[Resolvido] &nbspBoot com virus?

[Murilo HKLM 0]

Bom dia, ao ligar o computador já no Boot dá um erro!

O Erro é o seguinte, aparece algumas informações do computador então ai fica piscando

um negócio e não sai de lá. Às vezes então, eu ligo o PC e simplismente o erro some

ai ele inicia o Windows e coloco pra Escanear com o AVira, ele abre a janelinha do Scan

e logo depois apaga o Monitor e reinicia o computador dando um travamento no boot

novamente impedindo o ligamento do computador,

desinstalei o Avira e colokei o NOD32 também escaneei e ele quase chegando no final

o PC reinicia ocorrendo o travamento na inicialização,

eu não sei mais o que fazer, só consegui enviar essa mensagem pq não mexi no Antivirus

e além disso, tentei escanear pelo Modo de Segurança e faz a mesma coisa.

OBS: Utilizo Windows 7 Home Premium.

O que posso fazer pra acabar com o erro causado talves por um Vírus?

[Power Max 54]

:) Olá Murilo!

 

:seta: Crie uma pasta própria (como por exemplo C:\Arquivos de Programas\HijackThis).

 

Faça o download do HijackThis e no momento de salvá-lo escolha a opção de salvá-lo nesta pasta que você acabou de criar e descompacte o hijackthis.zip dentro dela.

 

Dê um duplo clique no instalador do Hijackthis > clique na opção I Accept.

 

Clique no botão: Do a system scan and save a logfile. Depois será aberta uma tela com o log, então é só selecionar este Log (Clique no menu: Editar » Selecionar Tudo), depois disso volte novamente no menu: Editar » e clique na opção: Copiar).

 

Depois disso é só voltar aqui no fórum e postar este log do Hijackthis para que ele possa ser analisado.

 

Ficamos no aguardo de sua resposta.

[Murilo HKLM 0]

Olá,

Meu PC somente tinha 512MB, achei que isso influenciaria no travamento, pois é Windows 7 Home Premium,

acrescentei mais 1GB, com totalidade de 1.5GB, o que eu esperava era de acontecer a mesma coisa, mas

até que melhorou em 4x a velocidade e não travou mais, ai, fui abrir meu game, então ele voltou a reiniciar...

O jogo há mt tempo jogava e nunca ocorreu o problema.

Agora se puderem analisar o Log e encontrar algo pode me dizer, obrigado desde já.

O log está abaixo:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 21:08:46, on 04/01/2011

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v9.00 (9.00.7930.16406)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\G.F. Informática\Desktop\HiJackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.smartwebsearch.net/index.php?from=3

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Softonic_Brasil Toolbar - {12fc3d37-2a42-4fe3-8489-81296878cba5} - C:\Program Files\Softonic_Brasil\tbSoft.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Softonic_Brasil Toolbar - {12fc3d37-2a42-4fe3-8489-81296878cba5} - C:\Program Files\Softonic_Brasil\tbSoft.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html

O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Exibir ou ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O17 - HKLM\System\CS1\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O17 - HKLM\System\CS2\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe

O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

 

--

End of file - 8004 bytes

 

 

[Power Max 54]

:seta: Siga estas dicas:

 

Tutorial do Malwarebytes Anti-Malware

 

Tutorial do Ad-Remover

 

Tutorial do Toolbar S&D

_________________________

 

:seta: Na sua próxima resposta poste o log do Malwarebytes juntamente com um novo log do Hijackthis, o log do Ad-Remover que estará em C:\Ad-Report-CLEAN[1].log, o log do Toolbar S&D que estará em C:\ToolBar SD\TB_1.txt e nos diga como está o seu PC após estes procedimentos.

 

Ficamos no aguardo.

[Murilo HKLM 0]

Antonio, eu me impressionei a quantidade de virus que o Ad-Remover colocou na Quarentena, pelo que parece aproxima-se de 40 objetos! O MalwareBytes removeu apenas 1(Malware.Trace), os resultados foram ótimos e fiz no Safe Mode(apertando F8 no BOOT), enquanto ao Toolbar S&D irei ainda fazer o Log, postarei em breve.

Desde já agrdeço.

 

LOG DO MALWAREBYTES:

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

 

Versão da Base de Dados: 5469

 

Windows 6.1.7600 (Safe Mode)

Internet Explorer 9.0.7930.16406

 

06/01/2011 12:23:51

mbam-log-2011-01-06 (12-23-51).txt

 

Tipo de Verificação: Verificação Completa (C:\|)

Objetos escaneados: 288589

Tempo decorrido: 21 minuto(s), 33 segundo(s)

 

Processos de Memória Infectados: 0

Módulos de Memória Infectados: 0

Chaves de Registro Infectadas: 0

Valores de Registro Infectados: 0

Itens de Dados no Registro Infectados: 0

Pastas Infectadas: 0

Arquivos Infectados: 1

 

Processos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Módulos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Chaves de Registro Infectadas:

(Não foram detectados ítens maliciosos)

 

Valores de Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Itens de Dados no Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Pastas Infectadas:

(Não foram detectados ítens maliciosos)

 

Arquivos Infectados:

c:\Windows\System32\secushr.dat (Malware.Trace) -> Quarantined and deleted successfully.

-------------------------------------------------------------------------------------------

 

LOG DO AD-REMOVER:

======= REPORT FROM AD-REMOVER 2.0.0.2,D | ONLY XP/VISTA/7 =======

 

Updated by TeamXscript on 03/01/11 at 14:20

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

website: http://www.teamxscript.org

 

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Launched at 12:42:56 on 06/01/2011, Safeboot mode

 

Microsoft Windows 7 Home Premium (X86)

G.F. Informática@USER (Gigabyte Technology Co., Ltd. GA-VM900M)

 

============== SEARCH ==============

 

 

 

Key found: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar

 

 

============== ADDITIONNAL SCAN ==============

 

** Internet Explorer Version [9.0.7930.16406] **

 

[HKCU\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Do404Search: 0x01000000

Enable Browser Extensions: yes

Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896

Show_ToolBar: yes

Start Page: hxxp://fr.msn.com/

Use Search Asst: no

 

[HKLM\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Delete_Temp_Files_On_Exit: yes

Enable Browser Extensions: yes

Search bar: hxxp://search.msn.com/spbasic.htm

Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Start Page: hxxp://fr.msn.com/

Use Search Asst: no

 

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

Blank: res://mshtml.dll/blank.htm

 

========================================

 

C:\Program Files\Ad-Remover\Quarantine: 43 File(s)

C:\Program Files\Ad-Remover\Backup: 16 File(s)

 

C:\Ad-Report-CLEAN[1].txt - 06/01/2011 (4615 Byte(s))

C:\Ad-Report-SCAN[1].txt - 06/01/2011 (0 Byte(s))

 

End at: 12:44:06, 06/01/2011

 

============== E.O.F ==============

 

-------------------------------------------------------------------------------

[Power Max 54]

enquanto ao Toolbar S&D irei ainda fazer o Log, postarei em breve.

Desde já agrdeço.

Ok, aí na hora em que você for postar o log do Toolbar S&D você posta também um novo log do Hijackthis juntamente com ele.

[Murilo HKLM 0]

Vim lhe informar que o Log do Tool S&D não foi possivel de realizar, fui abrir pressionei P(como dito no tutorial para lingua português)[ENTER] e depois 1(escanear) e quando teclo ENTER NOVAMENTE aparece uma tela rápida e some, talvez acho ser falta de compatibilidade, do contrário realizei um Log do Hijackthis atual que está abaixo:

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:19:16, on 06/01/2011

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v9.00 (9.00.7930.16406)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\G.F. Informática\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Softonic_Brasil Toolbar - {12fc3d37-2a42-4fe3-8489-81296878cba5} - C:\Program Files\Softonic_Brasil\tbSoft.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Softonic_Brasil Toolbar - {12fc3d37-2a42-4fe3-8489-81296878cba5} - C:\Program Files\Softonic_Brasil\tbSoft.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Exibir ou ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O17 - HKLM\System\CS1\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe

O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

 

--

End of file - 6659 bytes

 

[Power Max 54]

Vim lhe informar que o Log do Tool S&D não foi possivel de realizar

:) Ok, siga, então, esta outra dica por gentileza:

 

Tutorial do antivírus BitDefender Online

 

Após o término do escaneamento será gerado um relatório (log) que estará no seguinte local do seu computador:

C:\Windows\BDOSCAN8\bdoscan.log

 

Na sua próxima resposta poste este log do BitDefender Online juntamente com um novo log do Hijackthis e nos diga, por gentileza, como está o seu PC após seguir este procedimento.

 

Ficamos no aguardo de sua resposta.

[Murilo HKLM 0]

...Log do BitDefender

Apesar de todos os problemas causados e afetados não foi possivel

resolvê-los com êxito, o problema persiste, tenho uma hipotese de ser erro nos hardwares

ou placa-mãe, a última vez que ocorreu o problema teve um HD queimado.

Cheguei a conclusão de ser(acho) a temperatura do computador! Por outro lado não: ao abrir

programas "pesados" como MSN, IE9 ele desliga, como eu utilizo Photoshop entre outros... fica

desligando consecultivamente. Não tenho mais solução, eu mesmo tentei formatar o computador com

o CD DO WINDOWS XP se poderia me solucionar ou orientar-me de como posso formatar

corretamente, agradeço.

 

Log do BitDefender Online (não diz estar infectado!)

QuickScan Beta 32-bit v0.9.9.63

-------------------------------

Scan date: Fri Jan 07 21:45:17 2011

Machine ID: 88CC29CF

 

 

 

No infection found.

-------------------

 

 

 

Processes

---------

(verified) ESET Smart Security 1528 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

(verified) ESET Smart Security 1828 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

(verified) Google Chrome 3832 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Google Chrome 3708 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Google Chrome 3544 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Google Chrome 3888 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Google Chrome 3324 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Google Chrome 3176 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Google Chrome 3488 C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

(verified) Hamachi2 Client 576 C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe

(verified) Hamachi2 Client 1860 C:\Program Files\LogMeIn Hamachi\hamachi-2.exe

(verified) Java Platform SE Auto Updater 2 0 1520 C:\Program Files\Common Files\Java\Java Update\jusched.exe

(verified) Microsoft® CoReXT 1172 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(verified) Microsoft® CoReXT 1716 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(verified) Microsoft® Windows® Operating System 516 C:\Windows\System32\lsass.exe

(verified) Nero BackItUp 1900 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

(verified) Pesquisa do Windows® 2148 C:\Windows\System32\SearchIndexer.exe

(verified) Sistema operacional Microsoft® Windows® 1388 C:\Windows\explorer.exe

(verified) Sistema Operacional Microsoft® Windows® 384 C:\Windows\System32\csrss.exe

(verified) Sistema Operacional Microsoft® Windows® 436 C:\Windows\System32\csrss.exe

(verified) Sistema Operacional Microsoft® Windows® 1372 C:\Windows\System32\dwm.exe

(verified) Sistema Operacional Microsoft® Windows® 524 C:\Windows\System32\lsm.exe

(verified) Sistema Operacional Microsoft® Windows® 484 C:\Windows\System32\services.exe

(verified) Sistema Operacional Microsoft® Windows® 292 C:\Windows\System32\smss.exe

(verified) Sistema Operacional Microsoft® Windows® 1312 C:\Windows\System32\spoolsv.exe

(verified) Sistema Operacional Microsoft® Windows® 364 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 652 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 720 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 768 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1880 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1788 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1984 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 2180 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1364 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 2456 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 2592 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1148 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1040 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 924 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 896 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 3856 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 2312 C:\Windows\System32\svchost.exe

(verified) Sistema Operacional Microsoft® Windows® 1576 C:\Windows\System32\taskhost.exe

(verified) Sistema Operacional Microsoft® Windows® 424 C:\Windows\System32\wininit.exe

(verified) Sistema Operacional Microsoft® Windows® 532 C:\Windows\System32\winlogon.exe

 

 

Network activity

----------------

Process svchost.exe (1788) connected on port 443 (HTTP over SSL) --> a96-17-157-52.deploy.akamaitechnologies.com

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.48

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.48

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.50

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.50

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.45.139

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.45.139

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.17

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.11

Process chrome.exe (3488) connected on port 80 (HTTP) --> 74.125.229.11

Process chrome.exe (3488) connected on port 80 (HTTP) --> 91.199.104.31

Process chrome.exe (3488) connected on port 80 (HTTP) --> 91.199.104.31

Process chrome.exe (3488) connected on port 80 (HTTP) --> 66.235.143.118

Process chrome.exe (3488) connected on port 80 (HTTP) --> 69.63.189.26

Process chrome.exe (3488) connected on port 80 (HTTP) --> 72.246.64.169

Process chrome.exe (3488) connected on port 80 (HTTP) --> 72.246.64.169

Process chrome.exe (3488) connected on port 80 (HTTP) --> 66.235.143.118

Process chrome.exe (3488) connected on port 80 (HTTP) --> 66.235.143.118

 

Process wininit.exe (424) listens on ports: 49152 (RPC)

Process services.exe (484) listens on ports: 49156 (RPC)

Process lsass.exe (516) listens on ports: 49155 (RPC)

Process svchost.exe (720) listens on ports: 135 (RPC)

Process svchost.exe (768) listens on ports: 49153 (RPC)

Process svchost.exe (924) listens on ports: 49154 (RPC)

Process svchost.exe (1788) listens on ports: 49204

 

 

Autoruns and critical files

---------------------------

(unsigned) Application C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application

 

(verified) ESET Smart Security C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

(verified) Glary Utilities C:\Program Files\Glary Utilities\initialize.exe

(verified) Google Update C:\Program Files\Google\Update\GoogleUpdate.exe

(verified) GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

(verified) Java Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe

(verified) Sistema Operacional Microsoft® Windows® c:\windows\system32\userinit.exe

(verified) Windows® Internet Explorer c:\windows\system32\webcheck.dll

 

 

Browser plugins

---------------

(unsigned) Java Platform SE 6 U23 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

(unsigned) Shockwave for Director C:\Windows\system32\Adobe\Director\np32dsw.dll

 

(verified) AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll

(verified) BitDefender QuickScan C:\Users\G.F. Informática\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.63_0\npqscan.dll

(verified) BitDefender QuickScan C:\Users\G.F. Informática\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.63_0\npqslauncher.dll

(verified) Conduit Toolbar c:\program files\softonic_brasil\tbsoft.dll

(verified) Flash® Player Installer/Uninstaller C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe

(verified) Google Toolbar for Internet Explorer c:\program files\google\google toolbar\googletoolbar_32.dll

(verified) Google Update C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll

(verified) Google Update C:\Users\G.F. Informática\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll

(verified) GoogleToolbarNotifier c:\program files\google\googletoolbarnotifier\5.6.5805.1910\swg.dll

(verified) GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

(verified) HP Smart Web Printing c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll

(verified) HP Smart Web Printing c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll

(verified) HPDEXAXO C:\Windows\Downloaded Program Files\HPDEXAXO.dll

(verified) Java Platform SE 6 U23 c:\program files\java\jre6\bin\jp2ssv.dll

(verified) Microsoft® CoReXT c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll

(verified) Microsoft® CoReXT C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL

(verified) Microsoft® Windows® Operating System C:\Windows\System32\nlaapi.dll

(verified) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll

(verified) NPSWF32.dll C:\Windows\system32\Macromed\Flash\NPSWF32.dll

(verified) Picasa C:\Program Files\Google\Picasa3\npPicasa3.dll

(verified) Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll

(verified) Sistema Operacional Microsoft® Windows® C:\Windows\System32\mswsock.dll

(verified) Sistema Operacional Microsoft® Windows® C:\Windows\System32\NapiNSP.dll

(verified) Sistema Operacional Microsoft® Windows® C:\Windows\System32\pnrpnsp.dll

(verified) Symantec Security Check C:\Windows\Downloaded Program Files\rufsi.dll

(verified) Windows® Internet Explorer C:\Windows\System32\ieframe.dll

 

 

Missing files

-------------

File not found: C:\Windows\System32\appmgmts.dll

--> HKLM\System\ControlSet001\services\AppMgmt\Parameters\"ServiceDll"

 

 

Scan

----

(unsigned) MD5: d5ba9b816afef5292fe13c9a6267b6ab C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

(unsigned) MD5: 82e121e24cdec5f8bf6da931e56fdb5f C:\Program Files\FileZilla FTP Client\fzshellext.dll

(unsigned) MD5: 1dae5c46d42b02a6d5862e1482efb390 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll

(unsigned) MD5: 4909501f53da2eb6603848944c45f524 C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll

(unsigned) MD5: 99e8eef42fe2f4af29b08c3355dd7685 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll

(unsigned) MD5: 79737e0f7d25de8405cb34d4c9882253 C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL

(unsigned) MD5: ea8fcf30d2961369435c84ce3b3063f1 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

(unsigned) MD5: f02c4aaa6ac913faab0eaa74ead94d9a C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\8.0.552.224\gcswf32.dll

(unsigned) MD5: ac47b55b38d626b678897f195793ecab C:\Windows\system32\Adobe\Director\np32dsw.dll

(unsigned) MD5: 510c138564486ff926a3f773205c63d1 C:\Windows\System32\HPZinw12.dll

(unsigned) MD5: 37e5e8ffbad35605daeec3224ea0e465 C:\Windows\System32\HPZipm12.dll

(unsigned) MD5: 38ed94b1334c0f0553b58317ca1131d4 C:\Windows\System32\themeservice.dll

(unsigned) MD5: 686b224b4987c22b153fbb545fee9657 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\mfc80u.dll

 

 

No file uploaded.

 

Scan finished - communication took 5 sec

Total traffic - 0.05 MB sent, 0.14 KB recvd

Scanned 1407 files and modules - 20 seconds

 

==============================================================================

 

Log do Hijackthis:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 21:51:30, on 07/01/2011

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v9.00 (9.00.7930.16406)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Windows\system32\taskhost.exe

C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\G.F. Informática\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\G.F. Informática\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Softonic_Brasil Toolbar - {12fc3d37-2a42-4fe3-8489-81296878cba5} - C:\Program Files\Softonic_Brasil\tbSoft.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Softonic_Brasil Toolbar - {12fc3d37-2a42-4fe3-8489-81296878cba5} - C:\Program Files\Softonic_Brasil\tbSoft.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Exibir ou ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O17 - HKLM\System\CS1\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O17 - HKLM\System\CS2\Services\Tcpip\..\{87F7B320-F604-4E8C-97AD-B85CEDBAE0B8}: NameServer = 200.204.0.10 200.204.0.138

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe

O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

 

--

End of file - 6847 bytes

[Power Max 54]

:) Nada de perigoso foi detectado.

_______________________

 

Apesar de todos os problemas causados e afetados não foi possivel

resolvê-los com êxito, o problema persiste, tenho uma hipotese de ser erro nos hardwares

ou placa-mãe, a última vez que ocorreu o problema teve um HD queimado.

Cheguei a conclusão de ser(acho) a temperatura do computador! Por outro lado não: ao abrir

programas "pesados" como MSN, IE9 ele desliga, como eu utilizo Photoshop entre outros... fica

desligando consecultivamente. Não tenho mais solução, eu mesmo tentei formatar o computador com

o CD DO WINDOWS XP se poderia me solucionar ou orientar-me de como posso formatar

corretamente, agradeço.

:seta: Realmente tudo está indicando que deve ser um problema de hardware, porque em todas as análises feitas até agora nada de realmente perigoso foi encontrado. Caso queira formatar, há boas dicas sobre isto nestas matérias abaixo:

http://tecnologia.uol.com.br/especiais/ultnot/2005/06/29/ult2888u52.jhtm

http://www.babooforum.com.br/idealbb/view.asp?topicID=532099

[Murilo HKLM 0]

Antonio Vieira Sobrinho, obrigado por me acompanhar aos procedimentos e me ajudar.

Por curiosidade mexi no Yahoo! Brasil e encontrei você como um membro que já realizou

várias respostas, por muita conhecidencia encontrei você no Ranking, parabéns!

[Power Max 54]

Antonio Vieira Sobrinho, obrigado por me acompanhar aos procedimentos e me ajudar.

Por curiosidade mexi no Yahoo! Brasil e encontrei você como um membro que já realizou

várias respostas, por muita conhecidencia encontrei você no Ranking, parabéns!

:thumbsup: Obrigado pelo apoio, Murilo. Realmente a gente participa lá também há algum tempo. E depois nos diga, por gentileza, se os problemas do seu PC foram resolvidos. Tudo de bom para você.

[wings 22]

PROBLEMA RESOLVIDO

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.