Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Entre para seguir isso  
lucasmantovani

Problema com Adware Generic4.ASTK

Recommended Posts

Boa Noite!!

Olá, desde a tarde de hoje estou tendo um problema com um tal de Adware Generic4.ASTK. O AVG detecta ele, porém quando tento colocá-lo em quarentena ou mesmo remover, diz que o objeto está inacessível. Bom, segui as regras do fórum e estou postando os logs necessários. Espero que alguém possa me ajudar e desde já agradeço!

DDS

DDS (Ver_10-10-21.02) - NTFS_AMD64

Run by Lucas at 22:13:15,32 on 26/10/2010

Internet Explorer: 7.0.6001.18000

Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.55.1033.18.2814.760 [GMT -2:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe

C:\Program Files (x86)\AVG\AVG9\avgchsva.exe

C:\Program Files (x86)\AVG\AVG9\avgrsa.exe

C:\Program Files (x86)\AVG\AVG9\avgcsrva.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\system32\Ati2evxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Program Files (x86)\Common Files\iS3\Anti-Spyware\SZServer.exe

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\Ati2evxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\agr64svc.exe

C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\ProgramData\QueryBrowser\querybrowser110.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

C:\Program Files (x86)\AVG\AVG9\avgnsa.exe

C:\Program Files (x86)\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe

C:\Windows\system32\TODDSrv.exe

C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe

C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files (x86)\AVG\AVG9\avgemc.exe

C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe

C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\QueryBrowser\querybrowser.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe

C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

C:\Program Files\Apoint2K\Apoint.exe

C:\Program Files\ltmoh\ltmoh.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\BitComet\BitComet.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe

C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\AVG\AVG9\avgtray.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe

C:\Program Files\Apoint2K\ApMsgFwd.exe

C:\Program Files (x86)\iPod\bin\iPodService.exe

C:\Program Files\Apoint2K\Apntex.exe

C:\Windows\system32\conime.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\Internet Explorer\ieuser.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser.exe

C:\Windows\system32\wuauclt.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Lucas\Desktop\dds.scr

C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uSearch Page = hxxp://www.google.com

uStart Page = hxxp://www.orkut.com/

uSearch Bar = hxxp://www.google.com/ie

uInternet Settings,ProxyOverride = *.local

uInternet Settings,ProxyServer = proxy.rsb.qc.ca:80

mWinlogon: Userinit=c:\windows\syswow64\userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll

BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll

BHO: FrostWire Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

BHO: STOPzilla Browser Helper Object: {e3215f20-3212-11d6-9f8b-00d0b743919d} - C:\Program Files (x86)\STOPzilla!\SZIEBHO.dll

TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll

TB: FrostWire Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

TB: {851552F5-B878-4B03-904F-2AD6A4CC8994} - No File

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

uRun: [MsnMsgr] "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background

uRun: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

uRun: [bitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray

uRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart

uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe

uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

mRun: [sVPWUTIL] "C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" SVPwUTIL

mRun: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe"

mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun: [jswtrayutil] "C:\Program Files (x86)\Jumpstart\jswtrayutil.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM

mRun: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe

StartupFolder: C:\Users\Lucas\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\LIMEWI~1.LNK - C:\Program Files (x86)\LimeWire\LimeWire.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: &B&aixar &com o BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm

IE: &B&aixar todos os vídeos com o BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm

IE: &B&aixar tudo usando o BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll/206

IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - hxxp://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab

DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab

DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll

BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File

TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

TB-X64: {851552F5-B878-4B03-904F-2AD6A4CC8994} - No File

mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

mRun-x64: [skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe

mRun-x64: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE

mRun-x64: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe

mRun-x64: [smoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe

mRun-x64: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe

mRun-x64: [Apoint] C:\Program Files\Apoint2K\Apoint.exe

mRun-x64: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe

AppInit_DLLs-X64: avgrssta.dll

============= SERVICES / DRIVERS ===============

R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\Windows\System32\drivers\tos_sps64.sys [2008-12-7 504912]

R1 AvgLdx64;AVG Free AVI Loader Driver x64;C:\Windows\System32\drivers\avgldx64.sys [2010-6-29 269904]

R1 AvgMfx64;AVG Free On-access Scanner Minifilter Driver x64;C:\Windows\System32\drivers\avgmfx64.sys [2010-6-29 35536]

R1 AvgTdiA;AVG Free Network Redirector x64;C:\Windows\System32\drivers\avgtdia.sys [2010-6-29 317520]

R1 JSWPSLWF;JumpStart Wireless Filter Driver;C:\Windows\System32\drivers\jswpslwfx.sys [2008-12-7 26624]

R2 acedrv11;acedrv11;C:\Windows\System32\drivers\acedrv11.sys [2009-10-26 376400]

R2 avg9emc;AVG Free E-mail Scanner;C:\Program Files (x86)\AVG\AVG9\avgemc.exe [2010-7-15 921952]

R2 avg9wd;AVG Free WatchDog;C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe [2010-7-15 308136]

R2 ConfigFree Gadget Service;ConfigFree Gadget Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe [2008-6-27 36864]

R2 ConfigFree Service;ConfigFree Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2008-7-10 40960]

R2 QueryBrowser Service;QueryBrowser Service;C:\ProgramData\QueryBrowser\querybrowser110.exe [2010-10-26 57616]

R2 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2008-12-7 46392]

R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2008-7-17 139776]

R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv;C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe [2008-8-25 89600]

S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-8-6 93184]

S3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2008-8-28 143360]

S3 jswpsapi;Jumpstart Wifi Protected Setup;C:\Program Files (x86)\Jumpstart\jswpsapi.exe [2008-12-7 954368]

S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-21 19968]

=============== Created Last 30 ================

2010-10-26 23:22:06 -------- d-----w- C:\PROGRA~3\SITEguard

2010-10-26 23:19:45 -------- d-----w- C:\Program Files (x86)\STOPzilla!

2010-10-26 23:19:45 -------- d-----w- C:\Program Files (x86)\Common Files\iS3

2010-10-26 23:19:44 -------- d-----w- C:\PROGRA~3\STOPzilla!

2010-10-26 19:47:13 -------- d-----w- C:\Program Files (x86)\QueryBrowser

2010-10-26 19:47:13 -------- d-----w- C:\PROGRA~3\QueryBrowser

2010-10-26 19:25:40 -------- d-----w- C:\Program Files (x86)\Fake Webcam

2010-10-14 19:56:34 408064 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe

2010-10-14 19:56:34 1923584 ----a-w- C:\Windows\System32\ole32.dll

2010-10-14 19:56:34 1315840 ----a-w- C:\Windows\SysWow64\ole32.dll

2010-10-14 19:56:33 339968 ----a-w- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe

2010-10-14 19:56:32 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll

2010-10-14 19:56:31 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll

2010-10-14 19:56:29 189952 ----a-w- C:\Windows\System32\t2embed.dll

2010-10-14 19:56:28 157184 ----a-w- C:\Windows\SysWow64\t2embed.dll

2010-10-14 19:56:25 633856 ----a-w- C:\Windows\System32\comctl32.dll

2010-10-14 19:56:24 531968 ----a-w- C:\Windows\SysWow64\comctl32.dll

2010-10-14 19:56:21 345088 ----a-w- C:\Windows\System32\msshsq.dll

2010-10-14 19:56:21 248832 ----a-w- C:\Windows\SysWow64\msshsq.dll

2010-10-14 19:55:35 2751488 ----a-w- C:\Windows\System32\win32k.sys

2010-10-14 19:55:10 171008 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe

2010-10-14 19:55:10 168960 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe

2010-10-14 19:55:07 8147456 ----a-w- C:\Windows\SysWow64\wmploc.DLL

2010-10-14 19:55:06 8147968 ----a-w- C:\Windows\System32\wmploc.DLL

2010-10-14 19:53:39 1090048 ----a-w- C:\Windows\System32\wmpmde.dll

2010-10-14 19:53:38 866816 ----a-w- C:\Windows\SysWow64\wmpmde.dll

2010-10-01 00:46:14 -------- d-----w- C:\Users\Lucas\AppData\Roaming\LimeWire

2010-09-28 20:42:40 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2010-09-28 20:42:40 2048 ----a-w- C:\Windows\System32\tzres.dll

2010-09-27 01:03:23 -------- d-----w- C:\Users\Lucas\AppData\Roaming\FrostWire

2010-09-27 01:02:08 -------- d-----w- C:\Program Files (x86)\Ask.com

==================== Find3M ====================

2010-09-08 17:26:59 833024 ----a-w- C:\Windows\SysWow64\wininet.dll

2010-09-08 17:23:42 78336 ----a-w- C:\Windows\SysWow64\ieencode.dll

2010-09-08 16:46:38 1032704 ----a-w- C:\Windows\System32\wininet.dll

2010-09-08 16:43:11 86528 ----a-w- C:\Windows\System32\ieencode.dll

2010-09-08 15:53:07 389632 ----a-w- C:\Windows\SysWow64\html.iec

2010-09-08 15:28:29 1383424 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2010-09-08 15:26:20 485376 ----a-w- C:\Windows\System32\html.iec

2010-09-08 15:00:33 1383424 ----a-w- C:\Windows\System32\mshtml.tlb

2010-09-06 16:24:40 9728 ----a-w- C:\Windows\SysWow64\sscore.dll

2010-09-06 16:23:14 17920 ----a-w- C:\Windows\SysWow64\netevent.dll

2010-09-06 15:59:19 179712 ----a-w- C:\Windows\System32\srvsvc.dll

2010-09-06 15:59:19 12288 ----a-w- C:\Windows\System32\sscore.dll

2010-09-06 15:57:48 17920 ----a-w- C:\Windows\System32\netevent.dll

2010-09-06 13:44:39 461824 ----a-w- C:\Windows\System32\drivers\srv.sys

2010-09-06 13:44:17 144896 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2010-09-06 13:44:14 175104 ----a-w- C:\Windows\System32\drivers\srv2.sys

2010-08-17 14:04:48 267776 ----a-w- C:\Windows\System32\spoolsv.exe

2010-08-10 15:36:43 343040 ----a-w- C:\Windows\System32\schannel.dll

2010-08-10 15:02:22 274432 ----a-w- C:\Windows\SysWow64\schannel.dll

============= FINISH: 22:15:36,72 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-10-21.02)

Microsoft® Windows Vista™ Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 07/12/2008 13:49:42

System Uptime: 26/10/2010 21:25:41 (1 hours ago)

Motherboard: TOSHIBA | | KTKAE

Processor: AMD Athlon X2 Dual-Core QL-60 | Socket M2/S1G1 | 1900/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 282 GiB total, 155,871 GiB free.

D: is FIXED (NTFS) - 7 GiB total, 7,084 GiB free.

E: is CDROM ()

F: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

==== Installed Programs ======================

Acrobat.com

Activation Assistant for the 2007 Microsoft Office suites

Adobe AIR

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Reader 9

Adobe Shockwave Player 11

AIMELLO - Tráfego Aéreo para o FS2004

Apple Software Update

Arquivo do WinRAR

Ask Toolbar

Assistente de Conexão do Windows Live

Atheros Driver Installation Program

Atheros Wi-Fi Protected Setup Library

AVG Free 9.0

BitCometBeta [20090114]

Bonjour

BVE É-D-i metróvonal

Camera Assistant Software for Toshiba

Catalyst Control Center - Branding

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Vista

Catalyst Control Center Localization Chinese Standard

Catalyst Control Center Localization Chinese Traditional

Catalyst Control Center Localization Czech

Catalyst Control Center Localization Danish

Catalyst Control Center Localization Dutch

Catalyst Control Center Localization Finnish

Catalyst Control Center Localization French

Catalyst Control Center Localization German

Catalyst Control Center Localization Greek

Catalyst Control Center Localization Hungarian

Catalyst Control Center Localization Italian

Catalyst Control Center Localization Japanese

Catalyst Control Center Localization Korean

Catalyst Control Center Localization Norwegian

Catalyst Control Center Localization Polish

Catalyst Control Center Localization Portuguese

Catalyst Control Center Localization Russian

Catalyst Control Center Localization Spanish

Catalyst Control Center Localization Swedish

Catalyst Control Center Localization Thai

Catalyst Control Center Localization Turkish

ccc-core-static

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

CD/DVD Drive Acoustic Silencer

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Compatibility Pack for the 2007 Office system

Dev-C++ 5 beta 9 release (4.9.9.2)

DVD MovieFactory for TOSHIBA

Ferramenta de Carregamento do Windows Live

GearDrvs

Google Earth

Google Toolbar for Internet Explorer

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

iTunes

Java 6 Update 6

JMicron JMB38X Flash Media Controller

K-Lite Codec Pack 4.5.3 (Full)

LimeWire 5.5.13

Messenger Plus! Live

Microsoft Choice Guard

Microsoft Flight Simulator 2004 A Century of Flight

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Excel MUI (English) 2007

Microsoft Office Home and Student 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint Viewer 2007 (English)

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Publisher 2007

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Works

Microsoft XML Parser

MSVCRT

MSXML 4.0 SP2 (KB941833)

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

Office Key 9.0 Demo

OnlinePlay 1.0

OpenAL

openBVE - 81-717AVR vonat

ProtectDisc Driver, Version 11

QueryBrowser 1.0 build 111

QuickTime

Realtek 8169 8168 8101E 8102E Ethernet Driver

Realtek High Definition Audio Driver

Security Update for 2007 Microsoft Office System (KB2288621)

Security Update for 2007 Microsoft Office System (KB2344875)

Security Update for 2007 Microsoft Office System (KB2345043)

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB976321)

Security Update for 2007 Microsoft Office System (KB982312)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Microsoft Office Excel 2007 (KB2345035)

Security Update for Microsoft Office InfoPath 2007 (KB979441)

Security Update for Microsoft Office PowerPoint 2007 (KB982158)

Security Update for Microsoft Office Publisher 2007 (KB982124)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Security Update for Microsoft Office Word 2007 (KB2344993)

Security Update for Windows Media Encoder (KB954156)

Security Update for Windows Media Encoder (KB979332)

skAI Traffic v2.3

Skins

Skype™ 3.8

SopCast 3.2.9

STOPzilla

System Requirements Lab

TOSHIBA Assist

TOSHIBA ConfigFree

TOSHIBA DVD PLAYER

TOSHIBA Extended Tiles for Windows Mobility Center

TOSHIBA Face Recognition

TOSHIBA Flash Cards Support Utility

TOSHIBA Hardware Setup

Toshiba Registration

TOSHIBA Service Station

TOSHIBA Speech System Applications

TOSHIBA Speech System SR Engine(U.S.) Version1.0

TOSHIBA Speech System TTS Engine(U.S.) Version1.0

TOSHIBA Supervisor Password

TOSHIBA Value Added Package

Update for 2007 Microsoft Office System (KB2284654)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Office OneNote 2007 (KB980729)

Utility Common Driver

Veetle TV 0.9.17

Visual C++ 8.0 Runtime Setup Package (x64)

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

Windows Media Encoder 9 Series

XPax

Yahoo! Install Manager

==== End Of File ===========================

GMER

GMER 1.0.15.15477 - http://www.gmer.net

Rootkit scan 2010-10-26 22:55:41

Windows 6.0.6001 Service Pack 1

Running: gmer.exe

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xE7 0xBB 0x14 0xED ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x41 0x7A 0xA5 0x1A ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x25 0x48 0x38 0xAA ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xBB 0x2A 0x96 0x12 ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x41 0x7A 0xA5 0x1A ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x25 0x48 0x38 0xAA ...

---- EOF - GMER 1.0.15 ----

Compartilhar este post


Link para o post
Compartilhar em outros sites

Sabe que configuração de proxy é esta?

proxy.rsb.qc.ca:80

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Putz, não entendo muito bem disso, mas pelo que eu vi aí esse rsb.qc.ca é um site dos colégios da região do Canadá que eu morei um tempinho atrás. Aí eu entrava meio que com frequência nele. Não sei se ajuda muito, mas rsb.qc.ca é isso.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Leia atentamente toda a instrução abaixo antes de executar o programa.

    Faça download do Kaspersky Removal Tool e salve em seu desktop.

    • Instale o programa normalmente, seguindo todas as instruções.
    • Uma pasta chamada Virus Removal Tool será criada no desktop.
    • Na tela do programa clique nas opções:
      • Meu computador
      • Hidden Startup objects
      • Disk boot sectors
      • System Memory

      [*]Clique no botão Start Scan.[*]Seja paciente, o scan é demorado![*]Conforme for scaneando provavelmente abrirá algumas janelas pequenas ao lado do relógio, não clique em nada.[*]Também há uma possibilidade de abrir uma janela maior contendo as seguintes opções:

      • Desinfection (quando possível)
      • Delete
      • Skip
    • Quando aparecer, marque primero a opção abaixo Apply to all objects e depois clique numa das opções acima.
    • Após completar tudo, clique no botão Reports, na janela que abrir nas opções acima deixe:
      • Autoscan
      • Group by result
      • All Events

      [*]Expanda Autoscan clicando no sinal ao lado de +[*]Expanda Result: Detected.[*]Clique com o botão direito do mouse e escolha Select all, e depois escolha Copy.[*]Atenção, ao fazer isso parece que o PC travou, mas não, aguarde uns minutos para liberar a memória.[*]Abra o Bloco de Notas e cole (ctrl + v)[*]Dê um nome para o arquivo e salve numa pasta de sua preferência.[*]Feche o resultado clicando no botão Exit.[*]Ao fazer isso será questionado se quer desinstalar a ferramenta, clique em Sim.[*]Reinicie o computador quando for pedido.[*]Poste o conteúdo desse arquivo em sua próxima resposta.

    OBSERVAÇÃO1:

    Atente para as janelas durante o scan elas possuem cores diferentes dependendo do risco. Portanto,
    • verde
      :
      baixo risco
    • amarelo
      :
      médio risco
    • vermelho
      :
      alto risco

    Antes de tomar qualquer medida verifique com cuidado o caminho/nome do arquivo para ver é de seu conhecimento, caso seja clique em
    Skip
    .

    OBSERVAÇÃO2:

    Se no resultado final do scan apenas tiver
    Result:
    OK
    , não precisa gerar um relatório, apenas informe deste.

    OBSERVAÇÃO3:

    Durante o scan pode ser que o Kaspersky acuse a seguinte pasta com vírus:
    c:\
    QooBox
    . Caso isto aconteça escolha a opção
    Skip
    , pois a mesma pertence ao
    ComboFix
    e será removida quando o mesmo for desinstalado.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Assim como solicitado, segue o relatório fornecido pelo programa. Não sei se ficou meio confuso, qualquer coisa eu tento colocá-lo de outra forma.

    Verificação automática: concluído 2 minutos atrás (eventos: 62, objetos: 1036805, hora: 15:35:16)

    28/10/2010 18:22:18 Tarefa iniciada Ação padrão selecionada

    28/10/2010 18:34:13 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    28/10/2010 18:34:13 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Adiado

    28/10/2010 18:37:09 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Ação padrão selecionada

    28/10/2010 18:37:09 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Adiado

    28/10/2010 18:37:12 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Ação padrão selecionada

    28/10/2010 18:37:12 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Adiado

    28/10/2010 19:06:33 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    28/10/2010 19:06:33 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Adiado

    28/10/2010 20:34:25 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    28/10/2010 20:34:25 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Adiado

    28/10/2010 20:36:44 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Ação padrão selecionada

    28/10/2010 20:36:44 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Adiado

    28/10/2010 20:36:50 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Ação padrão selecionada

    28/10/2010 20:36:50 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Adiado

    28/10/2010 21:41:26 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    28/10/2010 21:41:26 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Adiado

    28/10/2010 22:33:00 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0002 Ação padrão selecionada

    28/10/2010 22:33:00 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0002 Adiado

    28/10/2010 22:33:00 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0004 Ação padrão selecionada

    28/10/2010 22:33:00 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0004 Adiado

    28/10/2010 22:33:01 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0002 Ação padrão selecionada

    28/10/2010 22:33:01 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0002 Adiado

    28/10/2010 22:33:01 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0004 Ação padrão selecionada

    28/10/2010 22:33:01 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0004 Adiado

    29/10/2010 00:23:54 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    29/10/2010 00:23:54 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Adiado

    29/10/2010 00:25:56 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Ação padrão selecionada

    29/10/2010 00:25:56 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Adiado

    29/10/2010 00:26:02 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Ação padrão selecionada

    29/10/2010 00:26:02 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Adiado

    29/10/2010 01:24:58 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    29/10/2010 01:24:58 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Adiado

    29/10/2010 02:39:56 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    29/10/2010 02:39:56 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Adiado

    29/10/2010 02:41:46 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Ação padrão selecionada

    29/10/2010 02:41:46 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Adiado

    29/10/2010 02:41:51 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Ação padrão selecionada

    29/10/2010 02:41:51 Não neutralizado Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Users\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Adiado

    29/10/2010 03:40:48 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    29/10/2010 03:40:48 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Users\Lucas\Local Settings\Temp\nss12EF.tmp\querybrowser.exe Adiado

    29/10/2010 04:29:17 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0002 Ação padrão selecionada

    29/10/2010 04:29:17 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0002 Adiado

    29/10/2010 04:29:18 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0004 Ação padrão selecionada

    29/10/2010 04:29:18 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0004 Adiado

    29/10/2010 04:29:18 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0002 Ação padrão selecionada

    29/10/2010 04:29:18 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0002 Adiado

    29/10/2010 04:29:19 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0004 Ação padrão selecionada

    29/10/2010 04:29:19 Não neutralizado Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0004 Adiado

    29/10/2010 05:40:54 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    29/10/2010 09:39:53 Excluído Adware not-a-virus:AdWare.Win32.Zwangi.cgx Médio Exato C:\Documents and Settings\Lucas\AppData\Local\Temp\nss12EF.tmp\querybrowser.exe Ação padrão selecionada

    29/10/2010 09:39:53 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0002 Ação padrão selecionada

    29/10/2010 09:41:02 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab/upgrade.exe/data0004 Ação padrão selecionada

    29/10/2010 09:41:02 Excluído Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M5M8VNOQ\upgrade[1].cab Ação padrão selecionada

    29/10/2010 09:41:02 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgy Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0002 Ação padrão selecionada

    29/10/2010 09:57:20 Detectados Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab/upgrade.exe/data0004 Ação padrão selecionada

    29/10/2010 09:57:20 Excluído Adware not-a-virus:AdWare.Win32.Zwangi.cgz Médio Exato C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN94TX8G\upgrade[1].cab Ação padrão selecionada

    29/10/2010 09:57:20 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Ação padrão selecionada

    29/10/2010 09:57:27 Excluído Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\4328c597-1123b2c7/Inicio.class Ação padrão selecionada

    29/10/2010 09:57:28 Detectados Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Ação padrão selecionada

    29/10/2010 09:57:33 Excluído Cavalos de Tróia Trojan-Downloader.Java.Agent.au Alto Exato C:\Documents and Settings\Lucas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\19134dac-2b748f4b/Inicio.class Ação padrão selecionada

    29/10/2010 09:57:34 Tarefa concluída Ação padrão selecionada

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Vejo que foi postado apenas uma parte do log. Poste o que ficou faltando.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Qual parte ficou faltando? Pelo que eu entendi, ao final da verificação tinha que abrir o item RESULT:DETECTED, e postar tudo que estivesse dentro dele. Tudo que estava dentro desse item eu postei. Teria que colocar algo mais?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Ok, aparentava que estava ao meio.

    Poste novo log do DDS e informe como está o computador.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Então, o AVG parou de detectar o vírus. Aparentemente o computador está normal, ou não está mais acusando. Segue o log do DDS.

    DDS.TXT

    DDS (Ver_10-10-21.02) - NTFS_AMD64

    Run by Lucas at 23:01:16,56 on 02/11/2010

    Internet Explorer: 7.0.6001.18000

    Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.55.1033.18.2814.821 [GMT -2:00]

    SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

    ============== Running Processes ===============

    C:\Windows\system32\wininit.exe

    C:\Program Files (x86)\AVG\AVG9\avgchsva.exe

    C:\Program Files (x86)\AVG\AVG9\avgrsa.exe

    C:\Windows\system32\lsm.exe

    C:\Program Files (x86)\AVG\AVG9\avgcsrva.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

    C:\Windows\system32\svchost.exe -k rpcss

    C:\Windows\system32\Ati2evxx.exe

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\SLsvc.exe

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\Ati2evxx.exe

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\WLANExt.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\system32\agr64svc.exe

    C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe

    C:\Program Files (x86)\Bonjour\mDNSResponder.exe

    C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe

    C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Program Files (x86)\AVG\AVG9\avgnsa.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

    C:\Program Files (x86)\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe

    C:\Windows\system32\TODDSrv.exe

    C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

    C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe

    C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Windows\system32\SearchIndexer.exe

    C:\Program Files (x86)\AVG\AVG9\avgemc.exe

    C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe

    C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\Explorer.EXE

    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

    C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe

    C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

    C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

    C:\Program Files\Apoint2K\Apoint.exe

    C:\Program Files\ltmoh\ltmoh.exe

    C:\Program Files\Windows Sidebar\sidebar.exe

    C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

    C:\Program Files (x86)\BitComet\BitComet.exe

    C:\Windows\ehome\ehtray.exe

    C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

    C:\Program Files\Apoint2K\ApMsgFwd.exe

    C:\Windows\ehome\ehmsas.exe

    C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe

    C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe

    C:\Program Files (x86)\iTunes\iTunesHelper.exe

    C:\Program Files (x86)\AVG\AVG9\avgtray.exe

    C:\Program Files (x86)\iPod\bin\iPodService.exe

    C:\Windows\system32\wbem\unsecapp.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Program Files\Apoint2K\Apntex.exe

    C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

    C:\Windows\system32\wuauclt.exe

    C:\Windows\splwow64.exe

    C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe

    C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe

    C:\Program Files (x86)\Internet Explorer\ieuser.exe

    C:\Windows\SysWow64\Macromed\Flash\FlashUtil10a.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser.exe

    C:\Windows\SysWOW64\conime.exe

    C:\Windows\system32\vssvc.exe

    C:\Windows\System32\svchost.exe -k swprv

    C:\Windows\system32\DllHost.exe

    C:\Windows\system32\DllHost.exe

    C:\Users\Lucas\Desktop\dds.scr

    C:\Windows\system32\wbem\wmiprvse.exe

    ============== Pseudo HJT Report ===============

    uSearch Page = hxxp://www.google.com

    uStart Page = hxxp://www.orkut.com/

    uSearch Bar = hxxp://www.google.com/ie

    uInternet Settings,ProxyOverride = *.local

    uInternet Settings,ProxyServer = proxy.rsb.qc.ca:80

    mWinlogon: Userinit=c:\windows\syswow64\userinit.exe,

    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll

    BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll

    BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

    BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

    BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll

    BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll

    BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll

    BHO: FrostWire Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll

    TB: FrostWire Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    TB: {851552F5-B878-4B03-904F-2AD6A4CC8994} - No File

    uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

    uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

    uRun: [MsnMsgr] "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background

    uRun: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

    uRun: [bitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray

    uRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart

    uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe

    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

    mRun: [sVPWUTIL] "C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" SVPwUTIL

    mRun: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe"

    mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe"

    mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

    mRun: [jswtrayutil] "C:\Program Files (x86)\Jumpstart\jswtrayutil.exe"

    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

    mRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM

    mRun: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe

    mPolicies-explorer: NoActiveDesktop = 1 (0x1)

    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

    IE: &B&aixar &com o BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm

    IE: &B&aixar todos os vídeos com o BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm

    IE: &B&aixar tudo usando o BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm

    IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

    IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll/206

    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

    IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

    DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

    DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - hxxp://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab

    DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

    DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab

    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

    DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

    DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab

    DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll

    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

    BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll

    BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File

    TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

    TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

    TB-X64: {851552F5-B878-4B03-904F-2AD6A4CC8994} - No File

    mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

    mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

    mRun-x64: [skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe

    mRun-x64: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE

    mRun-x64: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe

    mRun-x64: [smoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe

    mRun-x64: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe

    mRun-x64: [Apoint] C:\Program Files\Apoint2K\Apoint.exe

    mRun-x64: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe

    AppInit_DLLs-X64: avgrssta.dll

    ============= SERVICES / DRIVERS ===============

    R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\Windows\System32\drivers\tos_sps64.sys [2008-12-7 504912]

    R1 AvgLdx64;AVG Free AVI Loader Driver x64;C:\Windows\System32\drivers\avgldx64.sys [2010-6-29 269904]

    R1 AvgMfx64;AVG Free On-access Scanner Minifilter Driver x64;C:\Windows\System32\drivers\avgmfx64.sys [2010-6-29 35536]

    R1 AvgTdiA;AVG Free Network Redirector x64;C:\Windows\System32\drivers\avgtdia.sys [2010-6-29 317520]

    R1 JSWPSLWF;JumpStart Wireless Filter Driver;C:\Windows\System32\drivers\jswpslwfx.sys [2008-12-7 26624]

    R2 acedrv11;acedrv11;C:\Windows\System32\drivers\acedrv11.sys [2009-10-26 376400]

    R2 avg9emc;AVG Free E-mail Scanner;C:\Program Files (x86)\AVG\AVG9\avgemc.exe [2010-7-15 921952]

    R2 avg9wd;AVG Free WatchDog;C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe [2010-7-15 308136]

    R2 ConfigFree Gadget Service;ConfigFree Gadget Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe [2008-6-27 36864]

    R2 ConfigFree Service;ConfigFree Service;C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2008-7-10 40960]

    R2 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2008-12-7 46392]

    R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2008-7-17 139776]

    R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv;C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe [2008-8-25 89600]

    S2 QueryBrowser Service;QueryBrowser Service;"C:\ProgramData\QueryBrowser\querybrowser110.exe" "C:\Program Files (x86)\QueryBrowser\querybrowser.dll" subiwagefana --> C:\ProgramData\QueryBrowser\querybrowser110.exe [?]

    S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-8-6 93184]

    S3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2008-8-28 143360]

    S3 jswpsapi;Jumpstart Wifi Protected Setup;C:\Program Files (x86)\Jumpstart\jswpsapi.exe [2008-12-7 954368]

    S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-21 19968]

    =============== Created Last 30 ================

    2010-10-28 20:20:35 -------- d-----w- C:\PROGRA~3\Kaspersky Lab

    2010-10-26 23:22:06 -------- d-----w- C:\PROGRA~3\SITEguard

    2010-10-26 23:19:45 -------- d-----w- C:\Program Files (x86)\Common Files\iS3

    2010-10-26 23:19:44 -------- d-----w- C:\PROGRA~3\STOPzilla!

    2010-10-26 19:25:40 -------- d-----w- C:\Program Files (x86)\Fake Webcam

    2010-10-14 19:56:34 408064 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe

    2010-10-14 19:56:34 1923584 ----a-w- C:\Windows\System32\ole32.dll

    2010-10-14 19:56:34 1315840 ----a-w- C:\Windows\SysWow64\ole32.dll

    2010-10-14 19:56:33 339968 ----a-w- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe

    2010-10-14 19:56:32 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll

    2010-10-14 19:56:31 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll

    2010-10-14 19:56:29 189952 ----a-w- C:\Windows\System32\t2embed.dll

    2010-10-14 19:56:28 157184 ----a-w- C:\Windows\SysWow64\t2embed.dll

    2010-10-14 19:56:25 633856 ----a-w- C:\Windows\System32\comctl32.dll

    2010-10-14 19:56:24 531968 ----a-w- C:\Windows\SysWow64\comctl32.dll

    2010-10-14 19:56:21 345088 ----a-w- C:\Windows\System32\msshsq.dll

    2010-10-14 19:56:21 248832 ----a-w- C:\Windows\SysWow64\msshsq.dll

    2010-10-14 19:55:35 2751488 ----a-w- C:\Windows\System32\win32k.sys

    2010-10-14 19:55:10 171008 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe

    2010-10-14 19:55:10 168960 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe

    2010-10-14 19:55:07 8147456 ----a-w- C:\Windows\SysWow64\wmploc.DLL

    2010-10-14 19:55:06 8147968 ----a-w- C:\Windows\System32\wmploc.DLL

    2010-10-14 19:53:39 1090048 ----a-w- C:\Windows\System32\wmpmde.dll

    2010-10-14 19:53:38 866816 ----a-w- C:\Windows\SysWow64\wmpmde.dll

    ==================== Find3M ====================

    2010-09-08 17:26:59 833024 ----a-w- C:\Windows\SysWow64\wininet.dll

    2010-09-08 17:23:42 78336 ----a-w- C:\Windows\SysWow64\ieencode.dll

    2010-09-08 16:46:38 1032704 ----a-w- C:\Windows\System32\wininet.dll

    2010-09-08 16:43:11 86528 ----a-w- C:\Windows\System32\ieencode.dll

    2010-09-08 15:53:07 389632 ----a-w- C:\Windows\SysWow64\html.iec

    2010-09-08 15:28:29 1383424 ----a-w- C:\Windows\SysWow64\mshtml.tlb

    2010-09-08 15:26:20 485376 ----a-w- C:\Windows\System32\html.iec

    2010-09-08 15:00:33 1383424 ----a-w- C:\Windows\System32\mshtml.tlb

    2010-09-06 16:24:40 9728 ----a-w- C:\Windows\SysWow64\sscore.dll

    2010-09-06 16:23:14 17920 ----a-w- C:\Windows\SysWow64\netevent.dll

    2010-09-06 15:59:19 179712 ----a-w- C:\Windows\System32\srvsvc.dll

    2010-09-06 15:59:19 12288 ----a-w- C:\Windows\System32\sscore.dll

    2010-09-06 15:57:48 17920 ----a-w- C:\Windows\System32\netevent.dll

    2010-09-06 13:44:39 461824 ----a-w- C:\Windows\System32\drivers\srv.sys

    2010-09-06 13:44:17 144896 ----a-w- C:\Windows\System32\drivers\srvnet.sys

    2010-09-06 13:44:14 175104 ----a-w- C:\Windows\System32\drivers\srv2.sys

    2010-08-17 14:04:48 267776 ----a-w- C:\Windows\System32\spoolsv.exe

    2010-08-10 15:36:43 343040 ----a-w- C:\Windows\System32\schannel.dll

    2010-08-10 15:02:22 274432 ----a-w- C:\Windows\SysWow64\schannel.dll

    ============= FINISH: 23:01:57,73 ===============

    ATTACH.TXT

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_10-10-21.02)

    Microsoft® Windows Vista™ Home Premium

    Boot Device: \Device\HarddiskVolume2

    Install Date: 07/12/2008 13:49:42

    System Uptime: 31/10/2010 05:01:28 (66 hours ago)

    Motherboard: TOSHIBA | | KTKAE

    Processor: AMD Athlon X2 Dual-Core QL-60 | Socket M2/S1G1 | 1900/200mhz

    ==== Disk Partitions =========================

    C: is FIXED (NTFS) - 282 GiB total, 155,756 GiB free.

    D: is FIXED (NTFS) - 7 GiB total, 7,084 GiB free.

    E: is CDROM ()

    F: is CDROM ()

    ==== Disabled Device Manager Items =============

    ==== System Restore Points ===================

    RP602: 16/10/2010 17:00:40 - Scheduled Checkpoint

    RP603: 17/10/2010 17:30:21 - Scheduled Checkpoint

    RP604: 18/10/2010 17:21:37 - Scheduled Checkpoint

    RP605: 19/10/2010 19:49:11 - Scheduled Checkpoint

    RP606: 21/10/2010 16:25:22 - Scheduled Checkpoint

    RP607: 22/10/2010 14:36:21 - Scheduled Checkpoint

    RP608: 23/10/2010 22:30:32 - Scheduled Checkpoint

    RP609: 25/10/2010 19:58:22 - Scheduled Checkpoint

    RP610: 26/10/2010 17:15:51 - Avg Update

    RP611: 26/10/2010 21:18:54 - Installed STOPzilla. Available with Windows Installer version 1.2 and later.

    RP612: 26/10/2010 21:28:39 - StopZILLA! Restore Point.

    RP613: 26/10/2010 22:00:50 - StopZILLA! Restore Point.

    RP614: 27/10/2010 16:13:34 - Removed STOPzilla. Available with Windows Installer version 1.2 and later.

    RP615: 29/10/2010 06:06:27 - Scheduled Checkpoint

    RP616: 30/10/2010 13:43:05 - Scheduled Checkpoint

    RP617: 01/11/2010 15:36:07 - Scheduled Checkpoint

    ==== Installed Programs ======================

    Acrobat.com

    Activation Assistant for the 2007 Microsoft Office suites

    Adobe AIR

    Adobe Flash Player 10 ActiveX

    Adobe Flash Player 10 Plugin

    Adobe Reader 9

    Adobe Shockwave Player 11

    AIMELLO - Tráfego Aéreo para o FS2004

    Apple Software Update

    Arquivo do WinRAR

    Ask Toolbar

    Assistente de Conexão do Windows Live

    Atheros Driver Installation Program

    Atheros Wi-Fi Protected Setup Library

    AVG Free 9.0

    BitCometBeta [20090114]

    Bonjour

    BVE É-D-i metróvonal

    Camera Assistant Software for Toshiba

    Catalyst Control Center - Branding

    Catalyst Control Center Core Implementation

    Catalyst Control Center Graphics Full Existing

    Catalyst Control Center Graphics Full New

    Catalyst Control Center Graphics Light

    Catalyst Control Center Graphics Previews Vista

    Catalyst Control Center Localization Chinese Standard

    Catalyst Control Center Localization Chinese Traditional

    Catalyst Control Center Localization Czech

    Catalyst Control Center Localization Danish

    Catalyst Control Center Localization Dutch

    Catalyst Control Center Localization Finnish

    Catalyst Control Center Localization French

    Catalyst Control Center Localization German

    Catalyst Control Center Localization Greek

    Catalyst Control Center Localization Hungarian

    Catalyst Control Center Localization Italian

    Catalyst Control Center Localization Japanese

    Catalyst Control Center Localization Korean

    Catalyst Control Center Localization Norwegian

    Catalyst Control Center Localization Polish

    Catalyst Control Center Localization Portuguese

    Catalyst Control Center Localization Russian

    Catalyst Control Center Localization Spanish

    Catalyst Control Center Localization Swedish

    Catalyst Control Center Localization Thai

    Catalyst Control Center Localization Turkish

    ccc-core-static

    CCC Help Chinese Standard

    CCC Help Chinese Traditional

    CCC Help Czech

    CCC Help Danish

    CCC Help Dutch

    CCC Help English

    CCC Help Finnish

    CCC Help French

    CCC Help German

    CCC Help Greek

    CCC Help Hungarian

    CCC Help Italian

    CCC Help Japanese

    CCC Help Korean

    CCC Help Norwegian

    CCC Help Polish

    CCC Help Portuguese

    CCC Help Russian

    CCC Help Spanish

    CCC Help Swedish

    CCC Help Thai

    CCC Help Turkish

    CD/DVD Drive Acoustic Silencer

    Cisco EAP-FAST Module

    Cisco LEAP Module

    Cisco PEAP Module

    Compatibility Pack for the 2007 Office system

    Dev-C++ 5 beta 9 release (4.9.9.2)

    DVD MovieFactory for TOSHIBA

    Ferramenta de Carregamento do Windows Live

    GearDrvs

    Google Earth

    Google Toolbar for Internet Explorer

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

    iTunes

    Java 6 Update 6

    JMicron JMB38X Flash Media Controller

    K-Lite Codec Pack 4.5.3 (Full)

    Messenger Plus! Live

    Microsoft Choice Guard

    Microsoft Flight Simulator 2004 A Century of Flight

    Microsoft Office 2007 Service Pack 2 (SP2)

    Microsoft Office Excel MUI (English) 2007

    Microsoft Office Home and Student 2007

    Microsoft Office OneNote MUI (English) 2007

    Microsoft Office PowerPoint MUI (English) 2007

    Microsoft Office PowerPoint Viewer 2007 (English)

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (French) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (English) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

    Microsoft Office Publisher 2007

    Microsoft Office Publisher MUI (English) 2007

    Microsoft Office Shared MUI (English) 2007

    Microsoft Office Shared Setup Metadata MUI (English) 2007

    Microsoft Office Word MUI (English) 2007

    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

    Microsoft Visual C++ 2005 Redistributable

    Microsoft Works

    Microsoft XML Parser

    MSVCRT

    MSXML 4.0 SP2 (KB941833)

    MSXML 4.0 SP2 (KB954430)

    MSXML 4.0 SP2 (KB973688)

    MSXML 4.0 SP2 Parser and SDK

    Office Key 9.0 Demo

    OnlinePlay 1.0

    OpenAL

    openBVE - 81-717AVR vonat

    ProtectDisc Driver, Version 11

    QuickTime

    Realtek 8169 8168 8101E 8102E Ethernet Driver

    Realtek High Definition Audio Driver

    Security Update for 2007 Microsoft Office System (KB2288621)

    Security Update for 2007 Microsoft Office System (KB2344875)

    Security Update for 2007 Microsoft Office System (KB2345043)

    Security Update for 2007 Microsoft Office System (KB969559)

    Security Update for 2007 Microsoft Office System (KB976321)

    Security Update for 2007 Microsoft Office System (KB982312)

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

    Security Update for Microsoft Office Excel 2007 (KB2345035)

    Security Update for Microsoft Office InfoPath 2007 (KB979441)

    Security Update for Microsoft Office PowerPoint 2007 (KB982158)

    Security Update for Microsoft Office Publisher 2007 (KB982124)

    Security Update for Microsoft Office system 2007 (972581)

    Security Update for Microsoft Office system 2007 (KB974234)

    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

    Security Update for Microsoft Office Word 2007 (KB2344993)

    Security Update for Windows Media Encoder (KB954156)

    Security Update for Windows Media Encoder (KB979332)

    skAI Traffic v2.3

    Skins

    Skype™ 3.8

    SopCast 3.2.9

    System Requirements Lab

    TOSHIBA Assist

    TOSHIBA ConfigFree

    TOSHIBA DVD PLAYER

    TOSHIBA Extended Tiles for Windows Mobility Center

    TOSHIBA Face Recognition

    TOSHIBA Flash Cards Support Utility

    TOSHIBA Hardware Setup

    Toshiba Registration

    TOSHIBA Service Station

    TOSHIBA Speech System Applications

    TOSHIBA Speech System SR Engine(U.S.) Version1.0

    TOSHIBA Speech System TTS Engine(U.S.) Version1.0

    TOSHIBA Supervisor Password

    TOSHIBA Value Added Package

    Update for 2007 Microsoft Office System (KB2284654)

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

    Update for Microsoft Office OneNote 2007 (KB980729)

    Utility Common Driver

    Veetle TV 0.9.17

    Visual C++ 8.0 Runtime Setup Package (x64)

    Windows Live Call

    Windows Live Communications Platform

    Windows Live Essentials

    Windows Live Messenger

    Windows Media Encoder 9 Series

    XPax

    Yahoo! Install Manager

    ==== Event Viewer Messages From Past Week ========

    29/10/2010 12:17:17, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NlaSvc service.

    27/10/2010 16:11:14, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: is3srv

    26/10/2010 19:19:24, Error: netbt [4321] - The name "WORKGROUP :1d" could not be registered on the interface with IP address 192.168.1.102. The computer with the IP address 192.168.1.100 did not allow the name to be claimed by this computer.

    26/10/2010 18:40:43, Error: PlugPlayManager [12] - The device 'JMB38X xD Host Controller' (PCI\VEN_197B&DEV_2384&SUBSYS_FF021179&REV_00\4&21d1b20d&0&0428) disappeared from the system without first being prepared for removal.

    26/10/2010 18:40:43, Error: PlugPlayManager [12] - The device 'JMB38X SD/MMC Host Controller' (PCI\VEN_197B&DEV_2382&SUBSYS_FF021179&REV_00\4&21d1b20d&0&0128) disappeared from the system without first being prepared for removal.

    26/10/2010 18:40:43, Error: PlugPlayManager [12] - The device 'JMB38X SD Host Controller' (PCI\VEN_197B&DEV_2381&SUBSYS_FF021179&REV_00\4&21d1b20d&0&0228) disappeared from the system without first being prepared for removal.

    26/10/2010 18:40:43, Error: PlugPlayManager [12] - The device 'JMB38X MS Host Controller' (PCI\VEN_197B&DEV_2383&SUBSYS_FF021179&REV_00\4&21d1b20d&0&0328) disappeared from the system without first being prepared for removal.

    26/10/2010 18:37:48, Error: Microsoft-Windows-Dhcp-Client [1002] - The IP address lease 192.168.1.102 for the Network Card with network address 00216360FBE2 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

    26/10/2010 17:53:04, Error: Service Control Manager [7034] - The FlvTube Toolbar Helper service terminated unexpectedly. It has done this 1 time(s).

    26/10/2010 17:49:42, Error: Microsoft-Windows-DistributedCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} to the user Lucas-PC\Lucas SID (S-1-5-21-74144517-1958708509-1345216162-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

    26/10/2010 17:46:59, Error: Service Control Manager [7030] - The FlvTube Toolbar Helper service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

    26/10/2010 17:14:00, Error: PlugPlayManager [12] - The device 'OHCI Compliant IEEE 1394 Host Controller' (PCI\VEN_197B&DEV_2380&SUBSYS_FF001179&REV_00\4&21d1b20d&0&0028) disappeared from the system without first being prepared for removal.

    01/11/2010 13:58:46, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the EapHost service.

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Conhece o seguinte programa?

    C:\Program Files (x86)\Jumpstart\jswtrayutil.exe

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Recomendo que desinstale programas desconhecidos.

    O antivírus aponta a localização da infecção?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Então, desde que o Kaspersky foi rodado, o antivírus parou de acusar aquela infecção do Adware Generic que eu citei no início do tópico. Não sei se o vírus foi removido ou o antivírus parou de detectá-lo, como provavelmente acontece com outros vírus que acabam passando despercebido. Mas a localização que ele dava, era de que o vírus estava dentro de uma das pastas do C:\Windows\Temp.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Parabéns, seu log está limpo.

    De agora em diante fique ALERTA!

    Para finalizar faça o seguinte:

    Faça download do OTCleanIt by OldTimer

    • Salve no seu desktop (área/ambiente de trabalho).
      [
    • Duplo-clique no icone do OTCleanIt.
    • Clique no botão "Cleanup" 8gehxg0.gif
    • Permita que o seu computador seja reiniciado.

    Sugiro que rode o CCleaner para fazer uma limpeza em sua máquina. Faça o download dele aqui CCleaner

    • Abra o programa e clique em Executar Limpeza;
    • Após isto, clique em Erros >> Procurar erros >> Corrigir Erros

    Sugiro também que consulte este artigo: Proteja seu PC

    Mais algum problema com o computador?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Parabéns, seu log está limpo.

    De agora em diante fique ALERTA!

    Para finalizar faça o seguinte:

    Faça download do OTCleanIt by OldTimer

    • Salve no seu desktop (área/ambiente de trabalho).
      [
    • Duplo-clique no icone do OTCleanIt.
    • Clique no botão "Cleanup" 8gehxg0.gif
    • Permita que o seu computador seja reiniciado.

    Sugiro que rode o CCleaner para fazer uma limpeza em sua máquina. Faça o download dele aqui CCleaner

    • Abra o programa e clique em Executar Limpeza;
    • Após isto, clique em Erros >> Procurar erros >> Corrigir Erros

    Sugiro também que consulte este artigo: Proteja seu PC

    Mais algum problema com o computador?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.
    Entre para seguir isso  





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×