Wings Puxa antes de mais nada muito obrigado pelo trabalhão que vc tem em analisar e dar sugestões para nos... Parabéns pelo seu trabalho... Muito obrigado...
Ps: fiz um teste agora tentando instalar um AV e instalei o ClamWin e esta ativo... creio que se não excluimos ainda esse malware, estamos no caminho certo..
Agora os novos logs:
ComboFix 08-07-31.01 - Maquina3 2008-07-31 17:34:51.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1046.18.165 [GMT -3:00]
Executando de: C:\downloads\kombo.exe
Command switches used :: C:\Documents and Settings\Maquina3\Desktop\CFScript.txt
* Criado um novo ponto de restauro
ATENÇAO - ESTA MAQUINA NAO TEM A CONSOLE DE RECUPERAÇÃO INSTALADA !!
FILE ::
C:\sqmdata01.sqm
C:\sqmdata02.sqm
C:\sqmdata03.sqm
C:\sqmdata04.sqm
C:\sqmdata05.sqm
C:\sqmdata06.sqm
C:\sqmdata07.sqm
C:\sqmdata08.sqm
C:\sqmdata09.sqm
C:\sqmdata10.sqm
C:\sqmdata11.sqm
C:\sqmdata12.sqm
C:\sqmdata13.sqm
C:\sqmdata14.sqm
C:\sqmdata15.sqm
C:\sqmdata16.sqm
C:\sqmdata17.sqm
C:\sqmdata18.sqm
C:\sqmdata19.sqm
C:\sqmnoopt01.sqm
C:\sqmnoopt02.sqm
C:\sqmnoopt03.sqm
C:\sqmnoopt04.sqm
C:\sqmnoopt05.sqm
C:\sqmnoopt06.sqm
C:\sqmnoopt07.sqm
C:\sqmnoopt08.sqm
C:\sqmnoopt09.sqm
C:\sqmnoopt10.sqm
C:\sqmnoopt11.sqm
C:\sqmnoopt12.sqm
C:\sqmnoopt13.sqm
C:\sqmnoopt14.sqm
C:\sqmnoopt15.sqm
C:\sqmnoopt16.sqm
C:\sqmnoopt17.sqm
C:\sqmnoopt18.sqm
C:\sqmnoopt19.sqm
C:\WINDOWS\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\drivers\SROSA.SYS
.
((((((((((((((((((((((((((((((((((((( Outras Exclusäes )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
C:\sqmdata01.sqm
C:\sqmdata02.sqm
C:\sqmdata03.sqm
C:\sqmdata04.sqm
C:\sqmdata05.sqm
C:\sqmdata06.sqm
C:\sqmdata07.sqm
C:\sqmdata08.sqm
C:\sqmdata09.sqm
C:\sqmdata10.sqm
C:\sqmdata11.sqm
C:\sqmdata12.sqm
C:\sqmdata13.sqm
C:\sqmdata14.sqm
C:\sqmdata15.sqm
C:\sqmdata16.sqm
C:\sqmdata17.sqm
C:\sqmdata18.sqm
C:\sqmdata19.sqm
C:\sqmnoopt01.sqm
C:\sqmnoopt02.sqm
C:\sqmnoopt03.sqm
C:\sqmnoopt04.sqm
C:\sqmnoopt05.sqm
C:\sqmnoopt06.sqm
C:\sqmnoopt07.sqm
C:\sqmnoopt08.sqm
C:\sqmnoopt09.sqm
C:\sqmnoopt10.sqm
C:\sqmnoopt11.sqm
C:\sqmnoopt12.sqm
C:\sqmnoopt13.sqm
C:\sqmnoopt14.sqm
C:\sqmnoopt15.sqm
C:\sqmnoopt16.sqm
C:\sqmnoopt17.sqm
C:\sqmnoopt18.sqm
C:\sqmnoopt19.sqm
.
((((((((((((((((((((((( Ficheiros criados de 2008-06-28 to 2008-07-31 ))))))))))))))))))))))))))))))))
.
2008-07-31 17:23 . 2008-07-31 17:24 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\.clamwin
2008-07-31 16:31 . 2008-07-31 16:31 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Configura ções locais
2008-07-31 16:31 . 2008-07-31 16:31 <DIR> d-------- C:\Documents and Settings\Maquina3\Configurações locais
2008-07-31 16:31 . 2008-07-31 16:31 <DIR> d-------- C:\Documents and Settings\NetworkService\Configurações locais
2008-07-31 16:31 . 2008-07-31 16:31 <DIR> d-------- C:\Documents and Settings\LocalService\Configurações locais
2008-07-31 01:53 . 2008-07-31 01:53 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\Avira
2008-07-31 01:53 . 2008-07-31 01:53 <DIR> d-------- C:\Arquivos de programas\Avira
2008-07-31 01:20 . 2008-07-31 04:47 <DIR> d-------- C:\WINDOWS\BDOSCAN8
2008-07-31 00:10 . 2008-07-31 00:11 <DIR> d-------- C:\Arquivos de programas\Java
2008-07-31 00:05 . 2008-07-31 00:05 <DIR> d-------- C:\Arquivos de programas\Panda Security
2008-07-31 00:05 . 2008-06-19 17:24 28,544 --a------ C:\WINDOWS\system32\drivers\pavboot.sys
2008-07-30 22:53 . 2008-07-30 22:53 <DIR> d-------- C:\Arquivos de programas\ESET
2008-07-30 20:32 . 2008-07-30 20:32 <DIR> d-------- C:\Arquivos de programas\Trend Micro
2008-07-30 20:05 . 2008-07-31 17:28 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\Spybot - Search & Destroy
2008-07-30 20:05 . 2008-07-31 17:25 <DIR> d-------- C:\Arquivos de programas\Spybot - Search & Destroy
2008-07-30 20:04 . 2008-07-30 20:04 <DIR> d-------- C:\Documents and Settings\All Users\.clamwin
2008-07-30 20:04 . 2008-07-31 17:23 <DIR> d-------- C:\Arquivos de programas\ClamWin
2008-07-30 19:33 . 2008-07-30 19:33 <DIR> d-------- C:\Arquivos de programas\Marcos Velasco Security
2008-07-30 19:11 . 2008-07-30 19:12 1,415,658 --------- C:\mvregclean55-br.zip
2008-07-30 19:10 . 2008-07-30 19:10 450,114 --------- C:\RegSeeker.zip
2008-07-30 19:04 . 2008-07-31 15:51 218,112 --a------ C:\HijackThis.exe
2008-07-30 18:24 . 2008-07-30 19:48 81,465 --a------ C:\WINDOWS\system32\drivers\klif.cab
2008-07-30 18:23 . 2008-03-03 09:39 31,896,064 --a------ C:\kav.br.msi
2008-07-30 18:23 . 2007-09-05 13:56 2,684,884 --a------ C:\kav7.0pb.pdf
2008-07-30 18:23 . 2008-07-03 12:07 646 --a------ C:\setup.reg
2008-07-29 16:30 . 2008-07-29 16:30 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-07-29 16:30 . 2008-07-29 16:30 1,409 --a------ C:\WINDOWS\QTFont.for
2008-07-28 11:37 . 2008-07-28 11:59 <DIR> d-------- C:\AMC
2008-07-26 17:17 . 2008-07-26 17:17 <DIR> d-------- C:\Arquivos de programas\TVTool
2008-07-26 14:44 . 2008-07-26 19:47 8 --a------ C:\WINDOWS\system32\nvModes.dat
2008-07-24 23:16 . 2008-07-24 23:16 <DIR> d-------- C:\Arquivos de programas\Arquivos comuns\Adobe
2008-07-23 16:04 . 2008-07-23 16:04 21,635 --a------ C:\WINDOWS\FontData.fdb
2008-07-23 15:06 . 2008-07-23 15:06 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Leadertech
2008-07-16 00:18 . 2008-07-16 00:18 <DIR> d-------- C:\Arquivos de programas\WMP11 Slipstreamer
2008-07-15 20:46 . 2008-07-15 20:46 <DIR> d-------- C:\Arquivos de programas\VirtuallTek
2008-07-15 14:16 . 2008-07-15 14:16 <DIR> d-------- C:\Arquivos de programas\AutoStreamer
2008-07-15 11:53 . 2008-07-18 00:39 <DIR> d-------- C:\Arquivos de programas\nLite
2008-07-14 22:51 . 2008-07-15 10:31 <DIR> d-------- C:\mega
2008-07-14 15:03 . 2008-07-14 15:36 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\JustVoip
2008-07-14 14:44 . 2008-07-14 14:54 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Gizmo5
2008-07-14 09:54 . 2008-07-14 09:54 <DIR> d-------- C:\Arquivos de programas\Lavalys
2008-07-13 14:50 . 2008-07-13 14:50 101 --a------ C:\WINDOWS\CMMIXER.INI
2008-07-12 12:52 . 2008-07-12 12:52 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\MyPhoneExplorer
2008-07-12 12:51 . 2008-07-12 12:52 <DIR> d-------- C:\Arquivos de programas\MyPhoneExplorer
2008-07-12 11:42 . 2008-07-21 20:16 <DIR> d-------- C:\celular
2008-07-11 21:34 . 2008-07-11 21:40 <DIR> d-------- C:\setool2lt
2008-07-10 18:30 . 2008-07-22 11:26 22 --a------ C:\WINDOWS\Kruptos.INI
2008-07-10 18:22 . 2008-07-10 18:22 <DIR> d-------- C:\Arquivos de programas\Kruptos
2008-07-10 16:01 . 2008-07-10 16:01 5,248 --a------ C:\WINDOWS\system32\giveio.sys
2008-07-10 15:53 . 2008-04-13 15:47 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-07-10 15:53 . 2008-04-13 15:47 25,856 --a--c--- C:\WINDOWS\system32\dllcache\usbprint.sys
2008-07-08 23:06 . 2008-05-09 07:55 180,224 -----c--- C:\WINDOWS\system32\dllcache\scrobj.dll
2008-07-08 23:06 . 2008-05-09 07:55 172,032 -----c--- C:\WINDOWS\system32\dllcache\scrrun.dll
2008-07-08 23:06 . 2008-05-08 08:24 155,648 -----c--- C:\WINDOWS\system32\dllcache\wscript.exe
2008-07-08 23:06 . 2008-05-09 05:45 135,168 -----c--- C:\WINDOWS\system32\dllcache\cscript.exe
2008-07-08 23:06 . 2008-05-09 07:55 90,112 -----c--- C:\WINDOWS\system32\dllcache\wshext.dll
2008-07-08 19:22 . 2008-07-08 19:22 <DIR> d-------- C:\Arquivos de programas\Custom Technology
2008-07-08 18:15 . 2008-07-08 18:17 <DIR> d-------- C:\Arquivos de programas\AviSynth 2.5
2008-07-08 18:11 . 2008-07-08 18:27 <DIR> d-------- C:\Arquivos de programas\AVIXDVD
2008-07-06 00:48 . 2008-07-06 00:48 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\Maxtor
2008-07-05 19:11 . 2008-07-30 18:39 268 --ah----- C:\sqmdata00.sqm
2008-07-05 19:11 . 2008-07-30 18:39 244 --ah----- C:\sqmnoopt00.sqm
2008-07-05 18:54 . 2008-07-05 18:54 400,864 --a------ C:\WINDOWS\system32\drivers\timntr.sys
2008-07-05 18:54 . 2008-07-05 18:54 32,768 --a------ C:\WINDOWS\system32\drivers\tifsfilt.sys
2008-07-05 18:53 . 2008-07-05 18:53 120,992 --a------ C:\WINDOWS\system32\drivers\snapman.sys
2008-07-05 18:52 . 2008-07-05 18:52 <DIR> d-------- C:\Arquivos de programas\Maxtor
2008-07-05 18:52 . 2008-07-05 18:53 <DIR> d-------- C:\Arquivos de programas\Arquivos comuns\Maxtor
2008-07-05 18:36 . 2008-07-05 18:36 <DIR> d--hs---- C:\WINDOWS\ftpcache
2008-06-30 17:33 . 2008-06-30 17:33 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Apple Computer
2008-06-28 19:10 . 2008-07-30 21:13 <DIR> d-------- C:\Musicas Sacras russas
2008-06-28 18:18 . 2006-11-07 09:42 88,560 -ra------ C:\WINDOWS\system32\drivers\w200mgmt.sys
2008-06-28 18:18 . 2006-11-07 09:42 86,368 -ra------ C:\WINDOWS\system32\drivers\w200obex.sys
2008-06-28 18:09 . 2008-06-28 18:09 <DIR> d-------- C:\Arquivos de programas\Disc2Phone
2008-06-28 18:03 . 2008-06-28 18:03 <DIR> d-------- C:\WINDOWS\system32\URTTEMP
2008-06-28 18:01 . 2008-06-28 18:01 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\Apple Computer
2008-06-28 18:01 . 2008-06-28 18:02 <DIR> d-------- C:\Arquivos de programas\QuickTime
2008-06-28 17:58 . 2008-07-21 20:03 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\AdobeUM
2008-06-28 17:58 . 2008-06-28 17:58 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\AdobeAUM
2008-06-28 17:53 . 2008-06-28 17:54 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Teleca
2008-06-28 17:53 . 2008-06-28 17:53 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Sony Ericsson
2008-06-28 17:45 . 2006-11-07 05:42 97,056 -ra------ C:\WINDOWS\system32\drivers\w200mdm.sys
2008-06-28 17:45 . 2006-11-07 05:42 9,328 -ra------ C:\WINDOWS\system32\drivers\w200mdfl.sys
2008-06-28 17:45 . 2006-11-07 05:42 6,208 -ra------ C:\WINDOWS\system32\drivers\w200cmnt.sys
2008-06-28 17:45 . 2006-11-07 05:42 6,208 -ra------ C:\WINDOWS\system32\drivers\w200cm.sys
2008-06-28 17:44 . 2008-06-28 17:44 <DIR> d-------- C:\Documents and Settings\All Users\Documents
2008-06-28 17:42 . 2008-06-28 17:44 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\Teleca
2008-06-28 17:42 . 2008-06-28 17:44 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\Sony Ericsson
2008-06-28 17:42 . 2008-07-12 13:02 <DIR> d-------- C:\Arquivos de programas\Sony Ericsson
2008-06-28 17:42 . 2008-06-28 17:44 <DIR> d-------- C:\Arquivos de programas\Arquivos comuns\Teleca Shared
2008-06-28 17:41 . 2006-11-07 05:42 61,504 -ra------ C:\WINDOWS\system32\drivers\w200bus.sys
2008-06-28 17:41 . 2006-11-07 05:42 5,840 -ra------ C:\WINDOWS\system32\drivers\w200whnt.sys
2008-06-28 17:41 . 2006-11-07 05:42 5,840 -ra------ C:\WINDOWS\system32\drivers\w200wh.sys
2008-06-28 17:40 . 2008-07-05 18:36 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2008-06-26 03:01 . 2008-06-26 03:01 <DIR> d-------- C:\Arquivos de programas\MSXML 4.0
2008-06-26 00:09 . 2008-07-28 04:55 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Joost
2008-06-26 00:08 . 2008-06-26 00:09 <DIR> d-------- C:\Arquivos de programas\Joost
2008-06-25 22:58 . 2008-06-25 22:59 <DIR> d-------- C:\Arquivos de programas\SopCast
2008-06-25 22:43 . 2008-06-25 22:43 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\TVU Networks
2008-06-25 22:43 . 2008-06-25 22:43 <DIR> d-------- C:\Documents and Settings\All Users\Dados de aplicativos\TVU Networks
2008-06-25 22:37 . 2008-06-25 22:37 <DIR> d-------- C:\Documents and Settings\Maquina3\LocalLow
2008-06-25 22:37 . 2008-06-25 22:37 <DIR> d-------- C:\Arquivos de programas\TVUPlayer
2008-06-25 22:29 . 2008-06-25 22:29 <DIR> d-------- C:\Arquivos de programas\URUSoft
2008-06-22 21:05 . 2008-04-13 15:39 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2008-06-22 21:05 . 2008-04-13 15:39 5,504 --a--c--- C:\WINDOWS\system32\dllcache\mstee.sys
2008-06-22 20:57 . 2008-06-22 20:57 <DIR> d-------- C:\Arquivos de programas\Vivitar
2008-06-22 20:57 . 2008-06-22 20:57 <DIR> d-------- C:\Arquivos de programas\directx
2008-06-22 20:57 . 2002-10-21 11:37 515,803 --a------ C:\WINDOWS\system32\drivers\Ca533av.sys
2008-06-22 20:57 . 2002-01-19 15:33 131,072 --a------ C:\WINDOWS\system32\SP5X_32.DLL
2008-06-22 20:57 . 2002-01-19 15:33 131,072 --a------ C:\WINDOWS\system\SP5X_32.DLL
2008-06-22 20:57 . 2002-07-30 19:40 16,384 --a------ C:\WINDOWS\system32\Dext533.ax
2008-06-22 20:57 . 2002-12-04 14:38 11,144 --a------ C:\WINDOWS\system32\drivers\Bulk533.sys
2008-06-22 20:57 . 2004-01-08 15:17 1,876 --a------ C:\WINDOWS\CA533A.INI
2008-06-22 20:52 . 2008-04-13 15:45 32,128 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2008-06-22 20:52 . 2008-04-13 15:45 32,128 --a--c--- C:\WINDOWS\system32\dllcache\usbccgp.sys
2008-06-20 18:31 . 2008-06-20 18:31 <DIR> d-------- C:\Documents and Settings\Maquina3\Dados de aplicativos\Alien Skin
2008-06-20 14:48 . 2008-06-20 14:48 247,808 -----c--- C:\WINDOWS\system32\dllcache\mswsock.dll
2008-06-20 14:48 . 2008-06-20 14:48 147,968 -----c--- C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-06-20 08:51 . 2008-06-20 08:51 361,600 -----c--- C:\WINDOWS\system32\dllcache\tcpip.sys
2008-06-20 08:40 . 2008-06-20 08:40 138,496 -----c--- C:\WINDOWS\system32\dllcache\afd.sys
2008-06-20 08:08 . 2008-06-20 08:08 225,856 -----c--- C:\WINDOWS\system32\dllcache\tcpip6.sys
2008-06-19 23:19 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-06-19 23:19 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-06-19 23:19 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-06-19 14:06 . 2008-06-20 13:55 <DIR> d-------- C:\Documents and Settings\Maquina3\Contacts
.
((((((((((((((((((((((((((((((((((((( Relat¢rio Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2008-07-13 23:29 --------- d-----w C:\Arquivos de programas\Microsoft Works
2008-06-20 17:48 247,808 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-18 20:37 2,045,459 ----a-w C:\WINDOWS\system32\x264vfw.dll
2008-06-14 17:34 272,384 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-06 18:19 219,648 ----a-w C:\WINDOWS\system32\uxtheme.dll
2008-06-05 15:16 --------- d-----w C:\Arquivos de programas\microsoft frontpage
2008-06-05 15:13 --------- d-----w C:\Arquivos de programas\Serviços on-line
2008-06-05 15:10 --------- d-----w C:\Arquivos de programas\Arquivos comuns\Serviços
2008-05-30 23:22 683,520 ----a-w C:\WINDOWS\system32\divx.dll
2008-05-22 22:22 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2008-05-22 22:19 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
2008-05-09 10:55 90,112 ----a-w C:\WINDOWS\system32\wshext.dll
2008-05-09 10:55 430,080 ----a-w C:\WINDOWS\system32\vbscript.dll
2008-05-09 10:55 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll
2008-05-09 10:55 172,032 ----a-w C:\WINDOWS\system32\scrrun.dll
2008-05-09 08:45 135,168 ----a-w C:\WINDOWS\system32\cscript.exe
2008-05-08 11:24 155,648 ----a-w C:\WINDOWS\system32\wscript.exe
2008-05-07 05:11 1,292,800 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-23 07:14 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-04-14 02:37 1,804 ----a-w C:\WINDOWS\system32\dcache.bin
2008-04-14 02:24 332,800 ----a-w C:\WINDOWS\system32\netsetup.exe
2008-04-14 02:20 99,840 ----a-w C:\WINDOWS\system32\winscard.dll
2008-04-14 02:19 763,392 ----a-w C:\WINDOWS\system32\winntbbu.dll
2008-04-14 02:19 57,375 ----a-w C:\WINDOWS\system32\odbcji32.dll
2008-04-14 02:19 5,632 ----a-w C:\WINDOWS\system32\wmi.dll
2008-04-14 02:19 102,912 ----a-w C:\WINDOWS\system32\dpcdll.dll
2008-04-14 02:01 2,193,280 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-04-14 02:00 4,096 ----a-w C:\WINDOWS\system32\dsprpres.dll
2008-04-14 02:00 2,070,144 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-04-14 01:58 86,016 ------w C:\WINDOWS\system32\msxml6r.dll
2008-04-14 01:57 80,896 ------w C:\WINDOWS\system32\msshavmsg.dll
2008-04-14 01:56 49,664 ----a-w C:\WINDOWS\system32\inetres.dll
2008-04-14 01:55 563,712 ----a-w C:\WINDOWS\system32\shdoclc.dll
2008-04-14 01:54 10,240 ----a-w C:\WINDOWS\system32\gpkrsrc.dll
2008-04-14 01:54 1,845,760 ----a-w C:\WINDOWS\system32\win32k.sys
2008-04-14 01:53 67,584 ----a-w C:\WINDOWS\system32\browselc.dll
2008-04-13 22:21 11,264 ----a-w C:\WINDOWS\system32\spnpinst.exe
2008-04-13 22:20 995,328 ----a-w C:\WINDOWS\system32\setupapi.dll
2008-04-13 22:20 424,448 ----a-w C:\WINDOWS\system32\licdll.dll
2008-04-13 18:44 17,664 ----a-w C:\WINDOWS\system32\watchdog.sys
2008-04-13 18:43 9,728 ------w C:\WINDOWS\system32\comsdupd.exe
2008-04-13 18:43 12,800 ----a-w C:\WINDOWS\system32\spiisupd.exe
2008-04-13 18:40 444,928 ----a-w C:\WINDOWS\system32\xpob2res.dll
2008-04-13 18:35 2,945,536 ----a-w C:\WINDOWS\system32\xpsp2res.dll
2008-04-13 18:35 192,512 ----a-w C:\WINDOWS\system32\xpsp1res.dll
2008-04-13 18:31 7,424 ----a-w C:\WINDOWS\system32\kd1394.dll
2008-04-13 18:30 61,440 ----a-w C:\WINDOWS\system32\msvcrt40.dll
2008-04-13 17:37 208,384 ----a-w C:\WINDOWS\system32\rsaenh.dll
2008-04-13 17:37 138,752 ----a-w C:\WINDOWS\system32\dssenh.dll
2008-04-13 17:26 12,288 ----a-w C:\WINDOWS\system32\odbcp32r.dll
2008-04-13 17:26 12,288 ----a-w C:\WINDOWS\system32\mscpx32r.dll
2008-04-13 17:21 733,696 ----a-w C:\WINDOWS\system32\qedwipes.dll
2008-04-13 16:48 1,647,616 ----a-w C:\WINDOWS\system32\winbrand.dll
2008-04-13 16:45 216,064 ----a-w C:\WINDOWS\system32\moricons.dll
2008-04-13 16:23 48,128 ----a-w C:\WINDOWS\system32\msprivs.dll
2008-04-13 15:39 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Nota* entradas vazias & leg¡timas por defeito nÆo sÆo mostradas.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 23:20 15360]
"DAEMON Tools Lite"="C:\Arquivos de programas\DAEMON Tools Lite\daemon.exe" [2008-04-01 06:39 486856]
"TransBar"="C:\Arquivos de programas\AKSoftware\TransBar\TransBar.exe" [2005-06-01 16:41 65536]
"RocketDock"="C:\Arquivos de programas\RocketDock\RocketDock.exe" [2007-09-02 13:58 495616]
"MsnMsgr"="C:\Arquivos de programas\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184]
"MSMSGS"="C:\Arquivos de programas\Messenger\msmsgs.exe" [2008-04-13 23:21 1695232]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 18:07 1828136]
"SpybotSD TeaTimer"="C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe" [2008-07-07 09:42 2156368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"ISUSPM Startup"="C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\isuspm.exe" [2005-08-11 16:30 249856]
"ISUSScheduler"="C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe" [2005-08-11 16:30 81920]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-10-22 12:22 7700480]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray. dll" [2006-10-22 12:22 86016]
"NBKeyScan"="C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 17:29 2221352]
"Sony Ericsson PC Suite"="C:\Arquivos de programas\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 16:17 159744]
"Adobe Photo Downloader"="C:\Arquivos de programas\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 23:46 57344]
"QuickTime Task"="C:\Arquivos de programas\QuickTime\qttask.exe" [2008-06-28 18:02 155648]
"AcronisTimounterMonitor"="C:\Arquivos de programas\Maxtor\MaxBlast\TimounterMonitor.exe" [2007-08-08 17:39 1945448]
"Acronis Scheduler2 Service"="C:\Arquivos de programas\Arquivos comuns\Maxtor\Schedule2\schedhlp.exe" [2007-08-08 17:31 148760]
"ClamWin"="C:\Arquivos de programas\ClamWin\bin\ClamTray.exe" [2008-06-14 14:13 77824]
"avgnt"="C:\Arquivos de programas\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-31 15:41 266497]
"C-Media Mixer"="Mixer.exe" [2002-10-15 18:00 1818624 C:\WINDOWS\mixer.exe]
"nwiz"="nwiz.exe" [2006-10-22 12:22 1622016 C:\WINDOWS\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-13 23:20 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3fhg"= mp3fhg.acm
"msacm.divxa32"= divxa32.acm
"VIDC.X264"= x264vfw.dll
"VIDC.HFYU"= huffyuv.dll
"vidc.i263"= i263_32.drv
"VIDC.YV12"= yv12vfw.dll
"VIDC.SP54"= SP5X_32.DLL
"VIDC.SP55"= SP5X_32.DLL
"VIDC.SP56"= SP5X_32.DLL
"VIDC.SP57"= SP5X_32.DLL
"VIDC.SP58"= SP5X_32.DLL
[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 relog_ap
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\sacsvr]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\sglfb.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\tga.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\wd.sys]
@="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\EMULE BACKUP 230508\\emule.exe"=
"C:\\Arquivos de programas\\Miranda IM\\miranda32.exe"=
"C:\\Arquivos de programas\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Arquivos de programas\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Arquivos de programas\\TVUPlayer\\TVUPlayer.exe"=
"C:\\Arquivos de programas\\SopCast\\SopCast.exe"=
"C:\\Arquivos de programas\\SopCast\\adv\\SopAdver.exe"=
"C:\\Arquivos de programas\\K-Lite Codec Pack\\Media Player Classic\\mplayerc.exe"=
"C:\\Arquivos de programas\\Joost\\xulrunner\\tvprunner.exe"=
R0 pavboot;pavboot;C:\WINDOWS\system32\drivers\pavboo t.sys [2008-06-19 17:24]
R1 tvtool;tvtool;C:\Arquivos de programas\TVTool\tvtool.sys [1996-04-03 15:33]
S2 Ca533av;V3345 Video Device;C:\WINDOWS\system32\Drivers\Ca533av.sys [2002-10-21 11:37]
S2 NOD32FiXTemDono;Eset Nod32 Boot;C:\WINDOWS\system32\regedt32.exe [2001-10-28 09:07]
S3 USBCamera;V3345 Digital Camera;C:\WINDOWS\system32\Drivers\Bulk533.sys [2002-12-04 14:38]
S3 w200bus;Sony Ericsson W200 driver (WDM);C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 05:42]
S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 05:42]
S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 05:42]
S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 09:42]
S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 09:42]
*Newly Created Service* - AVGIO
.
Conte£do da pasta 'Tarefas Agendadas'
.
************************************************** ************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-07-31 17:39:30
Windows 5.1.2600 Service Pack 3 NTFS
Procurando processos ocultos ...
Procurando entradas auto inicializ veis ocultas ...
Procurando ficheiros ocultos ...
Varredura completada com sucesso
Ficheiros ocultos: 0
************************************************** ************************
.
--------------------- DLLs Carregadas Sob os Processos em Execu‡ao ---------------------
PROCESSOS: C:\WINDOWS\explorer.exe
-> C:\Arquivos de programas\RocketDock\RocketDock.dll
.
------------------------ Outros Processos em Execu‡Æo ------------------------
.
C:\Arquivos de programas\Arquivos comuns\Maxtor\Schedule2\schedul2.exe
C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Arquivos de programas\Arquivos comuns\Teleca Shared\CapabilityManager.exe
C:\Arquivos de programas\Arquivos comuns\Teleca Shared\Generic.exe
.
************************************************** ************************
.
Tempo para conclusÆo: 2008-07-31 17:44:51 - Maquina reiniciou
ComboFix-quarantined-files.txt 2008-07-31 20:44:43
ComboFix2.txt 2008-07-31 19:31:26
Pre-Run: 9,441,103,872 bytes disponíveis
Post-Run: 9,429,413,888 bytes dispon¡veis
394 --- E O F --- 2008-07-14 12:42:38
__________________________________________________ _______________
Do Hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:53:26, on 31/7/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Arquivos de programas\Arquivos comuns\Maxtor\Schedule2\schedul2.exe
C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Mixer.exe
C:\Arquivos de programas\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Arquivos de programas\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Arquivos de programas\QuickTime\qttask.exe
C:\Arquivos de programas\Maxtor\MaxBlast\TimounterMonitor.exe
C:\Arquivos de programas\Arquivos comuns\Maxtor\Schedule2\schedhlp.exe
C:\Arquivos de programas\ClamWin\bin\ClamTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Arquivos de programas\DAEMON Tools Lite\daemon.exe
C:\Arquivos de programas\RocketDock\RocketDock.exe
C:\Arquivos de programas\Windows Live\Messenger\MsnMsgr.Exe
C:\Arquivos de programas\Messenger\msmsgs.exe
C:\Arquivos de programas\Arquivos comuns\Teleca Shared\CapabilityManager.exe
C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe
C:\Arquivos de programas\Arquivos comuns\Teleca Shared\Generic.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\meapag\scuzi.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Arquivos de programas\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Arquivos de programas\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NBKeyScan] "C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Arquivos de programas\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Arquivos de programas\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Arquivos de programas\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Arquivos de programas\Maxtor\MaxBlast\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Arquivos de programas\Arquivos comuns\Maxtor\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [ClamWin] "C:\Arquivos de programas\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [avgnt] "C:\Arquivos de programas\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Arquivos de programas\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [TransBar] C:\Arquivos de programas\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [RocketDock] "C:\Arquivos de programas\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Arquivos de programas\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Arquivos de programas\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Arquivos de programas\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Arquivos de programas\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites -
http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=&
http://home.microsoft.com/intl/br/access/allinone.asp
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) -
http://acs.pandasoftware.com/actives.../as2stubie.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://download.bitdefender.com/reso...an8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://www.update.microsoft.com/wind...?1212683016568
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -
http://javadl-esd.sun.com/update/1.5...ndows-i586.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{05E090BC-5C5A-43B6-AF3B-BA9A052F3D12}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\..\{9D833125-2367-4979-B50E-BE66F66D44FB}: NameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{05E090BC-5C5A-43B6-AF3B-BA9A052F3D12}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS3\Services\Tcpip\..\{05E090BC-5C5A-43B6-AF3B-BA9A052F3D12}: NameServer = 208.67.222.222,208.67.220.220
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Arquivos de programas\Arquivos comuns\Maxtor\Schedule2\schedul2.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Arquivos de programas\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Arquivos de programas\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Arquivos de programas\Arquivos comuns\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
--
End of file - 9417 bytes
[resolvido]Malware não deixa instalar mais nenhum software de proteção
. Nós temos 754.061 usuários, convidamos você fazer parte de nossa comunidade também! Se ainda não encontrou o que procura use nossa pesquisa. Esperamos que aprecie nosso trabalho.
[resolvido]Malware não deixa instalar mais nenhum software de proteção
