6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
- Home
- >
- Fórum
- >
- Windows, Softwa...
- >
- Análise de log,...
- >
- Encontrou um problema e p...
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
igoreso
Super Participante
Registrado
704 Mensagens
22 Curtidas
6533923 disse:Nao Consigo Dezinstalar O Combo Fix Porese Metodo ! Tem Problema Nao Dezinstalar Ele?
Esqueça por enquanto faça o resto e poste os logs.
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
20:56:21:156 4044 TDSS rootkit removing tool 2.3.2.2 Jun 30 2010 17:23:49
20:56:21:156 4044 ================================================================================
20:56:21:156 4044 SystemInfo:
20:56:21:156 4044 OS Version: 5.1.2600 ServicePack: 3.0
20:56:21:156 4044 Product type: Workstation
20:56:21:156 4044 ComputerName: SIM
20:56:21:156 4044 UserName: sim1
20:56:21:156 4044 Windows directory: C:\WINDOWS
20:56:21:156 4044 System windows directory: C:\WINDOWS
20:56:21:156 4044 Processor architecture: Intel x86
20:56:21:156 4044 Number of processors: 2
20:56:21:156 4044 Page size: 0x1000
20:56:21:156 4044 Boot type: Normal boot
20:56:21:156 4044 ================================================================================
20:56:21:328 4044 Initialize success
20:56:21:328 4044
20:56:21:328 4044 Scanning Services ...
20:56:21:734 4044 Raw services enum returned 304 services
20:56:21:734 4044
20:56:21:734 4044 Scanning Drivers ...
20:56:22:437 4044 ACPI (cfcb02e103e44ac7080ca04c1b5c2d7c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:56:22:484 4044 ACPIEC (ebd5cf43ad9526eab9b2a15a54760ea9) C:\WINDOWS\system32\drivers\ACPIEC.sys
20:56:22:500 4044 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
20:56:22:546 4044 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
20:56:22:609 4044 apf001 (0bf848f3cdd883843769a9070f55a023) C:\WINDOWS\system32\apf001.sys
20:56:22:640 4044 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:56:22:656 4044 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
20:56:22:687 4044 AtcL001 (e0c144c291304952f035b69c60f0d4a6) C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
20:56:22:718 4044 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:56:22:750 4044 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
20:56:22:781 4044 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
20:56:22:937 4044 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
20:56:22:984 4044 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
20:56:22:984 4044 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
20:56:23:015 4044 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:56:23:109 4044 cpudrv (d01f685f8b4598d144b0cce9ff95d8d5) C:\Arquivos de programas\SystemRequirementsLab\cpudrv.sys
20:56:23:125 4044 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
20:56:23:171 4044 dmboot (f8002f47101ef7e4fbb4379452d16c91) C:\WINDOWS\system32\drivers\dmboot.sys
20:56:23:187 4044 dmio (fe2c5d52066427c82ee473da3b5065c1) C:\WINDOWS\system32\drivers\dmio.sys
20:56:23:187 4044 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
20:56:23:234 4044 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
20:56:23:250 4044 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
20:56:23:281 4044 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
20:56:23:296 4044 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
20:56:23:296 4044 Fips (a8d31e836ccf2f51009ce7dffecf6d51) C:\WINDOWS\system32\drivers\Fips.sys
20:56:23:312 4044 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
20:56:23:343 4044 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
20:56:23:343 4044 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:56:23:359 4044 Ftdisk (d24d7839d594b255e1c298245b7ba6a2) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:56:23:484 4044 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:56:23:609 4044 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:56:23:687 4044 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
20:56:23:703 4044 i8042prt (485bc6beb778b5e9702e6aa3d384c0cb) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:56:23:765 4044 ialm (c5db546f9028cd00e64335091860d8f3) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
20:56:23:796 4044 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
20:56:23:921 4044 IntcAzAudAddService (db589671e0c403d65884cf0b50600fcd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
20:56:23:968 4044 intelppm (7844c7948f40c44cb8012104fca7271b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:56:23:984 4044 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
20:56:24:000 4044 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:56:24:015 4044 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:56:24:015 4044 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:56:24:015 4044 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:56:24:046 4044 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
20:56:24:062 4044 isapnp (2f61347dc1e20b593f8b66a92d9a46b4) C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:56:24:109 4044 Kbdclass (d3d4832b494cbf9a87cf86d7517013cb) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:56:24:125 4044 klmd23 (316353165feba3d0538eaa9c2f60c5b7) C:\WINDOWS\system32\drivers\klmd.sys
20:56:24:171 4044 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
20:56:24:187 4044 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
20:56:24:218 4044 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
20:56:24:234 4044 Modem (04abc65d1d05aa0b396416b08e51b727) C:\WINDOWS\system32\drivers\Modem.sys
20:56:24:250 4044 Mouclass (a23a5edd91db897d1c8f0c2e9458e0b0) C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:56:24:250 4044 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
20:56:24:265 4044 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:56:24:312 4044 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:56:24:312 4044 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
20:56:24:328 4044 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:56:24:343 4044 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:56:24:343 4044 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
20:56:24:390 4044 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:56:24:390 4044 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
20:56:24:390 4044 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
20:56:24:406 4044 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:56:24:421 4044 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:56:24:421 4044 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:56:24:437 4044 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
20:56:24:437 4044 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
20:56:24:453 4044 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
20:56:24:453 4044 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
20:56:24:500 4044 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
20:56:24:515 4044 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
20:56:24:546 4044 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:56:24:546 4044 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:56:24:562 4044 Parport (9badee6b698bf1af36e25a1a64a89eab) C:\WINDOWS\system32\DRIVERS\parport.sys
20:56:24:562 4044 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
20:56:24:593 4044 ParVdm (598a4e8249dcee03c4426b1cf3917abd) C:\WINDOWS\system32\drivers\ParVdm.sys
20:56:24:593 4044 PCI (f97146d1a50500b38ec8d4015e83e0a7) C:\WINDOWS\system32\DRIVERS\pci.sys
20:56:24:609 4044 PCIIde (62e28fb2d275059532389c615c04e054) C:\WINDOWS\system32\DRIVERS\pciide.sys
20:56:24:625 4044 Pcmcia (e5b6489d932d374e2c3cb077b13faa82) C:\WINDOWS\system32\drivers\Pcmcia.sys
20:56:24:671 4044 PORTIO (c5bd32a70808db0f8bc01ce80eea2c3a) C:\WINDOWS\system32\drivers\portio.sys
20:56:24:671 4044 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:56:24:671 4044 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
20:56:24:687 4044 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:56:24:703 4044 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:56:24:703 4044 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:56:24:718 4044 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:56:24:718 4044 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
20:56:24:734 4044 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:56:24:750 4044 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:56:24:765 4044 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:56:24:796 4044 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
20:56:24:796 4044 redbook (68d749b04bfbbd4d4d15cc5185afa4dd) C:\WINDOWS\system32\DRIVERS\redbook.sys
20:56:24:812 4044 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:56:24:812 4044 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
20:56:24:828 4044 Serial (c681c4804504fb2d799daacab2073c94) C:\WINDOWS\system32\DRIVERS\serial.sys
20:56:24:843 4044 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
20:56:24:859 4044 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
20:56:24:906 4044 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
20:56:24:937 4044 sp_rsdrv2 (8831252bcf05fcfb5abd116a22e552d8) C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
20:56:24:968 4044 sr (d6c5a1a97fe0c533e712652ad9dc00d4) C:\WINDOWS\system32\DRIVERS\sr.sys
20:56:25:000 4044 Srv (89220b427890aa1dffd1a02648ae51c3) C:\WINDOWS\system32\DRIVERS\srv.sys
20:56:25:015 4044 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
20:56:25:031 4044 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
20:56:25:046 4044 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
20:56:25:093 4044 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:56:25:109 4044 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
20:56:25:109 4044 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
20:56:25:125 4044 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
20:56:25:140 4044 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
20:56:25:156 4044 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
20:56:25:187 4044 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:56:25:187 4044 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:56:25:187 4044 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:56:25:203 4044 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:56:25:203 4044 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
20:56:25:234 4044 VolSnap (eb6b1e2c984d84470ff4fe7ef98cd44a) C:\WINDOWS\system32\drivers\VolSnap.sys
20:56:25:250 4044 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:56:25:250 4044 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
20:56:25:265 4044 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:56:25:296 4044 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:56:25:312 4044 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:56:25:312 4044
20:56:25:312 4044 Completed
20:56:25:312 4044
20:56:25:312 4044 Results:
20:56:25:312 4044 Registry objects infected / cured / cured on reboot: 0 / 0 / 0
20:56:25:312 4044 File objects infected / cured / cured on reboot: 0 / 0 / 0
20:56:25:312 4044
20:56:25:312 4044 KLMD(ARK) unloaded successfully
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
igoreso
Super Participante
Registrado
704 Mensagens
22 Curtidas
6533923 disse:Tem Outra Maneira De Desinstalar O Combo Fix ? Eu Eskrevo Combofix Unistall , Ele Começa A Executar O Combo Fix ! A Fazer Scan E Tal!
No final vou te passar um programa que fara isso!
Aguardo os logs DDS!Abraços,
Igor
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
igoreso
Super Participante
Registrado
704 Mensagens
22 Curtidas
6533923 disse:q log ? passei ali em cima , o log do tdds
Faça o download do DDS e salve no desktop.
Lembre-se que estiver executando Windows Vista ou 7 é necessário dar privilégio de administrador a ferramenta para isso:
Clique com o direito do mouse sobre o arquivo e depois clique em
Execute na conta administradora do computador, e com permissão de administrador (no caso Windows Vista e 7).
Temporariamente desative seus programas de proteção, (anti-vírus e anti-spyware).
Duplo clique em dds.scr.
Irá surgir uma tela preta com algumas informações. Não clique em nada, apenas aguarde!
Quando terminar, duas janelas abrirão: DDS.txt e Attach.txt.
Salve os resultados e cole-os na resposta.
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
Run by sim1 at 21:13:00,06 on dom 04/07/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.3574.2986 [GMT -3:00]
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Arquivos de programas\Java\jre6\bin\jqs.exe
C:\ARQUIV~1\SPEEDB~2\VideoAcceleratorService.exe
C:\WINDOWS\Explorer.EXE
C:\ARQUIV~1\SPEEDB~2\VideoAcceleratorEngine.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Arquivos de programas\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe
C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMBgMonitor.exe
C:\Arquivos de programas\Skype\Phone\Skype.exe
C:\Arquivos de programas\SpeedBit Video Accelerator\VideoAccelerator.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe
C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Arquivos de programas\Skype\Plugin Manager\skypePM.exe
C:\Arquivos de programas\Mozilla Firefox\firefox.exe
C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\sim1\Meus documentos\Downloads\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60347
mStart Page = hxxp://search.localstrike.com.ar/
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\arquivos de programas\arquivos comuns\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\arquivos de programas\avg\avg9\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\arquiv~1\micros~3\office12\GRA8E1~1.DLL
BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\arquivos de programas\arquivos comuns\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\arquivos de programas\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [msnmsgr] "c:\arquivos de programas\windows live\messenger\msnmsgr.exe" /background
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\arquivos de programas\arquivos comuns\ahead\lib\NMBgMonitor.exe"
uRun: [Skype] "c:\arquivos de programas\skype\phone\Skype.exe" /nosplash /minimized
uRun: [DAEMON Tools Lite] "c:\arquivos de programas\daemon tools lite\DTLite.exe" -autorun
uRun: [SpeedBitVideoAccelerator] c:\arquivos de programas\speedbit video accelerator\VideoAccelerator.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [AzMixerSel] c:\arquivos de programas\realtek\audio\drivers\AzMixerSel.exe
mRun: [Adobe Reader Speed Launcher] "c:\arquivos de programas\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\arquivos de programas\arquivos comuns\adobe\arm\1.0\AdobeARM.exe"
mRun: [RemoteControl9] "c:\arquivos de programas\cyberlink\powerdvd9\PDVD9Serv.exe"
mRun: [PDVD9LanguageShortcut] "c:\arquivos de programas\cyberlink\powerdvd9\language\Language.exe"
mRun: [SunJavaUpdateSched] "c:\arquivos de programas\arquivos comuns\java\java update\jusched.exe"
mRun: [GrooveMonitor] "c:\arquivos de programas\microsoft office\office12\GrooveMonitor.exe"
mRun: [NeroFilterCheck] c:\arquivos de programas\arquivos comuns\ahead\lib\NeroCheck.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: E&xportar para o Microsoft Excel - c:\arquiv~1\micros~3\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\arquivos de programas\google\google toolbar\component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\arquiv~1\micros~3\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~3\office12\REFIEBAR.DLL
LSP: %SystemRoot%\system32\PrxerDrv.dll
LSP: c:\arquiv~1\speedb~2\sblsp.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\arquiv~1\micros~3\office12\GR99D3~1.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\arquivos de programas\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\arquiv~1\arquiv~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\arquiv~1\micros~3\office12\GRA8E1~1.DLL
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\sim1\dadosd~1\mozilla\firefox\profiles\vhf9s7wj.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.localstrike.com.ar/?q={searchTerms}
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - google.com.br
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60347&qkw=
FF - plugin: c:\arquivos de programas\java\jre6\bin\new_plugin\npdeployJava1.dll
---- FIREFOX POLICIES ----
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".com.br");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
============= SERVICES / DRIVERS ===============
R2 VideoAcceleratorService;VideoAcceleratorService;c:\arquiv~1\speedb~2\videoacceleratorservice.exe -start -scm --> c:\arquiv~1\speedb~2\VideoAcceleratorService.exe -start -scm [?]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Adapter;c:\windows\system32\drivers\atl01_xp.sys [2010-5-29 34944]
R4 sp_rsdrv2;Spyware Terminator Driver 2;\??\c:\windows\system32\drivers\sp_rsdrv2.sys --> c:\windows\system32\drivers\sp_rsdrv2.sys [?]
S3 apf001;apf001;c:\windows\system32\apf001.sys [2010-6-6 10872]
S3 cpudrv;cpudrv;c:\arquivos de programas\systemrequirementslab\cpudrv.sys [2009-12-18 11336]
S3 GarenaPEngine;GarenaPEngine;\??\c:\docume~1\sim1\config~1\temp\bik78.tmp --> c:\docume~1\sim1\config~1\temp\BIK78.tmp [?]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
=============== Created Last 30 ================
2010-07-05 00:02:30 0 d-s---w- C:\ComboFix
2010-07-04 15:11:53 0 d-sha-r- C:\cmdcons
2010-07-04 15:09:09 98816 ----a-w- c:\windows\sed.exe
2010-07-04 15:09:09 77312 ----a-w- c:\windows\MBR.exe
2010-07-04 15:09:09 256512 ----a-w- c:\windows\PEV.exe
2010-07-04 15:09:09 161792 ----a-w- c:\windows\SWREG.exe
2010-07-03 16:28:56 0 d-----w- c:\docume~1\sim1\dadosd~1\Malwarebytes
2010-07-03 16:28:48 0 d-----w- c:\docume~1\alluse~1\dadosd~1\Malwarebytes
2010-07-03 16:28:48 0 d-----w- c:\arquivos de programas\Malwarebytes' Anti-Malware
2010-07-03 01:20:31 0 d-----w- c:\arquivos de programas\Garena HostBot
2010-07-01 19:40:24 2 ----a-w- c:\windows\intelupdate.version
2010-07-01 13:06:58 0 d-----w- c:\docume~1\sim1\dadosd~1\DeviceDoctorSoftware
2010-07-01 13:06:56 0 d-----w- c:\arquivos de programas\Device Doctor
2010-06-30 14:23:51 0 d-----w- c:\arquivos de programas\Tibia
2010-06-30 00:01:57 0 d-----w- c:\arquivos de programas\Spyware Terminator
2010-06-27 02:10:42 0 d-----w- c:\arquivos de programas\Screaming Bee
2010-06-26 20:08:09 0 d-----w- c:\docume~1\sim1\dadosd~1\Tibiacast
2010-06-26 20:07:34 0 d-----w- c:\arquivos de programas\Tibiacast
2010-06-26 16:32:39 14048 ------w- c:\windows\system32\spmsg2.dll
2010-06-26 16:30:50 0 d-----w- c:\windows\system32\XPSViewer
2010-06-26 16:30:10 0 d-----w- c:\windows\Driver Cache
2010-06-26 16:29:59 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-06-26 16:29:59 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-06-26 16:29:59 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-06-26 16:29:59 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-06-26 16:29:59 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-06-26 16:29:59 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-06-26 16:29:59 117760 ------w- c:\windows\system32\prntvpt.dll
2010-06-26 16:29:59 0 d-----w- C:\2b04bbd852fb07a575a07520
2010-06-24 19:19:11 0 d-----w- c:\docume~1\sim1\dadosd~1\BitTorrent
2010-06-24 19:19:08 0 d-----w- c:\arquivos de programas\BitTorrent
2010-06-18 21:59:16 53248 ----a-w- c:\windows\system32\dsnpstd.dll
2010-06-18 21:59:16 286720 ----a-w- c:\windows\vsnpstd.exe
2010-06-18 21:59:16 15541 ----a-w- c:\windows\snpstd.ini
2010-06-18 21:59:16 13023 ----a-w- c:\windows\snpstd.src
2010-06-18 21:59:15 390784 ----a-w- c:\windows\system32\drivers\snpstd.sys
2010-06-18 21:59:13 61440 ----a-w- c:\windows\system32\rsnpstd.dll
2010-06-18 21:59:13 61440 ----a-w- c:\windows\system32\csnpstd.dll
2010-06-18 21:59:13 36864 ----a-w- c:\windows\system32\vsnpstd.dll
2010-06-18 21:59:13 36864 ----a-w- c:\windows\system32\dsnpstd.ax
2010-06-18 21:59:13 20480 ----a-w- c:\windows\usnpstd.exe
2010-06-18 21:59:13 0 d-----w- c:\arquivos de programas\arquivos comuns\snpstd
2010-06-18 17:39:43 151 ----a-w- c:\windows\PhotoSnapViewer.INI
2010-06-18 17:31:24 102400 ----a-r- c:\windows\ZS211Cap.exe
2010-06-18 17:31:23 53248 ----a-w- c:\windows\amcap.exe
2010-06-18 17:31:23 49152 ----a-r- c:\windows\ZSSnp211.EXE
2010-06-18 17:31:23 49152 ----a-r- c:\windows\Domino.EXE
2010-06-18 17:31:22 81920 ----a-r- c:\windows\system32\ZS211STI.dll
2010-06-18 17:31:22 391836 ----a-r- c:\windows\system32\drivers\ZS211.sys
2010-06-18 17:31:22 172115 ----a-r- c:\windows\system32\ZS211Prp.Ax
2010-06-15 17:29:00 0 d-----w- c:\docume~1\alluse~1\dadosd~1\Alwil Software
2010-06-15 00:39:51 0 d-----w- c:\arquivos de programas\CCleaner
2010-06-15 00:18:43 3300 ----a-w- c:\windows\system32\wbem\Outlook_01cb0c20504b2a82.mof
2010-06-13 14:39:48 0 d-----w- c:\docume~1\sim1\dadosd~1\PhotoFiltre
2010-06-13 14:39:32 0 d-----w- c:\arquivos de programas\PhotoFiltre
2010-06-11 22:30:27 73728 ----a-w- c:\windows\system32\PrxerDrv.dll
2010-06-11 22:30:27 61440 ----a-w- c:\windows\system32\PrxerNsp.dll
2010-06-11 22:30:27 11264 ----a-w- c:\windows\system32\SPORDER.DLL
2010-06-11 22:30:27 0 d-----w- c:\arquivos de programas\Proxifier
2010-06-11 18:29:25 172032 ----a-w- c:\windows\system32\AniGIF.ocx
2010-06-11 18:29:25 0 d-----w- c:\arquivos de programas\SpeedBit Video Accelerator
2010-06-11 18:29:22 0 d-----w- c:\arquivos de programas\SpeedBit Video Downloader
2010-06-09 23:01:52 0 d-----w- c:\arquivos de programas\Teamspeak2_RC2 SERVER
2010-06-06 21:49:56 70264 ----a-w- c:\windows\system32\wolf.sys
2010-06-06 21:49:56 12920 ----a-w- c:\windows\system32\apl001.sys
2010-06-06 21:49:56 10872 ----a-w- c:\windows\system32\apf001.sys
2010-06-06 13:43:08 1674683 ----a-w- c:\windows\system32\igxpxa32.cpa
2010-06-06 13:43:08 155648 ----a-w- c:\windows\system32\igfxCoIn_v5218.dll
2010-06-06 13:43:08 1023 ----a-w- c:\windows\system32\igxpxa32.vp
2010-06-05 04:27:01 0 d-----w- c:\arquivos de programas\sXe Injected
2010-06-05 01:57:41 0 d-----w- c:\arquivos de programas\Valve
==================== Find3M ====================
2010-07-04 23:41:19 0 ----a-w- c:\arquivos de programas\arquivos comuns\userInit.dll
2010-07-04 16:19:42 7579648 ----a-w- c:\arquivos de programas\War3Patch.mpq
2010-06-26 16:31:11 81422 ----a-w- c:\windows\system32\perfc016.dat
2010-06-26 16:31:11 476586 ----a-w- c:\windows\system32\perfh016.dat
2010-06-06 18:59:50 13 ----a-w- C:\pipe11.dat
2010-06-03 18:24:08 219648 ----a-w- c:\windows\system32\uxtheme.dll
2010-05-31 20:55:23 27958 ----a-w- c:\arquivos de programas\arquivos comuns\logonInit.dll
2010-05-30 10:55:41 86042 ----a-w- c:\windows\War3Unin.dat
2010-05-30 10:55:17 2829 ----a-w- c:\windows\War3Unin.pif
2010-05-30 10:55:17 139264 ----a-w- c:\windows\War3Unin.exe
2010-05-30 02:49:56 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-05-29 19:34:56 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-29 19:20:35 505128 ----a-w- c:\windows\system32\msvcp71.dll
2010-05-29 19:20:35 353576 ----a-w- c:\windows\system32\msvcr71.dll
2010-05-29 19:20:35 29480 ----a-w- c:\windows\system32\msxml3a.dll
2010-05-29 18:12:24 21844 ----a-w- c:\windows\system32\emptyregdb.dat
2010-05-09 15:55:46 50362104 ----a-w- c:\windows\system32\setup_av_pro.exe
2010-04-17 01:12:18 48464 ----a-w- c:\windows\system32\sirenacm.dll
============= FINISH: 21:13:08,06 ===============
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-03-17.01)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 29/5/2010 15:16:54
System Uptime: 7/4/2010 20:50:00 (2113 hours ago)
Motherboard: Positivo Informatica SA | | POS-AG31AP
Processor: Processador Intel Pentium III Xeon | Socket 775 | 2933/266mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 466 GiB total, 449,624 GiB free.
D: is CDROM ()
E: is Removable
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP1: 29/5/2010 15:19:52 - Ponto de verificação do sistema
RP2: 29/5/2010 15:35:48 - Instalado Realtek High Definition Audio Driver
RP3: 29/5/2010 16:10:23 - Installed Attansic L1 Utility
RP4: 29/5/2010 16:11:10 - Installed Attansic Giga Ethernet Utility
RP5: 29/5/2010 16:12:23 - Installed Adobe Reader 9.3 - Português.
RP6: 29/5/2010 16:14:07 - Software Distribution Service 3.0
RP7: 29/5/2010 16:20:37 - Installed PowerDVD
RP8: 29/5/2010 16:34:53 - Installed Java(TM) 6 Update 20
RP9: 29/5/2010 16:35:10 - Installed Java Runtime Environment
RP10: 29/5/2010 16:39:04 - Installed AVG Free 9.0
RP11: 29/5/2010 16:43:06 - Software Distribution Service 3.0
RP12: 29/5/2010 16:53:58 - Windows XP WgaNotify instalado.
RP13: 29/5/2010 16:58:00 - Installed Windows Media Player 11
RP14: 29/5/2010 16:58:09 - Installed Windows XP Wudf01000.
RP15: 29/5/2010 16:59:18 - Installed Windows XP MSCompPackV1.
RP16: 29/5/2010 16:01:11 - Installed Microsoft Office Enterprise 2007
RP17: 29/5/2010 16:04:28 - Driver de impressão Send To Microsoft OneNote Driver instalado
RP18: 29/5/2010 16:18:36 - DirectX instalado
RP19: 29/5/2010 16:19:01 - Instalado Nero 7 Essentials
RP20: 29/5/2010 17:03:58 - Removed AVG Free 9.0
RP21: 29/5/2010 17:05:17 - Installed AVG Free 9.0
RP22: 29/5/2010 23:49:55 - SPTD setup V1.62
RP23: 1/6/2010 21:45:26 - Ponto de verificação do sistema
RP24: 2/6/2010 14:05:39 - Removed Ask Toolbar.
RP25: 4/6/2010 22:57:41 - ??????????? Counter-Strike 1.6
RP26: 5/6/2010 02:02:08 - ????????? Counter-Strike 1.6
RP27: 5/6/2010 14:57:58 - ????????? Counter-Strike 1.6
RP28: 5/6/2010 16:48:15 - ????????? Counter-Strike 1.6
RP29: 5/6/2010 16:52:32 - ??????????? Counter-Strike 1.6
RP30: 5/6/2010 16:53:57 - ??????? Counter-Strike 1.6
RP31: 5/6/2010 16:54:42 - ??????????? Counter-Strike 1.6
RP32: 5/6/2010 16:56:47 - ????????? Counter-Strike 1.6
RP33: 5/6/2010 16:57:01 - ??????????? Counter-Strike 1.6
RP34: 5/6/2010 17:00:02 - ????????? Counter-Strike 1.6
RP35: 5/6/2010 17:00:12 - ??????? Counter-Strike 1.6
RP36: 5/6/2010 17:00:23 - ????????? Counter-Strike 1.6
RP37: 5/6/2010 17:00:58 - ??????????? Counter-Strike 1.6
RP38: 5/6/2010 17:01:05 - ????????? Counter-Strike 1.6
RP39: 5/6/2010 17:01:16 - ????????? Counter-Strike 1.6
RP40: 6/6/2010 10:05:52 - ????????? Counter-Strike 1.6
RP41: 6/6/2010 12:08:32 - ??????????? Counter-Strike 1.6
RP42: 6/6/2010 12:16:35 - ????????? Counter-Strike 1.6
RP43: 6/6/2010 12:17:53 - ??????? Counter-Strike 1.6
RP44: 6/6/2010 13:20:34 - ????????? Counter-Strike 1.6
RP45: 13/6/2010 19:58:24 - ??????????? Counter-Strike 1.6
RP46: 13/6/2010 19:58:32 - ????????? Counter-Strike 1.6
RP47: 13/6/2010 19:58:42 - ??????????? Counter-Strike 1.6
RP48: 13/6/2010 20:04:21 - ??????? Counter-Strike 1.6
RP49: 13/6/2010 20:04:34 - ????????? Counter-Strike 1.6
RP50: 13/6/2010 20:04:41 - ??????????? Counter-Strike 1.6
RP51: 13/6/2010 20:09:01 - ??????????? Counter-Strike 1.6
RP52: 13/6/2010 20:15:16 - ????????? Counter-Strike 1.6
RP53: 14/6/2010 18:32:49 - ??????????? Counter-Strike 1.6
RP54: 14/6/2010 18:38:23 - ??????? Counter-Strike 1.6
RP55: 14/6/2010 18:38:34 - ????????? Counter-Strike 1.6
RP56: 14/6/2010 18:38:46 - ??????????? Counter-Strike 1.6
RP57: 15/6/2010 14:29:00 - avast! Free Antivirus Setup
RP58: 15/6/2010 14:42:57 - avast! Free Antivirus Setup
RP59: 15/6/2010 16:31:01 - ??????????? Counter-Strike 1.6
RP60: 16/6/2010 21:54:09 - Ponto de verificação do sistema
RP61: 18/6/2010 14:19:44 - Instalado USB PC Camera (ZS0211)
RP62: 18/6/2010 14:21:36 - Removido USB PC Camera (ZS0211)
RP63: 18/6/2010 14:31:21 - Instalação de driver não assinada
RP64: 18/6/2010 14:34:31 - Instalado USB PC Camera (ZS0211)
RP65: 18/6/2010 14:43:11 - Instalação de driver não assinada
RP66: 18/6/2010 14:44:59 - Instalação de driver não assinada
RP67: 18/6/2010 18:35:00 - Instalação de driver não assinada
RP68: 18/6/2010 18:36:25 - Installed USB PC Camera (SN9C101)
RP69: 18/6/2010 18:41:43 - Configured USB PC Camera (SN9C101)
RP70: 18/6/2010 18:57:36 - Instalação de driver não assinada
RP71: 18/6/2010 18:58:49 - Removed USB PC Camera (SN9C101)
RP72: 18/6/2010 18:59:11 - Installed USB PC Camera (SN9C101)
RP73: 26/6/2010 13:30:06 - Installed Windows KB954550-v5.
RP74: 26/6/2010 13:30:16 - Driver de impressão Microsoft XPS Document Writer instalado
RP75: 26/6/2010 13:30:22 - Driver de impressão Microsoft XPS Document Writer instalado
RP76: 26/6/2010 13:32:39 - Installed %1 %2.
RP77: 26/6/2010 17:07:32 - Installed Tibiacast
RP78: 26/6/2010 23:11:05 - Installed MorphVOX Junior
RP79: 27/6/2010 16:36:32 - Installed MorphVOX Junior
RP80: 28/6/2010 22:53:28 - Ponto de verificação do sistema
RP81: 30/6/2010 10:45:42 - Spyware Terminator - restore point
RP82: 30/6/2010 14:55:44 - Installed Tibiacast
RP83: 1/7/2010 16:29:50 - avast! Pro Antivirus Setup
RP84: 1/7/2010 17:27:54 - avast! Pro Antivirus Setup
RP85: 1/7/2010 17:33:12 - avast! Pro Antivirus Setup
RP86: 1/7/2010 17:33:16 - avast! Pro Antivirus Setup
RP87: 1/7/2010 17:57:26 - avast! Pro Antivirus Setup
RP88: 2/7/2010 09:49:40 - avast! Pro Antivirus Setup
RP89: 4/7/2010 12:09:21 - ComboFix created restore point
RP90: 4/7/2010 20:57:57 - Removed Ask Toolbar.
RP91: 4/7/2010 20:59:35 - ??????? Counter-Strike 1.6
RP92: 4/7/2010 20:59:49 - ??????? Counter-Strike 1.6
RP93: 4/7/2010 21:04:43 - ??????? Counter-Strike 1.6
==== Installed Programs ======================
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.3.3 - Português
Assistente de Conexão do Windows Live
Attansic Giga Ethernet Utility
Attansic L1 Gigabit Ethernet Driver
Atualização de Segurança para o Windows Media Player (KB952069)
Atualização de Segurança para o Windows Media Player (KB954155)
Atualização de Segurança para o Windows Media Player (KB968816)
Atualização de Segurança para o Windows Media Player (KB973540)
Atualização de Segurança para o Windows Media Player (KB979402)
Atualização de Segurança para Windows XP (KB923561)
Atualização de Segurança para Windows XP (KB923689)
Atualização de Segurança para Windows XP (KB923789)
Atualização de Segurança para Windows XP (KB946648)
Atualização de Segurança para Windows XP (KB950760)
Atualização de Segurança para Windows XP (KB950762)
Atualização de Segurança para Windows XP (KB950974)
Atualização de Segurança para Windows XP (KB951376-v2)
Atualização de Segurança para Windows XP (KB951748)
Atualização de Segurança para Windows XP (KB952004)
Atualização de Segurança para Windows XP (KB952954)
Atualização de Segurança para Windows XP (KB954459)
Atualização de Segurança para Windows XP (KB955069)
Atualização de Segurança para Windows XP (KB956572)
Atualização de Segurança para Windows XP (KB956744)
Atualização de Segurança para Windows XP (KB956802)
Atualização de Segurança para Windows XP (KB956803)
Atualização de Segurança para Windows XP (KB956844)
Atualização de Segurança para Windows XP (KB958644)
Atualização de Segurança para Windows XP (KB958869)
Atualização de Segurança para Windows XP (KB959426)
Atualização de Segurança para Windows XP (KB960225)
Atualização de Segurança para Windows XP (KB960803)
Atualização de Segurança para Windows XP (KB960859)
Atualização de Segurança para Windows XP (KB961501)
Atualização de Segurança para Windows XP (KB969059)
Atualização de Segurança para Windows XP (KB969947)
Atualização de Segurança para Windows XP (KB970238)
Atualização de Segurança para Windows XP (KB971468)
Atualização de Segurança para Windows XP (KB971657)
Atualização de Segurança para Windows XP (KB971961)
Atualização de Segurança para Windows XP (KB972270)
Atualização de Segurança para Windows XP (KB973507)
Atualização de Segurança para Windows XP (KB973869)
Atualização de Segurança para Windows XP (KB973904)
Atualização de Segurança para Windows XP (KB974112)
Atualização de Segurança para Windows XP (KB974318)
Atualização de Segurança para Windows XP (KB974392)
Atualização de Segurança para Windows XP (KB974571)
Atualização de Segurança para Windows XP (KB975025)
Atualização de Segurança para Windows XP (KB975467)
Atualização de Segurança para Windows XP (KB975560)
Atualização de Segurança para Windows XP (KB975561)
Atualização de Segurança para Windows XP (KB975713)
Atualização de Segurança para Windows XP (KB977816)
Atualização de Segurança para Windows XP (KB977914)
Atualização de Segurança para Windows XP (KB978037)
Atualização de Segurança para Windows XP (KB978262)
Atualização de Segurança para Windows XP (KB978338)
Atualização de Segurança para Windows XP (KB978542)
Atualização de Segurança para Windows XP (KB978601)
Atualização de Segurança para Windows XP (KB978706)
Atualização de Segurança para Windows XP (KB979309)
Atualização de Segurança para Windows XP (KB979683)
Atualização de Segurança para Windows XP (KB980232)
Atualização de Segurança para Windows XP (KB981349)
Atualização para Windows Internet Explorer 8 (KB980182)
Atualização para Windows Internet Explorer 8 (KB982632)
Atualização para Windows XP (KB898461)
Atualização para Windows XP (KB951978)
Atualização para Windows XP (KB955759)
Atualização para Windows XP (KB967715)
Atualização para Windows XP (KB968389)
Atualização para Windows XP (KB973687)
Atualização para Windows XP (KB973815)
Atualização para Windows XP (KB980182)
BitTorrent
CCleaner
Counter-Strike 1.6
CyberLink PowerDVD 9
ElfBot NG 4.5.6
EVEREST Ultimate Edition v5.50
Ferramenta de Carregamento do Windows Live
Garena 2010
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Windows XP (KB954550-v5)
Hotfix para Windows XP (KB952287)
Hotfix para Windows XP (KB981793)
Intel(R) Graphics Media Accelerator Driver
Java Auto Updater
Java(TM) 6 Update 20
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PTB
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PTB
Microsoft .NET Framework 3.5 Language Pack SP1 - ptb
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Office Access MUI (Portuguese (Brazil)) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (Portuguese (Brazil)) 2007
Microsoft Office Groove MUI (Portuguese (Brazil)) 2007
Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007
Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007
Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007
Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (Portuguese (Brazil)) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (Portuguese (Brazil)) 2007
Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007
Microsoft Office Shared MUI (Portuguese (Brazil)) 2007
Microsoft Office Word MUI (Portuguese (Brazil)) 2007
Microsoft Software Update for Web Folders (Portuguese (Brazil)) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox (3.6.7)
MSVCRT
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6.0 Parser (KB933579)
Nero 7 Essentials
neroxml
Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB
PhotoFiltre
Proxifier version 2.91
Realtek High Definition Audio Driver
Segoe UI
Skype Toolbars
Skype™ 4.2
SpeedBit Video Accelerator
System Requirements Lab for Intel
TeamSpeak 2 RC2
TeamSpeak 2 Server RC2
Tibia
Tibia MULTI-ip changer
TibiaCam TV Lite 3.3
Tibiacast
USB PC Camera (SN9C101)
Warcraft III: All Products
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Media Format 11 runtime
Windows Media Player 11
WinRAR archiver
XML Paper Specification Shared Components Language Pack 1.0
XP Codec Pack
==== End Of File ===========================
primero é do DDS , depois é do ATTACH
igoreso
Super Participante
Registrado
704 Mensagens
22 Curtidas
No mais, o log está limpo.
Leia aqui os últimos passos para finalizarmos a remoção (execute OTC primeiro, que removerá o ComboFix).
Desative e reative a restauração do sistema, leia aqui. (Windows XP)
-- ETAPA 2 --
Instale e faça um scan completo com Avira PE (ótimo anti-vírus para seu PC que está sem). Caso ache algo poste o log.
Exclua o que restou das ferramentas!
6533923
Novo Membro
Registrado
35 Mensagens
0 Curtidas
