Iceclaw 0 Denunciar post Postado Janeiro 15, 2011 Galera ando com problemas primeiro passei hazard shild quase terminando pc desligou do nada tento isntalar ant virus a instalação feixa do nada! tentei passar combofix ele diz .....Suspeita de virut perigoso continuar,é virut mesmo nao virus! Log hijackThis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 03:12:04, on 15/1/2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe C:\WINDOWS\system32\ctfmon.exe C:\Arquivos de programas\Skype\Phone\Skype.exe C:\Arquivos de programas\CursorXP\CursorXP.exe C:\Arquivos de programas\uTorrent\uTorrent.exe C:\Arquivos de programas\Orbitdownloader\orbitdm.exe C:\Arquivos de programas\MultiDesktop Manager\MegaScale MultiDesktop Manager.exe C:\Arquivos de programas\Styler\Styler.exe C:\Arquivos de programas\Orbitdownloader\orbitnet.exe C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe C:\Arquivos de programas\Java\jre6\bin\jqs.exe C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Asprate\Tibia Multi IP Changer\Tibia MULTI-ip changer.exe C:\WINDOWS\explorer.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Arquivos de programas\Tibia\Tibia.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\rundll32.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe C:\Downloads\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.orbitdownloader.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\system.exe O1 - Hosts: 199.187.121.151 gameguard.grandchase.com.br O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Arquivos de programas\Orbitdownloader\orbitcth.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Arquivos de programas\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Arquivos de programas\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Arquivos de programas\Styler\TB\StylerTB.dll O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Arquivos de programas\Orbitdownloader\GrabPro.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [uSB Antivirus] C:\Arquivos de programas\USB Disk Security\USBGuard.exe O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKLM\..\Run: [Hazard Shield] C:\Arquivos de programas\Hazard Shield\hzrTray.exe /run O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Arquivos de programas\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [XA5RJ9EADJ] C:\DOCUME~1\Usuario\CONFIG~1\Temp\Ys1.exe O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [skype] "C:\Arquivos de programas\Skype\\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [CursorXP] C:\Arquivos de programas\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [uTorrent] "C:\Arquivos de programas\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: MultiDesktop Manager.lnk = C:\Arquivos de programas\MultiDesktop Manager\MegaScale MultiDesktop Manager.exe O4 - Startup: Styler.lnk = ? O4 - Global Startup: Orbit.lnk = C:\Arquivos de programas\Orbitdownloader\orbitdm.exe O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: &Download by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Arquivos de programas\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Arquivos de programas\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1866D626-32FF-4DEE-A0CF-29A1C657CE7A}: NameServer = 200.204.0.10 200.204.0.138 O17 - HKLM\System\CS1\Services\Tcpip\..\{1866D626-32FF-4DEE-A0CF-29A1C657CE7A}: NameServer = 200.204.0.10 200.204.0.138 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Arquivos de programas\Arquivos comuns\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe O23 - Service: Hazard Shield real-time protection (HazardShield) - Orbitech - C:\Arquivos de programas\Hazard Shield\hzrService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle - C:\Arquivos de programas\Java\jre6\bin\jqs.exe O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing) -- End of file - 10704 bytes E outro problema de 3h em 3h o pc tem tema de windows 7 Ele fica classico e a internet trava impossibilitando reconectar Ja tive o virus blaster mais solucionei era assim de 3h em 3h travava com uma mensagem q foi autorizado reiniciar o pc em 60 seg Compartilhar este post Link para o post Compartilhar em outros sites
Power Max 54 Denunciar post Postado Janeiro 15, 2011 :) Olá Iceclaw! :seta: Para evitar que os virus voltem, desative a restauração do sistema para evitar que os problemas voltem depois, e mantenha a restauração do sistema desativada até que o problema tenha sido completamente resolvido. Para isso, vá no menu: Iniciar - Painel de Controle - Sistema - Clique na aba: Restauração do Sistema - Marque a caixinha: Desativar restauração do sistema - Clique no botão: Aplicar e no botão: Ok. ______________________ :seta: Depois disto, faça , por gentileza, o download do Norman Malware Cleaner no endereço abaixo (coloquei o nome dele como Jovem Campeão para que se algum virus tentar bloquear a execução dele possamos enganá-lo): http://www.4shared.com/file/FkoYOYgJ/jovem_campeo.html? Ao acessar este site acima, clique no botão Download now > aguarde a contagem regressiva > Clique na opção: Click here to download this file. Depois disto é só executá-lo normalmente como é ensinado no tutorial dele abaixo: Tutorial do Norman Malware Cleaner Na sua próxima resposta poste o conteúdo do log do Norman Malware Cleaner juntamente com um novo log do Hijackthis e nos diga como está o seu PC depois disto. Ficamos na espera. Compartilhar este post Link para o post Compartilhar em outros sites
Iceclaw 0 Denunciar post Postado Janeiro 16, 2011 Log do ant spyware: Norman Malware Cleaner Version 1.8.3 Copyright © 1990 - 2010, Norman ASA. Built 2011/01/08 21:59:32 Norman Scanner Engine Version: 6.06.12 Nvcbin.def Version: 6.06.00, Date: 2011/01/08 21:59:32, Variants: 8932013 Scan started: 2011/01/15 18:32:35 Running pre-scan cleanup routine: Operating System: Microsoft Windows XP Professional 5.1.2600 Service Pack 3 Logged on user: LAR\Usuario Failed to set registry value (0x00000005): HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit = "C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\system.exe" -> "C:\WINDOWS\System32\userinit.exe," Set registry value: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLS = -> "" Removed registry value: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -> DisableRegistryTools = 0x00000001 Removed registry value: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -> DisableTaskMgr = 0x00000001 Set registry value: HKLM\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify = 0x00000001 -> 0x00000000 Set registry value: HKLM\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify = 0x00000001 -> 0x00000000 Set registry value: HKLM\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify = 0x00000001 -> 0x00000000 Scanning kernel... Kernel scan complete Scanning bootsectors... Number of sectors found: 1 Number of sectors scanned: 1 Number of sectors not scanned: 0 Number of infections found: 0 Number of infections removed: 0 Total scanning time: 0s 172ms Scanning running processes and process memory... C:\WINDOWS\Explorer.EXE(1244) (C:\WINDOWS\WS2HELP.dll!0x71A60000) (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) C:\WINDOWS\Explorer.EXE(1244) (C:\WINDOWS\Wplugin.dll!0x01F20000) (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) C:\WINDOWS\system32\igfxtray.exe (Infected with W32/Sality.AQ) Failed to repair file C:\WINDOWS\system32\hkcmd.exe (Infected with W32/Sality.AQ) Failed to repair file C:\WINDOWS\system32\igfxpers.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Messenger\msmsgs.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Messenger\msmsgs.exe(720) (C:\Arquivos de programas\Messenger\WS2HELP.dll!0x71A60000) (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) C:\Arquivos de programas\Messenger\msmsgs.exe(720) (C:\WINDOWS\Wplugin.dll!0x00390000) (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) C:\Arquivos de programas\uTorrent\uTorrent.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\MultiDesktop Manager\MegaScale MultiDesktop Manager.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Documents and Settings\Usuario\Configurações locais\Temp\windyshyn.exe (Infected with W32/Suspicious!api.A) Terminated process Removed registry value: HKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> C:\DOCUME~1\Usuario\CONFIG~1\Temp\windyshyn.exe = "C:\DOCUME~1\Usuario\CONFIG~1\Temp\windyshyn.exe:*:Enabled:ipsec" Deleted file C:\Arquivos de programas\Asprate\Tibia Multi IP Changer\Tibia MULTI-ip changer.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\chrome.exe (Infected with W32/Slugin.A) Terminated process Deleted file C:\Arquivos de programas\Asprate\Tibia Multi IP Changer\Tibia MULTI-ip changer.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Tibia\Tibia.exe (Infected with W32/Sality.AQ) Failed to repair file Number of processes/threads found: 5243 Number of processes/threads scanned: 5243 Number of processes/threads not scanned: 0 Number of infected processes/threads terminated: 2 Total scanning time: 5m 41s Scanning file system... Scanning: prescan Scanning: C:\*.* C:\Arquivos de programas\Adobe\Adobe Photoshop CS2\ImageReady.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Ahead\Nero\nero.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jucheck.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE11\MSOXMLED.EXE (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Asprate\Tibia Multi IP Changer\Ip Changer Updater.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Asprate\Tibia Multi IP Changer\Tibia MULTI-ip changer.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\D'Accord Music Software\D'Accord Afinador 3.0\D'Accord Afinador 3.0 crack.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\D'Accord Music Software\D'Accord Afinador 3.0\D'Accord Afinador 3.0 crack.exe (Infected with W32/Suspicious_Gen.HEJE) Deleted file C:\Arquivos de programas\Gta SanAndreas\gta_sa.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\K-Lite Codec Pack\Media Player Classic\mplayerc.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Megacubo\components\bin\pv.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Megacubo\megacubo.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Messenger\msmsgs.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Messenger\ws2help.dll (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) C:\Arquivos de programas\Messenger Plus! Live\MPTools.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\MuEC\AntiHack.dll (Infected with W32/Obfuscated.AK!genr) Deleted file C:\Arquivos de programas\MuEC\ath.dll (Infected with W32/Agent.SFKY) Deleted file C:\Arquivos de programas\MuEC\GameGuard\dpggnt.des (Infected with W32/Suspicious_Gen.LNDB) Deleted file C:\Arquivos de programas\MuEC\jogar.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\MuEC\muec.exe (Infected with W32/Obfuscated.AK!genr) Deleted file C:\Arquivos de programas\MultiDesktop Manager\MegaScale MultiDesktop Manager.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\Nightmare\Nightmare.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Orbitdownloader\orbitdm.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Priston Tale Brasil\game.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Priston Tale Brasil\PsTale.exe (Infected with W32/Slugin.A) Removed link file: C:\Documents and Settings\Usuario\Desktop\PristonTale.lnk Removed link file: C:\Documents and Settings\Usuario\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Jogos\PristonTale.lnk Deleted file C:\Arquivos de programas\Priston Tale Brasil\psupdate.exe (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Priston Tale Brasil\psupdate.exe (Infected with W32/Slugin.A) Deleted file C:\Arquivos de programas\Priston Tale Brasil\uninstall.exe (Infected with W32/Slugin.A) Deleted file C:\Arquivos de programas\Priston Tale Brasil\XTrap\XTrap.xt (Infected with W32/Sality.AQ) Repaired file C:\Arquivos de programas\Tibia\Tibia.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\uTorrent\uTorrent.exe (Infected with W32/Sality.AQ) Failed to repair file C:\Arquivos de programas\WinRAR\Default.SFX (Infected with W32/Smalltroj.YWRV) Deleted file C:\Client_Full_DuelPT_v.1.1\Configurações.exe (Infected with W32/Sality.M) Repaired file C:\Client_Full_DuelPT_v.1.1\DuelPT 3.0.exe (Infected with W32/Sality.M) Repaired file C:\Client_Full_DuelPT_v.1.1\Field\Ricarten\svchost.exe (Infected with W32/Slugin.A) Deleted file C:\Client_Full_DuelPT_v.1.1\Game.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\All Users\Dados de aplicativos\Adobe\Reader\9.2\ARM\19398\AdobeARM.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\All Users\Dados de aplicativos\Adobe\Reader\9.2\ARM\19398\ReaderUpdater.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\All Users\Dados de aplicativos\Adobe\Reader\9.2\ARM\ARM Update\AdobeARM.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\All Users\Dados de aplicativos\Adobe\Reader\9.2\ARM\ARM Update\ReaderUpdater.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\All Users\Dados de aplicativos\COMODO\EasyVPN\$instmp\Dpinst.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Apps\2.0\OJYKY7QA.61L\EVYW316M.MEM\clic...exe_f84b370c827b5c7a_0001.0002_none_c4007a823033b006\GoogleUpdateSetup.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\ceee_broker.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\chrome_frame_helper.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\chrome_launcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/am.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ar.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/bg.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/bn.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ca.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/cs.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/da.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/de.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/el.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/en-GB.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/en-US.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/es-419.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/es.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/et.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/fa.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/fi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/fil.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/fr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/gu.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/he.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/hi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/hr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/hu.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/id.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/it.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ja.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/kn.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ko.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/lt.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/lv.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ml.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/mr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/nb.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/nl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/pl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/pt-BR.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/pt-PT.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ro.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ru.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/sk.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/sl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/sr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/sv.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/sw.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/ta.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/te.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/th.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/tr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/uk.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/vi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/zh-CN.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\chrome.7z/Chrome-bin/10.0.628.0/Locales/zh-TW.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Installer\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\am.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ar.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\bg.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\bn.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ca.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\cs.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\da.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\de.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\el.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\en-GB.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\en-US.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\es-419.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\es.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\et.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\fa.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\fi.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\fil.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\fr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\gu.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\he.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\hi.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\hr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\hu.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\id.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\it.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ja.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\kn.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ko.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\lt.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\lv.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ml.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\mr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\nb.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\nl.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\pl.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\pt-BR.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\pt-PT.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ro.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ru.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\sk.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\sl.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\sr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\sv.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\sw.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\ta.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\te.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\th.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\tr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\uk.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\vi.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\zh-CN.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.628.0\Locales\zh-TW.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\ceee_broker.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\chrome_frame_helper.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\chrome_launcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/am.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ar.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/bg.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/bn.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ca.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/cs.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/da.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/de.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/el.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/en-GB.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/en-US.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/es-419.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/es.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/et.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/fa.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/fi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/fil.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/fr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/gu.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/he.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/hi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/hr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/hu.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/it.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ja.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/kn.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ko.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/lt.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/lv.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ml.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/mr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/nb.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/nl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/pl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/pt-BR.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/pt-PT.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ro.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ru.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/sk.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/sl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/sr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/sv.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/sw.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/ta.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/te.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/th.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/tr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/uk.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/vi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/zh-CN.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\chrome.7z/Chrome-bin/10.0.634.0/Locales/zh-TW.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Installer\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\am.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ar.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\bg.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\bn.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ca.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\cs.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\da.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\de.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\el.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\en-GB.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\en-US.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\es-419.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\es.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\et.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\fa.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\fi.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\fil.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\fr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\gu.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\he.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\hi.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\hr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\hu.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\it.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ja.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\kn.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ko.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\lt.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\lv.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ml.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\mr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\nb.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\nl.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\pl.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\pt-BR.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\pt-PT.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ro.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ru.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\sk.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\sl.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\sr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\sv.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\sw.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\ta.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\te.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\th.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\tr.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\uk.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\vi.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\zh-CN.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\10.0.634.0\Locales\zh-TW.dll (Infected with W32/Genome.I!genr) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\Application\new_chrome.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Cache\f_000618/file0 (Error whilst scanning file: I/O Error (0x00220005)) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\1.2.183.39\GoogleCrashHandler.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\1.2.183.39\GoogleUpdate.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\Download\{45532922-1FC3-4C7F-9434-1A401232789C}\chrome_updater.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\Download\{7E9B8F13-0E62-49EC-9D61-9F4050E9F322}\chrome_updater.exe (Infected with W32/Sality.gen2) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\Download\{7F3BB150-B5B1-448A-AF81-6C14494E5184}\chrome_installer.exe (Infected with W32/Sality.gen2) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\Download\{BC306548-6A4C-4184-B3D2-46CDCB2DE286}\chrome_updater.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\Download\{F9895AAA-6AD5-4EA6-BD11-269045A338DD}\chrome_updater.exe (Infected with W32/Sality.gen1) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\Download\{FDC3E87B-BBD4-4D2B-8192-F0EE2E5C4D99}\chrome_updater.exe (Infected with W32/Sality.gen1) C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/am.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ar.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/bg.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/bn.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ca.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/cs.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/da.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/de.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/el.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/en-GB.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/en-US.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/es-419.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/es.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/et.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/fa.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/fi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/fil.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/fr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/gu.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/he.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/hi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/hr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/hu.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/id.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/it.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ja.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/kn.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ko.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/lt.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/lv.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ml.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/mr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/nb.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/nl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/pl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/pt-BR.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/pt-PT.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ro.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ru.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/sk.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/sl.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/sr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/sv.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/sw.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/ta.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/te.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/th.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/tr.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/uk.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/vi.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/zh-CN.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\CHROME.PACKED.7Z/chrome.7z/Chrome-bin/10.0.628.0/Locales/zh-TW.dll (Infected with W32/Genome.I!genr) C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_1A.tmp\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\CR_2B.tmp\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avadmin.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avadmin.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avconfig.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avmailc.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avmcdlg.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avmcdlg.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avnotify.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avnotify.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avscan.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avscan.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avwebgrd.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avwebgrd.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avwebloader.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avwebloader.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avwsc.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\avwsc.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\checkt.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\checkt.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\fact.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\fact.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\insthlp.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\licmgr.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\licmgr.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\presetup.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\presetup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\rscdwld.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\sched.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\sched.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\setup.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\update.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\update.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\vcredist_x86.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\vcredist_x86.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\wsctool.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\wsctool.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\xp\avshadow.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX0\xp\avshadow.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avadmin.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avadmin.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avconfig.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avmailc.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avmcdlg.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avmcdlg.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avnotify.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avnotify.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avscan.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avscan.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avwebgrd.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avwebgrd.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avwebloader.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avwebloader.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avwsc.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\avwsc.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\checkt.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\checkt.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\fact.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\fact.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\insthlp.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\licmgr.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\licmgr.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\presetup.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\presetup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\rscdwld.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\sched.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\sched.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\setup.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\update.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\update.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\vcredist_x86.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\vcredist_x86.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\wsctool.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\wsctool.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\xp\avshadow.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Configurações locais\Temp\RarSFX1\xp\avshadow.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temp\winffsh.exe (Infected with W32/Suspicious!api.A) Removed registry value: HKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> C:\DOCUME~1\Usuario\CONFIG~1\Temp\winffsh.exe = "C:\DOCUME~1\Usuario\CONFIG~1\Temp\winffsh.exe:*:Enabled:ipsec" File marked for defered cleaning (reboot required) C:\Documents and Settings\Usuario\Configurações locais\Temporary Internet Files\Content.IE5\2O11X835\E2252[1].exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temporary Internet Files\Content.IE5\94MF1SP9\UpdateUP[1].rar/Field\Ricarten\npkpg.dll (Infected with Suspicious_Gen2.BDCKP) Deleted file C:\Documents and Settings\Usuario\Configurações locais\Temporary Internet Files\Content.IE5\IZPXBSRE\pro1[1].rar/Field\Ricarten\svchost.exe (Infected with Suspicious_Gen2.BGEPD) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Desktopicon\eBayShortcuts.exe (Infected with W32/Slugin.A) Removed link file: C:\Documents and Settings\Usuario\Menu Iniciar\Mercado Livre.lnk Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Microsoft\Installer\{7A512A34-F4E8-43C4-BD80-43A022B31BF6}\MapleStory.exe1_7A512A34F4E843C4BD8043A022B31BF6.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Microsoft\Installer\{7A512A34-F4E8-43C4-BD80-43A022B31BF6}\MapleStory.exe_7A512A34F4E843C4BD8043A022B31BF6.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Microsoft\Installer\{C642ECB5-C165-4352-B359-CA6485732AB3}\NewShortcut1_C642ECB5C1654352B359CA6485732AB3.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Microsoft\Installer\{C642ECB5-C165-4352-B359-CA6485732AB3}\NewShortcut2_C642ECB5C1654352B359CA6485732AB3.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\47\70a285ef-76e8df72/Main.class (Infected with JAVA/DLoader.B) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/CustomClass.class (Infected with Java/Byteverify.AL) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/dostuff.class (Infected with Java/Byteverify.AM) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/ipwn.class (Infected with Java/Byteverify.AN) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/mosdef.class (Infected with Java/Byteverify.AO) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/SiteError.class (Infected with Java/Byteverify.AP) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/SuperPolicy.class (Infected with Java/Byteverify.AQ) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\54\694a16f6-4c265a32/naxui.ser (Infected with JAVA/Dloader.O) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\55\44342237-7b063e70/sunos/Globales.class (Infected with JAVA/Byteverify.AJ) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\55\44342237-7b063e70/sunos/Manuals.class (Infected with JAVA/Byteverify.AI) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Sun\Java\Deployment\cache\6.0\55\44342237-7b063e70/sunos/Support.class (Infected with JAVA/Byteverify.AK) Deleted file C:\Documents and Settings\Usuario\Dados de aplicativos\Wplugin.dll (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Arquivos nao utilizados\BaiakEditado\[8.60] Rook War V1.0 (Toridox).exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Arquivos nao utilizados\Originals\mtatecfg.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Arquivos nao utilizados\Yurots By Aggresor 8.6\Aggresor ots.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Arquivos nao utilizados\Yurots By Aggresor 8.6\data\actions\scripts\Quest Maker vs-0.3 (Beta Test).exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Arquivos nao utilizados\Yurots By Aggresor 8.6\Utilitários\sqlitestudio-1.1.3.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Desktop\Hacker PT- BY- Kaique\Omega Injector.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Hacker PT- BY- Kaique\samp-npc.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Hacker PT- BY- Kaique\samp-server.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\DXwnd.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\char\npc\arad\PT BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\char\tmABCD\ChasePT.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Configurações.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\DuelPT 3.0.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Field\Custom\Priston Tale BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Field\endless\SMD Unblock.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Field\Ricarten\g.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Field\Ricarten\svchost.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Field\Ricarten\xhzyzdr.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Fire Priston Tale UP\game.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Fire Priston Tale UP\image\game.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Fire Priston Tale UP\pro.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Fire Priston Tale UP\pt.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Fire Priston Tale UP\xhzyzdr.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Fire Priston Tale UP\XTrapVa.dll (Infected with Suspicious_Gen2.BSCNW) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\g.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Game.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\image\game.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\image\Sinimage\AssaEffect\UnionCore\KernelProtect.dll (Infected with W32/Suspicious_Gen2.DSSBF) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\image\Sinimage\indishop\GAME.EXE (Infected with Suspicious_Gen2.BATHA) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\image\Sinimage\skill\Archer\Button\PT BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\image\Sinimage\skill\Archer\JobTitle\PT BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Launcher FirePT UP.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\Launcher SPT.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\MonsterPK Launcher.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\MulekesPT - Launcher.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\pro.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\pstale.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\psupdate.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\psupdate.patch.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\pt.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\shadow.dll (Infected with W32/Suspicious_Gen2.DSSBF) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\uninstall.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\xhzyzdr.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Originals\Pt\XTrapVa.dll (Infected with Suspicious_Gen2.BSCNW) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\Stardock CursorXP\CursorXP 1.31 Plus-Install.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\UpdateProteCTS25\Client_Full_DuelPT_v.1.1\CPK.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\UpdateProteCTS25\Client_Full_DuelPT_v.1.1\CrazyPK.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Desktop\Lala\UpdateProteCTS25\Client_Full_DuelPT_v.1.1\Field\Ricarten\svchost.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\UpdateProteCTS25\Client_Full_DuelPT_v.1.1\g.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\UpdateProteCTS25\Client_Full_DuelPT_v.1.1\game.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Desktop\Lala\UpdateProteCTS25\Client_Full_DuelPT_v.1.1\Launcher FirePT UP.exe (Infected with W32/Sality.M) Repaired file C:\Documents and Settings\Usuario\Desktop\sqlitestudio-1.1.1.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Meus documentos\char\npc\arad\PT BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Meus documentos\Downloads\Patch Full.rar/Patch Full\CrazyPK.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Meus documentos\Downloads\Patch Full.rar/Patch Full\Game.exe (Infected with Suspicious_Gen2.AZKYY) Deleted file C:\Documents and Settings\Usuario\Meus documentos\Field\Custom\Priston Tale BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Meus documentos\Firefox Setup 3.6.7.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Meus documentos\Fotos Matheus\D_Accord_Afinador_3.0___Crack_By_RADIN.rar/D'Accord Afinador 3.0 + Crack\Crack\D'Accord Afinador 3.0 crack.exe (Infected with W32/Suspicious_Gen.HEJE) Deleted file C:\Documents and Settings\Usuario\Meus documentos\Fotos Matheus\Fotos Matheus.zip/D_Accord_Afinador_3.0___Crack_By_RADIN.rar/D'Accord Afinador 3.0 + Crack\Crack\D'Accord Afinador 3.0 crack.exe (Infected with W32/Suspicious_Gen.HEJE) Deleted file C:\Documents and Settings\Usuario\Meus documentos\image\Sinimage\AssaEffect\UnionCore\KernelProtect.dll (Infected with W32/Suspicious_Gen2.DSSBF) Deleted file C:\Documents and Settings\Usuario\Meus documentos\image\Sinimage\skill\Archer\Button\PT BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Meus documentos\image\Sinimage\skill\Archer\JobTitle\PT BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Meus documentos\MsgPlusLive-484.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Meus documentos\MsgPlusLive-484.exe (Infected with W32/Slugin.A) Deleted file C:\Documents and Settings\Usuario\Shared\limewire_turbo_free.exe (Infected with W32/Sality.AQ) Repaired file C:\Documents and Settings\Usuario\Shared\limewire_turbo_free.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\ATUALIZACAO_3.0.exe (Infected with W32/Sality.AQ) Repaired file C:\downloads\ATUALIZACAO_3.0.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\CabalPirata.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\Cabal_Online.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\ComboFix.exe (Infected with W32/Sality.AQ) Repaired file C:\downloads\HiJackThis.exe (Infected with W32/Sality.AQ) Repaired file C:\downloads\NIS09EN.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\Patch-BrPT.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\PatchCabalPirata.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\Priston Tale Brasil 4.14.7.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\sqlitestudio-2.0.3.exe (Infected with W32/Sality.AQ) Repaired file C:\downloads\sqlitestudio-2.0.3.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\SqlLite-v1.27c.exe (Infected with W32/Sality.AQ) Repaired file C:\downloads\SqlLite-v1.27c.exe (Infected with W32/Slugin.A) Deleted file C:\downloads\Update5.5.exe (Infected with W32/Slugin.A) Deleted file C:\Games\GhostMSv62\IdyllicStory.exe (Infected with W32/Slugin.A) Deleted file C:\Games\GhostMSv62\Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Games\GhostMSv62\Setup.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\ChronosPT.exe (Infected with W32/Sality.M) Repaired file C:\Games\Priston Tale Brasil\Field\forever-fall\Priston Tale BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\Field\Ricarten\Priston Tale BMP Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\Field\Ricarten\svchost.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\g.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\game.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\Launcher FirePT UP.exe (Infected with W32/Sality.M) Repaired file C:\Games\Priston Tale Brasil\PsTale.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\psupdate.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\psupdate.patch.exe (Infected with W32/Slugin.A) Deleted file C:\Games\Priston Tale Brasil\uninstall.exe (Infected with W32/Slugin.A) Deleted file C:\iccup_launcher_setup.exe (Infected with AutoRun.ANIG) Deleted file C:\Level Up! Games\Grand Chase Season 3\dxwebsetup.exe (Infected with W32/Sality.AQ) Repaired file C:\Level Up! Games\Grand Chase Season 3\dxwebsetup.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\Grand Chase Season 3\main.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\MapleStory\ASPLnchr.exe (Infected with W32/Sality.AQ) Repaired file C:\Level Up! Games\MapleStory\ASPLnchr.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\MapleStory\HShield\ahnrpt.exe (Infected with W32/Sality.AQ) Repaired file C:\Level Up! Games\MapleStory\HShield\ahnrpt.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\MapleStory\HShield\HSUpdate.exe (Infected with W32/Sality.AQ) Repaired file C:\Level Up! Games\MapleStory\HShield\HSUpdate.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\MapleStory\HShield\Update\autoup.exe (Infected with W32/Sality.AQ) Repaired file C:\Level Up! Games\MapleStory\MapleStory.exe (Infected with W32/Sality.AQ) Repaired file C:\Level Up! Games\MapleStory\Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\MapleStory\Setup.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\Perfect World\element\reportbugs\creportbugs.exe (Infected with W32/Suspicious_Gen2.BYYHD) Deleted file C:\Level Up! Games\Perfect World\element\reportbugs\pwprotector.exe (Infected with W32/Slugin.A) Deleted file C:\Level Up! Games\Perfect World\patcher\patcher.exe (Infected with W32/Sality.AQ) Repaired file C:\LinhaDefensiva\exec\download.exe (Infected with W32/Slugin.A) Deleted file C:\LinhaDefensiva\exec\md5.exe (Infected with W32/Sality.AQ) Repaired file C:\LinhaDefensiva\exec\md5.exe (Infected with W32/Slugin.A) Deleted file C:\LinhaDefensiva\exec\pv.exe (Infected with W32/Slugin.A) Deleted file C:\LinhaDefensiva\exec\unzip.exe (Infected with W32/Slugin.A) Deleted file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\PFILES\COMMON\MSSHARED\DW\DW20.EXE (Infected with W32/Sality.AQ) Repaired file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\PFILES\COMMON\MSSHARED\DW\DW20.EXE (Infected with W32/Slugin.A) Deleted file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\PFILES\COMMON\MSSHARED\DW\DWTRIG20.EXE (Infected with W32/Sality.AQ) Repaired file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\PFILES\COMMON\MSSHARED\DW\DWTRIG20.EXE (Infected with W32/Slugin.A) Deleted file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\PFILES\MSOFFICE\OFFICE11\OFFCLN.EXE (Infected with W32/Sality.AQ) Repaired file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\SETUP\OSE.EXE (Infected with W32/Sality.AQ) Repaired file C:\MSOCache\All Users\90000416-6000-11D3-8CFE-0150048383C9\FILES\SETUP\OSE.EXE (Infected with W32/Slugin.A) Deleted file C:\Nexon\MapleStory\MapleStory.exe (Infected with W32/Slugin.A) Deleted file C:\Nexon\MapleStory\Patcher.exe (Infected with W32/Slugin.A) Deleted file C:\Nexon\MapleStory\Setup.exe (Infected with W32/Slugin.A) Deleted file C:\Nexon\MapleStory\Tranquilitystory.exe (Infected with W32/Slugin.A) Removed link file: C:\Documents and Settings\Usuario\Dados de aplicativos\Microsoft\Internet Explorer\Quick Launch\Jogos\Atalho para Tranquilitystory.lnk Deleted file C:\Soldat\Soldat.exe (Infected with W32/Slugin.A) Removed registry value: HKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> C:\Soldat\Soldat.exe = "C:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl" Removed link file: C:\Documents and Settings\Usuario\Desktop\Soldat.lnk Deleted file C:\Starcraft\BNUpdate.exe (Infected with W32/Slugin.A) Deleted file C:\Starcraft\InstCC.exe (Infected with W32/Sality.AQ) Repaired file C:\Starcraft\InstCC.exe (Infected with W32/Slugin.A) Deleted file C:\Starcraft\setup.exe (Infected with W32/Slugin.A) Deleted file C:\Starcraft\StarCraft.exe (Infected with W32/Slugin.A) Deleted file C:\Starcraft\starcraft_cdkey_changer.exe (Infected with W32/Sality.AQ) Repaired file C:\Starcraft\starcraft_cdkey_changer.exe (Infected with W32/Slugin.A) Deleted file C:\Starcraft\StarEdit.exe (Infected with W32/Slugin.A) Deleted file C:\WINDOWS\$hf_mig$\KB2183461-IE8\SP3QFE\ie4uinit.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB2229593\SP3QFE\helpsvc.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB2416400-IE8\SP3QFE\ie4uinit.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB2423089\SP3QFE\wab.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB923561\SP3QFE\wordpad.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB951978\SP3QFE\cscript.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB951978\SP3QFE\wscript.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntkrnlmp.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntkrpamp.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\sc.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\wmiprvse.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB960859\SP3QFE\telnet.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB960859\SP3QFE\tlntsess.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$hf_mig$\KB979687\SP3QFE\wordpad.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$NtUninstallKB2423089$\wab.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$NtUninstallKB2443685$\tzchange.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$NtUninstallKB979687$\wordpad.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\$NtUninstallKB981997$\moviemk.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\alcwzrd.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\cadkasdeinst01e.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\HideWin.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\ie8\ie4uinit.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\ie8\iexplore.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\ie8\mshta.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\ie8updates\KB2183461-IE8\ie4uinit.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\ie8updates\KB2416400-IE8\ie4uinit.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{350C9416-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\cagicon.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\cagicon.exe (Infected with W32/Suspicious_Gen2.RPFE) Deleted file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\inficon.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\mspicons.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\mspicons.exe (Infected with W32/Suspicious_Gen2.ROIX) Deleted file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\oisicon.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\outicon.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{90110416-6000-11D3-8CFE-0150048383C9}\unbndico.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{B74D4E10-1033-0000-0000-000000000001}\BridgeCommonShortcut_B74D4E101033000000000001_1.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{B74D4E10-1033-0000-0000-000000000001}\ESLaunchShortcut_B74D4E10103300000000000000000001.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{B74D4E10-1033-0000-0000-000000000001}\NewShortcut2_B74D4E10103300000000000000000001.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\Installer\{E9787678-1033-0000-8E67-000000000001}\AppLanuchShortcut_E9787678103300008E67000000000001_1.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\IsUn0416.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\iun6002ev.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\MicCal.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\RTLCPL.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\SkyTel.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\SoundMan.exe (Infected with W32/Sality.M) Repaired file C:\WINDOWS\svchost.VIR (Infected with W32/Suspicious_Gen2.BFSWS) Deleted file C:\WINDOWS\svchost.VIR000 (Infected with W32/Suspicious_Gen2.BFSWS) Deleted file C:\WINDOWS\system32\1880847 (Infected with W32/Malware.GUJI) Deleted file C:\WINDOWS\system32\2111742 (Infected with W32/Malware.GUJI) Deleted file C:\WINDOWS\system32\5674662 (Infected with W32/Malware.GUJI) Deleted file C:\WINDOWS\system32\7028761 (Infected with W32/Malware.GUJI) Deleted file C:\WINDOWS\system32\hkcmd.exe (Infected with W32/Sality.AQ) Failed to repair file C:\WINDOWS\system32\igfxpers.exe (Infected with W32/Sality.AQ) Failed to repair file C:\WINDOWS\system32\igfxtray.exe (Infected with W32/Sality.AQ) Failed to repair file C:\WINDOWS\system32\olemdb32.dll (Infected with W32/Sality.M) Deleted file C:\WINDOWS\system32\olemdb32.VIR (Infected with W32/Sality.M) Deleted file C:\WINDOWS\system32\olemdb32.VIR000 (Infected with W32/Sality.M) Deleted file C:\WINDOWS\Wplugin.dll (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) C:\WINDOWS\ws2help.dll (Infected with W32/Slugin.A) File marked for defered cleaning (reboot required) Scanning: D:\*.* D:\Drives Placa Mae\Chipset\Bearlake\infinst_autol.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Modem\Driver\Win2000\HXFSetup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Modem\Driver\Win2003\HXFSetup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Modem\Driver\Win98se\HXFSetup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Modem\Driver\WinME\HXFSetup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Modem\Driver\WinXP\HXFSetup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Off Board\16885CAPTVWXP\setup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\ChCfg.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\MSHDQFE\Win2K3\us\kb888111srvrtm.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\MSHDQFE\Win2K_XP\us\kb888111w2ksp4.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\MSHDQFE\Win2K_XP\us\kb888111xpsp1.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\MSHDQFE\Win2K_XP\us\kb888111xpsp2.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\SetCDfmt.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\Setup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\Alcmtr.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\AlcWzrd.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\MicCal.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\RTHDCPL.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\RTLCPL.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\RtlUpd.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\SkyTel.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Som\HD\WDM\SoundMan.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\hkcmd.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igfxcfg.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igfxext.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igfxpers.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igfxsrvc.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igfxtray.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igfxzoom.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\igxpun.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Graphics\TVWSetup.exe (Infected with W32/Slugin.A) Deleted file D:\Drives Placa Mae\Video\Bearlake\Setup.exe (Infected with W32/Slugin.A) Deleted file Scanning: C:\System Volume Information\*.* Scanning: postscan Running post-scan cleanup routine: Failed to set registry value (0x00000005): HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit = "C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\system.exe" -> "C:\WINDOWS\System32\userinit.exe," Removed registry value: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -> DisableRegistryTools = 0x00000001 Removed registry value: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -> DisableTaskMgr = 0x00000001 Set registry value: HKLM\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify = 0x00000001 -> 0x00000000 Set registry value: HKLM\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify = 0x00000001 -> 0x00000000 Set registry value: HKLM\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify = 0x00000001 -> 0x00000000 Failed to locate shared service executable: C:\WINDOWS\system32\xladz.dll Removed service: twqtkzouz Number of files found: 378796 Number of archives unpacked: 1502 Number of files scanned: 378794 Number of files not scanned: 2 Number of files skipped due to exclude list: 0 Number of infected files found: 602 Number of infected files repaired/deleted: 430 Number of infections removed: 483 Total scanning time: 3h 44m 14s Log hijackthis Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:28:19, on 15/1/2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe C:\WINDOWS\system32\ctfmon.exe C:\Arquivos de programas\Messenger\msmsgs.exe C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe C:\Arquivos de programas\Skype\Phone\Skype.exe C:\Arquivos de programas\CursorXP\CursorXP.exe C:\Arquivos de programas\uTorrent\uTorrent.exe C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe C:\Arquivos de programas\Orbitdownloader\orbitdm.exe C:\Arquivos de programas\MultiDesktop Manager\MegaScale MultiDesktop Manager.exe C:\Arquivos de programas\Styler\Styler.exe C:\Arquivos de programas\Orbitdownloader\orbitnet.exe C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe C:\Arquivos de programas\Java\jre6\bin\jqs.exe C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Windows Live\Contacts\wlcomm.exe C:\Downloads\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.orbitdownloader.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\system.exe O1 - Hosts: 199.187.121.151 gameguard.grandchase.com.br O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Arquivos de programas\Orbitdownloader\orbitcth.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Arquivos de programas\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Arquivos de programas\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Arquivos de programas\Styler\TB\StylerTB.dll O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Arquivos de programas\Orbitdownloader\GrabPro.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [uSB Antivirus] C:\Arquivos de programas\USB Disk Security\USBGuard.exe O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKLM\..\Run: [Hazard Shield] C:\Arquivos de programas\Hazard Shield\hzrTray.exe /run O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Arquivos de programas\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [XA5RJ9EADJ] C:\DOCUME~1\Usuario\CONFIG~1\Temp\Ys1.exe O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Usuario\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [skype] "C:\Arquivos de programas\Skype\\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [CursorXP] C:\Arquivos de programas\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [uTorrent] "C:\Arquivos de programas\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: MultiDesktop Manager.lnk = C:\Arquivos de programas\MultiDesktop Manager\MegaScale MultiDesktop Manager.exe O4 - Startup: Styler.lnk = ? O4 - Global Startup: Orbit.lnk = C:\Arquivos de programas\Orbitdownloader\orbitdm.exe O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: &Download by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Arquivos de programas\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Arquivos de programas\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Arquivos de programas\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1866D626-32FF-4DEE-A0CF-29A1C657CE7A}: NameServer = 200.204.0.10 200.204.0.138 O17 - HKLM\System\CS1\Services\Tcpip\..\{1866D626-32FF-4DEE-A0CF-29A1C657CE7A}: NameServer = 200.204.0.10 200.204.0.138 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Arquivos de programas\Arquivos comuns\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe O23 - Service: Hazard Shield real-time protection (HazardShield) - Orbitech - C:\Arquivos de programas\Hazard Shield\hzrService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle - C:\Arquivos de programas\Java\jre6\bin\jqs.exe O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing) -- End of file - 9856 bytes Compartilhar este post Link para o post Compartilhar em outros sites
Power Max 54 Denunciar post Postado Janeiro 16, 2011 :) Vários problemas foram removidos pelo Norman Malware Cleaner. ______________________ :!: É muito importante que você desinstale os programas e jogos pirateados e/ou crackeados que estejam no seu PC, pois a enorme maioria deste tipo de programa vem com virus e malwares embutidos neles, além de normalmente conterem brechas de segurança que facilitam a invasão de seu computador. _______________________ :seta: Faça download do Dr. Web CureIt no endereço abaixo (coloquei o nome dele como Rei para que se algum virus tentar bloquear a execução dele possamos enganá-lo): http://www.4shared.com/file/WoTf4hk3/rei.html? Ao acessar este site acima, clique no botão Download now > aguarde a contagem regressiva > Clique na opção: Click here to download this file. Depois disto é só executá-lo normalmente como é ensinado no tutorial dele abaixo: Tutorial do Dr. Web CureIt Na sua próxima resposta poste o conteúdo do log do Dr. Web CureIt juntamente com um novo log do Hijackthis e nos diga como está o seu PC depois disto. Ficamos na espera. Compartilhar este post Link para o post Compartilhar em outros sites
Iceclaw 0 Denunciar post Postado Janeiro 16, 2011 Ixi deu erro q parou de funcionar =( Compartilhar este post Link para o post Compartilhar em outros sites
Power Max 54 Denunciar post Postado Janeiro 16, 2011 Ixi deu erro q parou de funcionar =( Tente fazer o escaneamento em Modo seguro (se for possível) ou se não for possível tente novamente fazer o escaneamento no modo normal e veja se é possível. Compartilhar este post Link para o post Compartilhar em outros sites
Iceclaw 0 Denunciar post Postado Janeiro 16, 2011 Ixi deu erro q parou de funcionar =( Tente fazer o escaneamento em Modo seguro (se for possível) ou se não for possível tente novamente fazer o escaneamento no modo normal e veja se é possível. Nao deu D= Compartilhar este post Link para o post Compartilhar em outros sites
Power Max 54 Denunciar post Postado Janeiro 16, 2011 Nao deu D= :seta: Faça o download do Kaspersky Virus Removal Tool no endereço abaixo (coloquei o nome dele como Principe para que se algum virus tentar bloquear a execução dele possamos enganá-lo): http://www.4shared.com/file/J5C3WccL/Principe.html? Obs: Quando acessar o site acima, clique no botão Download now > aguarde a contagem regressiva > Clique na opção: Download file now. Depois disto é só executá-lo normalmente como é ensinado no tutorial dele abaixo: Tutorial do Kaspersky Virus Removal Tool Na sua próxima resposta poste este log do Kaspersky Virus Removal Tool juntamente com um novo log do Hijackthis e nos diga como está o seu Pc depois disto. Ficamos no aguardo. Compartilhar este post Link para o post Compartilhar em outros sites
Felipe_88 0 Denunciar post Postado Fevereiro 16, 2011 Tópico Arquivado Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado. Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura. Compartilhar este post Link para o post Compartilhar em outros sites
