]

S4 LMIGuardianSvc;LMIGuardianSvc;c:\arquivos de programas\LogMeIn\x86\LMIGuardianSvc.exe [1/10/2010 16:27 374152]

S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [30/11/2010 20:20 691696]

.

Conteúdo da pasta 'Tarefas Agendadas'

 

2010-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-09-06 21:11]

 

2010-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-09-06 21:11]

.

.

------- Scan Suplementar -------

.

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

FF - ProfilePath - c:\documents and settings\Daniel\Dados de aplicativos\Mozilla\Firefox\Profiles\d1gjq8s5.default\

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://mystart.hiyo.com/?loc=ff_address&search=

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\arquivos de programas\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\arquivos de programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Java Quick Starter: jqs@sun.com - c:\arquivos de programas\Java\jre6\lib\deploy\jqs\ff

FF - Ext: Módulo de Segurança - Banco do Brasil: {87F8774F-B485-47E2-A755-A40A8A5E886C} - %profile%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}

FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF - Ext: LogMeIn, Inc. Remote Access Plugin: LogMeInClient@logmein.com - %profile%\extensions\LogMeInClient@logmein.com

FF - Ext: BitTorrentBar Community Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - %profile%\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}

FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

.

 

**************************************************************************

Procurando processos ocultos ...

 

Procurando entradas auto inicializáveis ocultas ...

 

Procurando ficheiros/arquivos ocultos ...

 

Varredura completada com sucesso

arquivos/ficheiros ocultos:

 

**************************************************************************

.

--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------

 

- - - - - - - > 'winlogon.exe'(676)

c:\windows\system32\Ati2evxx.dll

c:\windows\system32\LMIinit.dll

c:\windows\system32\LMIRfsClientNP.dll

.

Tempo para conclusão: 2010-12-15 10:07:18

ComboFix-quarantined-files.txt 2010-12-15 12:07

ComboFix2.txt 2010-12-15 11:36

 

Pré-execução: 15 pasta(s) 111.205.396.480 bytes disponíveis

Pós execução: 16 pasta(s) 111.197.130.752 bytes disponíveis

 

- - End Of File - - 881927B3C290AF2F55E639C1B3D0C241

[Renato Utsch 24]

Olá!

 

Por favor, siga as instruções abaixo:

 

<< 1 >>

 

Acesse o site " Jotti's malware scan "

 

• Na caixa que fica em cima (File to upload & scan);
  
• Copie e cole o(s) seguinte(s) arquivo(s) um de cada vez:
  
  • c:\arquivos de programas\Uninstall_CDS.exe

  [*]Clique no botão

  [*]O(s) arquivo(s) irá(serão) ser examinado(s) por diferentes softwares antivirus, por favor aguarde.

  [*]Copie e cole o(s) resultado(s).

 

Se o site acima estiver muito congestionado, tente num desses sites:

Alternativa 1

Alternativa 2

 

 

<< 2 >>

 

Siga o tutorial abaixo e execute o Malwarebyte's Anti-Malware. Poste o log gerado.

 

Tutorial do Malwarebyte's Anti-Malware

 

 

<< 3 >>

 

Siga o tutorial abaixo e execute o Ad-Remover. Utilize a opção Clean. Poste o log gerado.

 

Tutorial do Ad-Remover

 

 

<< 4 >>

 

Conecte todas suas mídias removíveis (PenDrives, mp3, mp4, IPod, etc) e execute novamente o USBFix, seguindo as instruções que já lhe passei. Poste o log gerado.

 

 

<< 5 >>

 

Poste um novo log do DDS.

 

 

Abraços :D

[Mário Monteiro 179]

Tópico Arquivado

 

Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado.

 

Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura.