depois de carregado, o windows (xp sp3) reinicia.

Ae galera, to com um problema parecido com o de algumas pessoas.
Depois de ter colocado um pen drive pingando vírus (o nod não detectou) o pc ficou muito esquisito. Assim que ele carrega o windows dá uma msg
Generic Host Process for Win32 Services

e depois rapidamente aparece uma tela azul e reinicia.
só estou conseguindo usá-lo no modo de segurança, como agora.

Já li alguns posts e pra agilizar vou colocar o log de hijack
se puderem me ajudar agradeço!
Ah, eu de gaiato tbm já passei o Malawarebytes, mas acho que pulei algumas etapas. Mesmo assim ele disse ter encontrado 68 ameaças. Vou colocar o log tbm.


LOG DO HIJACK:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:27:53, on 29/7/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\csrcs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.exe
C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\config\systemprofile\tauzax.ex e
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\Luiz\Desktop\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\net.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
F2 - REG:system.ini: Shell=Explorer.exe csrcs.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Arquivos de programas\Winamp Toolbar\winamptb.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Arquivos de programas\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programa Auxiliar de Início de Sessão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {990F4E75-0E04-470E-ADB0-C6B69A9ABDF6} - c:\windows\system32\pwptpsp.dll (file missing)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Arquivos de programas\GbPlugin\gbieh.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Arquivos de programas\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Arquivos de programas\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.d ll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Arquivos de programas\Winamp Toolbar\winamptb.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Arquivos de programas\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Arquivos de programas\BitDefender\BitDefender 2010\IEToolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [TdspMaLoader] C:\Arquivos de programas\3DSP\Total Wireless\panel\TdspMaLoader.exe
O4 - HKLM\..\Run: [Control Center] C:\Arquivos de programas\Control Center\CCenter.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Arquivos de programas\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Arquivos de programas\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [BDWizReg] "C:\Arquivos de programas\BitDefender\BitDefender 2010\bdwizreg.exe" /complete
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Arquivos de programas\BitDefender\BitDefender 2010\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Arquivos de programas\BitDefender\BitDefender 2010\bdagent.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avgnt] "C:\Arquivos de programas\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\RunServices: [csrcs] C:\WINDOWS\system32\csrcs.exe
O4 - HKLM\..\RunOnce: [ GbPluginBb] RunDll32.exe C:\ARQUIV~1\GbPlugin\gbieh.dll,Gbieh
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Arquivos de programas\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [EPSON Stylus Office T33 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIE EB.EXE /FU "C:\WINDOWS\TEMP\E_S855.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Arquivos de programas\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [siede] C:\Documents and Settings\Luiz\siede.exe
O4 - HKCU\..\Run: [yaomiq] C:\Documents and Settings\Luiz\yaomiq.exe
O4 - HKCU\..\Run: [XA5RJ9EADJ] C:\DOCUME~1\Luiz\CONFIG~1\Temp\Yd3.exe
O4 - HKCU\..\Run: [Fxucipul] rundll32.exe "C:\WINDOWS\dprclzbn.dll",Startup
O4 - HKCU\..\Run: [heaasul] C:\Documents and Settings\Luiz\heaasul.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150600.exe -Update -1150600 -"Mozilla/5.0_(Windows;_U;_Windows_NT_5.1;_pt-BR;_rv:1.9.0.15)_Gecko/2009101601_Firefox/3.0.15_(.NET_CLR_3.5.30729)" -"http://meusjogosdemeninas.uol.com.br/jogos/jogos-de-desenhos-animados/a-luta-das-almofadas.jsp"
O4 - HKLM\..\Policies\Explorer\Run: [csrcs] C:\WINDOWS\system32\csrcs.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Arquivos de programas\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dados de aplicativos\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Publicar em Blogue - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Arquivos de programas\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Publicar no Blogue no Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Arquivos de programas\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp
O15 - Trusted Zone: http://www.bancobrasil.com.br
O15 - Trusted Zone: http://www.bb.com.br
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Arquivos de programas\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/micr...?1264526067687
O16 - DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931} (GbpDistObj Class) - https://www14.bancobrasil.com.br/plugin/GbpDist.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: GbPluginBb - C:\Arquivos de programas\GbPlugin\gbieh.dll
O20 - Winlogon Notify: cryptnet32 - cryptnet32.dll (file missing)
O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Programador (AntiVirSchedulerService) - Avira GmbH - C:\Arquivos de programas\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Arquivos de programas\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Upgrade Service (AntiVirUpgradeService) - Unknown owner - C:\DOCUME~1\Luiz\CONFIG~1\Temp\AVSETUP_4c50ea99\ba sic\avupgsvc.exe (file missing)
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Arquivos de programas\Arquivos comuns\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Arquivos de programas\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Gbp Service (GbpSv) - - C:\ARQUIV~1\GbPlugin\GbpSv.exe
O23 - Service: Google Update Service (GoogleUpdateBeta) - Google Inc - C:\Documents and Settings\Luiz\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdateBeta.exe
O23 - Service: Google Update Service (gupdate1ca51f6cef3e318) (gupdate1ca51f6cef3e318) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Arquivos de programas\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Arquivos de programas\Arquivos comuns\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Arquivos de programas\Eset\nod32krn.exe
O23 - Service: Start BT in service - Unknown owner - C:\Arquivos de programas\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Arquivos de programas\BitDefender\BitDefender 2010\vsserv.exe

--
End of file - 12855 bytes





LOG DO Malwarebytes' Anti-Malware 1.46



Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Versão da Base de Dados: 4366

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

29/7/2010 13:29:10
mbam-log-2010-07-29 (13-29-10).txt

Tipo de Verificação: Verificação Completa (C:\|)
Objetos escaneados: 205419
Tempo decorrido: 31 minuto(s), 9 segundo(s)

Processos de Memória Infectados: 1
Módulos de Memória Infectados: 1
Chaves de Registro Infectadas: 11
Valores de Registro Infectados: 4
Itens de Dados no Registro Infectados: 1
Pastas Infectadas: 0
Arquivos Infectados: 50

Processos de Memória Infectados:
C:\WINDOWS\system32\csrcs.exe (Trojan.Agent) -> No action taken.

Módulos de Memória Infectados:
C:\WINDOWS\system32\cryptnet32.dll (Trojan.Tracur) -> No action taken.

Chaves de Registro Infectadas:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\sshnas (Trojan.FraudPack) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\5DR8ZAD8GX (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\MADOWN (Worm.Magania) -> No action taken.
HKEY_CURRENT_USER\Software\M5T8QL3YW3 (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\V71IQL7HI7 (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DRM\amty (Worm.Autorun) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Servic es\GoogleUpdateBeta (Backdoor.IRCBot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\TG0PTF86JH (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XA5RJ9EADJ (Trojan.FakeAlert) -> No action taken.

Valores de Registro Infectados:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\xa5rj9eadj (Trojan.FraudPack) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\fxucipul (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Policies\Explorer\Run\csrcs (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunServices\csrcs (Trojan.Agent) -> No action taken.

Itens de Dados no Registro Infectados:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell) -> Bad: (Explorer.exe csrcs.exe) Good: (Explorer.exe) -> No action taken.

Pastas Infectadas:
(Não foram detectados ítens maliciosos)

Arquivos Infectados:
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd3.exe (Trojan.FraudPack) -> No action taken.
C:\WINDOWS\dprclzbn.dll (Trojan.Agent) -> No action taken.
C:\12gn6id2.exe (Spyware.OnlineGames) -> No action taken.
C:\1thes92p.exe (Spyware.OnlineGames) -> No action taken.
C:\9rfpp.exe (Spyware.OnlineGames) -> No action taken.
C:\ca.exe (Spyware.OnlineGames) -> No action taken.
C:\chxnxyx.exe (Worm.Taterf) -> No action taken.
C:\f662sjd.exe (Spyware.OnlineGames) -> No action taken.
C:\hc3hvi0.exe (Spyware.OnlineGames) -> No action taken.
C:\i8ikdjwt.exe (Spyware.OnlineGames) -> No action taken.
C:\lhhr8.exe (Spyware.OnlineGames) -> No action taken.
C:\n0qls.exe (Spyware.OnlineGames) -> No action taken.
C:\rpw.exe (Spyware.OnlineGames) -> No action taken.
C:\vgyn6ewc.exe (Spyware.OnlineGames) -> No action taken.
C:\wkimt.exe (Spyware.OnlineGames) -> No action taken.
C:\wyskq6lt.exe (Spyware.OnlineGames) -> No action taken.
C:\xjb3.exe (Spyware.OnlineGames) -> No action taken.
C:\Documents and Settings\Luiz\4x.exe (Trojan.Agent.Gen) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\cvasds0.dll (Trojan.Agent) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\cvasds1.dll (Trojan.Agent) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\dsoqq1.dll (Spyware.OnlineGames) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\EC7.tmp (Rootkit.Dropper) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\F908.tmp (Rootkit.Dropper) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\nodqq0.dll (Spyware.OnlineGames) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\nodqq1.dll (Spyware.OnlineGames) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\PBIr.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\rfYC.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\sshnas21.dll (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd0.exe (Trojan.Fraudpack) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd1.exe (Trojan.FraudPack) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd2.exe (Trojan.FraudPack) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd4.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd5.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Yd6.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temp\Ydz.exe (Trojan.Fraudpack) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temporary Internet Files\Content.IE5\RAL7XYK1\yH39f5f1fdV03f01530002R 5fce92d4102T75c608bfQ00000000901801F002d000aJ10000 601l0416K4e4a14e93180[1] (Trojan.Agent) -> No action taken.
C:\Documents and Settings\Luiz\Configurações locais\Temporary Internet Files\Content.IE5\RAL7XYK1\yHffdfd560V03f01530002R 0c8fa02d102Tb3edd616Q00000000901801F002d000aJ10000 601l0416K5a435f6f3180[1] (Trojan.Agent) -> No action taken.
C:\WINDOWS\Ywuwoa.exe (Trojan.FraudPack) -> No action taken.
C:\WINDOWS\Ywuwob.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\sshnas21.dll (Trojan.FraudPack) -> No action taken.
C:\dqm.exe (Spyware.OnlineGames) -> No action taken.
C:\r3fhr.exe (Spyware.OnlineGames) -> No action taken.
C:\yqq8eqil.exe (Spyware.OnlineGames) -> No action taken.
C:\WINDOWS\system32\crt.dat (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\cryptnet32.dll (Trojan.Tracur) -> No action taken.
C:\WINDOWS\system32\csrcs.exe (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\shimg.dll (Trojan.Agent) -> No action taken.
C:\Documents and Settings\Luiz\x.exe (Trojan.KillAV) -> No action taken.
C:\WINDOWS\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job (Trojan.Downloader) -> No action taken.
C:\WINDOWS\Tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job (Trojan.Downloader) -> No action taken.