Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Entre para seguir isso  
vinigo_lp

Net devagar.

Recommended Posts

vinigo_lp    0

A minha net está devagar a algum tempo.

Acho que estou com vírus...

Pois não é problema com a operadora.

DDS (Ver_10-12-12.02) - NTFS_AMD64

Run by Vinicius at 19:34:58,50 on 17/12/2010

Internet Explorer: 8.0.6001.18999 BrowserJavaVersion: 1.6.0_21

Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1252.55.1046.18.1790.680 [GMT -3:00]

AV: AntiVir Desktop *Enabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: AntiVir Desktop *Enabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}

============== Running Processes ===============

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\PROGRA~2\GbPlugin\GbpSv.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Windows\system32\lxczcoms.exe

C:\Program Files\webserver\bin\win32\matlabserver.exe

C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe

C:\Program Files\bin\win32\MATLAB.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe

C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Program Files (x86)\IObit\Advanced SystemCare 3\AWC.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Windows\SysWOW64\conime.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\foobar2000\foobar2000.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Vinicius\Downloads\dds.scr

C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uInternet Settings,ProxyOverride = *.local

mCustomizeSearch = hxxp://dnl.crawler.com/support/sa_customize.aspx?TbId=60076

uURLSearchHooks: N/A: {1cb20bf0-bbae-40a7-93f4-6435ff3d0411} - C:\PROGRA~2\Crawler\ctbr.dll

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: : {1cb20bf0-bbae-40a7-93f4-6435ff3d0411} - C:\PROGRA~2\Crawler\ctbr.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO: Auxiliar de Conex?o do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: QUICKfind BHO Object: {c08df07a-3e49-4e25-9ab0-d3882835f153} - C:\PROGRA~2\IDM\QUICKF~1\PlugIns\IEHelp.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540000} - C:\Program Files (x86)\GbPlugin\gbieh.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll

TB: TextAloud: {f053c368-5458-45b2-9b4d-d8914bdddbff} - C:\PROGRA~2\TEXTAL~1\TAForIE.dll

TB: Barra de Ferramentas do Yahoo!: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

TB: Barra de ferramentas &Crawler: {4b3803ea-5230-4dc3-a7fc-33638f3d3542} - C:\PROGRA~2\Crawler\ctbr.dll

TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File

TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: EnableLUA = 0 (0x0)

IE: Crawler Search - tbr:iemenu

IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

Trusted Zone: bancobrasil.com.br\www

Trusted Zone: bancobrasil.com.br\www14

Trusted Zone: bancobrasil.com.br\www2

Trusted Zone: bb.com.br\www

DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/pt/uno1/GAME_UNO1.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\ctbr.dll

Notify: GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll

Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399f83} - C:\Program Files (x86)\GbPlugin\gbieh.dll

{32099AAC-C132-4136-9E9A-4E364A424E17}

TB-X64: {A057A204-BACC-4D26-9990-79A187E2698E} - No File

TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

TB-X64: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File

mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

================= FIREFOX ===================

FF - ProfilePath - C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\l82jokle.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.localstrike.com.ar/?q={searchTerms}

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://search.localstrike.com.ar/

FF - prefs.js: keyword.URL - hxxp://search.localstrike.com.ar/?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=

FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll

FF - component: C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\l82jokle.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}\components\GbMzhBb.dll

FF - component: C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\l82jokle.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8874}\components\GbMzhAbn.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

FF - plugin: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll

FF - plugin: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

FF - plugin: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

FF - plugin: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

FF - plugin: C:\Users\Vinicius\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll

FF - plugin: C:\Users\Vinicius\AppData\Roaming\Mozilla\Firefox\Profiles\l82jokle.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll

FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: LoudMo Contextual Ad Assistant: {dc73254b-b7f3-cebd-1220-a4e2bb3b747b} - C:\Program Files (x86)\Mozilla Firefox\extensions\{dc73254b-b7f3-cebd-1220-a4e2bb3b747b}

FF - Ext: Skype extension for Firefox: {AB2CE124-6272-4b12-94A9-7303C7397BD1} - C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Verificador Ortogrأ،fico para Portuguأھs do Brasil.: pt-BR@dellalibera.sf.net - %profile%\extensions\pt-BR@dellalibera.sf.net

FF - Ext: Mأ³dulo de Proteأ§أ£o: {87F8774F-B485-47E2-A755-A40A8A5E8874} - %profile%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8874}

FF - Ext: Adobe DLM (powered by getPlus®): {E2883E8F-472F-4fb0-9522-AC9BF37916A7} - %profile%\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

FF - Ext: Flash and Video Download: {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - %profile%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}

FF - Ext: Mأ³dulo de Seguranأ§a - Banco do Brasil: {87F8774F-B485-47E2-A755-A40A8A5E886C} - %profile%\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C}

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

---- FIREFOX POLICIES ----

FF - user.js: google.toolbar.linkdoctor.enabled - false

============= SERVICES / DRIVERS ===============

R0 pavboot;pavboot;C:\Windows\System32\drivers\pavboot64.sys [2009-6-14 33792]

R1 VBoxDrv;VirtualBox Service;C:\Windows\System32\drivers\VBoxDrv.sys [2008-10-24 136912]

R1 VBoxUSBMon;VirtualBox USB Monitor Driver;C:\Windows\System32\drivers\VBoxUSBMon.sys [2008-10-24 53008]

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2009-6-1 108289]

R2 AntiVirService;Avira AntiVir Guard;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2009-6-1 185089]

R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2009-6-1 74880]

R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2010-2-21 55072]

R2 LMIRfsDriver;LogMeIn Remote File System Driver;C:\Windows\System32\drivers\LMIRfsDriver.sys [2010-5-23 72216]

R2 npf;NetGroup Packet Filter Driver;C:\Windows\System32\drivers\npf.sys [2008-6-29 40464]

S1 SASDIFSV;SASDIFSV;C:\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys [2010-1-5 9968]

S1 SASKUTIL;SASKUTIL;C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS [2010-1-5 74480]

S2 gupdate1c9c38e93112d81;Google Update Service (gupdate1c9c38e93112d81);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-4-22 133104]

S2 REXEC;REXECD;C:\Windows\SysWOW64\REXECD.exe [2005-5-9 98353]

S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-9-26 89920]

S3 FontCache;Serviço de Cache de Fontes do Windows;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-4-16 27648]

S3 PerfHost;Host de DLL de Contador de Desempenho;C:\Windows\SysWOW64\perfhost.exe [2008-4-16 19968]

S3 s916bus;Sony Ericsson Device 916 driver (WDM);C:\Windows\System32\drivers\s916bus.sys [2007-11-2 108072]

S3 s916mdfl;Sony Ericsson Device 916 USB WMC Modem Filter;C:\Windows\System32\drivers\s916mdfl.sys [2007-11-2 19496]

S3 s916mdm;Sony Ericsson Device 916 USB WMC Modem Driver;C:\Windows\System32\drivers\s916mdm.sys [2007-11-2 145448]

S3 SASENUM;SASENUM;C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [2010-1-5 7408]

S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);C:\Windows\System32\drivers\ss_bbus.sys [2010-8-13 127488]

S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);C:\Windows\System32\drivers\ss_bmdfl.sys [2010-8-13 18944]

S3 ss_bmdm;SAMSUNG USB Mobile Modem;C:\Windows\System32\drivers\ss_bmdm.sys [2010-8-13 161280]

S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.sys [2010-8-13 16448]

S4 Aspen Remote Simulation Service V7.0;Aspen Remote Simulation Service V7.0;C:\Program Files (x86)\AspenTech\Aspen Remote Simulation Service V7.0\AspenTech.AspenCxs.RemotingSvc.exe [2008-6-20 81920]

=============== File Associations ===============

JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

=============== Created Last 30 ================

2010-12-17 13:19:03 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{9BA09C05-F324-4302-B5FC-0F73710AB87F}\mpengine.dll

2010-12-17 06:12:54 -------- d-----w- C:\LinhaDefensiva

2010-12-15 21:27:47 96256 ----a-w- C:\Windows\System32\fontsub.dll

2010-12-15 21:27:47 72704 ----a-w- C:\Windows\SysWow64\fontsub.dll

2010-12-15 21:27:47 48128 ----a-w- C:\Windows\System32\atmlib.dll

2010-12-15 21:27:47 367104 ----a-w- C:\Windows\System32\atmfd.dll

2010-12-15 21:27:47 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll

2010-12-15 21:27:47 292352 ----a-w- C:\Windows\SysWow64\atmfd.dll

2010-12-15 21:27:19 2409784 ----a-w- C:\Program Files\Windows Mail\OESpamFilter.dat

2010-12-15 21:27:19 2409784 ----a-w- C:\Program Files (x86)\Windows Mail\OESpamFilter.dat

2010-12-15 21:24:57 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2010-12-15 21:24:57 2048 ----a-w- C:\Windows\System32\tzres.dll

2010-12-15 21:24:01 855040 ----a-w- C:\Windows\System32\schedsvc.dll

2010-12-15 21:24:01 655872 ----a-w- C:\Windows\System32\taskschd.dll

2010-12-15 21:24:00 500224 ----a-w- C:\Windows\System32\wmicmiplugin.dll

2010-12-15 21:24:00 410112 ----a-w- C:\Windows\System32\taskcomp.dll

2010-12-15 21:24:00 352768 ----a-w- C:\Windows\SysWow64\taskschd.dll

2010-12-15 21:24:00 270336 ----a-w- C:\Windows\SysWow64\taskcomp.dll

2010-12-15 21:24:00 267776 ----a-w- C:\Windows\System32\taskeng.exe

2010-12-15 21:24:00 171520 ----a-w- C:\Windows\SysWow64\taskeng.exe

2010-12-09 04:34:30 -------- d-----w- C:\Users\Vinicius\AppData\Roaming\mIRC

2010-12-09 04:34:29 -------- d-----w- C:\Program Files (x86)\mIRC

2010-12-07 03:32:33 -------- d-----w- C:\Program Files (x86)\URUSoft

2010-12-03 22:02:48 -------- d-----w- C:\Program Files (x86)\Clownfish

2010-12-02 01:46:18 -------- d-----w- C:\Users\Vinicius\AppData\Roaming\HTML Executable

2010-11-24 21:10:31 7680 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll

2010-11-24 21:10:31 7680 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll

==================== Find3M ====================

2010-12-17 14:06:15 205 ----a-w- C:\Windows\SysWow64\lsprst7.dll

2010-11-29 20:42:06 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys

2010-11-16 00:37:38 419840 ----a-w- C:\Windows\System32\wrap_oal.dll

2010-11-16 00:37:38 413696 ----a-w- C:\Windows\SysWow64\wrap_oal.dll

2010-11-16 00:37:38 133632 ----a-w- C:\Windows\System32\OpenAL32.dll

2010-11-16 00:37:37 110592 ----a-w- C:\Windows\SysWow64\OpenAL32.dll

2010-11-02 06:27:41 1147904 ----a-w- C:\Windows\System32\wininet.dll

2010-11-02 06:24:01 56832 ----a-w- C:\Windows\System32\licmgr10.dll

2010-11-02 06:23:47 1538560 ----a-w- C:\Windows\System32\inetcpl.cpl

2010-11-02 06:23:35 77312 ----a-w- C:\Windows\System32\iesetup.dll

2010-11-02 06:23:35 132096 ----a-w- C:\Windows\System32\iesysprep.dll

2010-11-02 06:01:54 916480 ----a-w- C:\Windows\SysWow64\wininet.dll

2010-11-02 05:57:41 43520 ----a-w- C:\Windows\SysWow64\licmgr10.dll

2010-11-02 05:57:27 1469440 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2010-11-02 05:57:11 71680 ----a-w- C:\Windows\SysWow64\iesetup.dll

2010-11-02 05:57:11 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

2010-11-02 05:25:33 479232 ----a-w- C:\Windows\System32\html.iec

2010-11-02 05:01:31 385024 ----a-w- C:\Windows\SysWow64\html.iec

2010-11-02 04:45:37 162816 ----a-w- C:\Windows\System32\ieUnatt.exe

2010-11-02 04:44:24 1638912 ----a-w- C:\Windows\System32\mshtml.tlb

2010-11-02 04:26:10 133632 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2010-11-02 04:24:44 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2010-10-19 13:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe

2010-10-18 15:35:48 87552 ----a-w- C:\Windows\System32\consent.exe

2010-10-18 15:25:36 2753536 ----a-w- C:\Windows\System32\win32k.sys

2010-10-17 22:35:43 199995 ----a-w- C:\Windows\ADDONS SITECS (NONSTEAM) Uninstaller.exe

============= FINISH: 19:36:37,08 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft® Windows Vista™ Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 19/09/2008 15:49:18

System Uptime: 17/12/2010 16:21:40 (3 hours ago)

Motherboard: ECS | | GeForce 8000 series

Processor: AMD Athlon 64 X2 Dual Core Processor 5200+ | CPU 1 | 1800/200mhz

==== Disk Partitions =========================

A: is Removable

C: is FIXED (NTFS) - 149 GiB total, 15,093 GiB free.

D: is CDROM (CDFS)

E: is CDROM ()

F: is CDROM ()

G: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP698: 17/12/2010 10:18:05 - Windows Update

RP699: 17/12/2010 19:29:04 - Spyware Terminator - restore point

==== Installed Programs ======================

ABBYY FineReader 6.0 Sprint

ADDONS SITECS (NONSTEAM)

Adobe Anchor Service CS3

Adobe Asset Services CS3

Adobe Bridge CS3

Adobe Bridge Start Meeting

Adobe Camera Raw 4.0

Adobe CMaps

Adobe Color - Photoshop Specific

Adobe Color Common Settings

Adobe Color EU Extra Settings

Adobe Color JA Extra Settings

Adobe Color NA Recommended Settings

Adobe Default Language CS3

Adobe Device Central CS3

Adobe ExtendScript Toolkit 2

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Fonts All

Adobe Help Viewer CS3

Adobe Linguistics CS3

Adobe PDF Library Files

Adobe Photoshop CS3

Adobe Reader 9.4.1 - Português

Adobe Setup

Adobe Shockwave Player 11.5

Adobe Stock Photos CS3

Adobe Type Support

Adobe Update Manager CS3

Adobe Version Cue CS3 Client

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS3

Advanced SystemCare 3

Advertising Center

Age Of Empires 2 & The Conquerors Expansion - Full Game

AGEIA GAME System Software 2.8.0

AKVIS Sketch

AMR Player 1.3

Any Video Converter 2.7.1

Applian FLV Player

Arquivo do WinRAR

Assistente de Conex?o do Windows Live

µTorrent

Atualizaç?o do produto Microsoft Office Excel 2007 Help (KB963678)

Atualizaç?o do produto Microsoft Office Outlook 2007 Help (KB963677)

Atualizaç?o do produto Microsoft Office Powerpoint 2007 Help (KB963669)

Atualizaç?o do produto Microsoft Office Word 2007 Help (KB963665)

Audacity 1.3.12 (Unicode)

AutoUpdate

Avira AntiVir Personal - Free Antivirus

Barra de Ferramentas do Yahoo!

CALL - Vs5

CALL Vs.5

Cambridge Advanced Learner's Dictionary - 2nd edition

CFD GridEditor 2.0

CFD Mesh 1.0

CFD SciView 1.0

CFD Sinflow Library 1.0

CFD Studio 1.0

Cheating-Death 4.33.4

ChemSep 6.0

Chime/Chime Pro for Internet Explorer

Clownfish for Skype

CodeBlocks

CodecInstaller 2.10.1

Counter-Strike 1.6

Crawler Toolbar with Web Security Guard

DAEMON Tools Toolbar

DDR - Digital Camera Recovery(Demo) 4.0.1.6

Dealio Toolbar v4.0.1

DivX Codec

DivX Converter

DivX Player

DivX Web Player

Documentaç?o - Projeto CFD Sinflow

DVD Shrink 3.2

Everest Dictionary

Exchanger Design and Rating V7.0

FastDictionary 2007

Ferramenta de Carregamento do Windows Live

FlightGear v2.0.0

Flobo Photo Digital Recovery 1.5

foobar2000 v0.9.5.5

Foxit Reader

Free FLV to AVI Video Converter v. 1.0

Free Mp3 Wma Converter V 1.81

Free PDF to Word Doc Converter v1.1

Fundamentos

GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)

GDR 4053 for SQL Server Tools and Workstation Components 2005 ENU (KB970892)

Google Chrome

Google Update Helper

GUNROX 1.11

Hero Editor V0.96

HiJackThis

HijackThis 2.0.2

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

IRPF2009 - Declaraç?o de Ajuste Anual e Final de Esp?lio

IRPF2010 - Declaraç?o de Ajuste Anual e Final de Esp?lio

Java Auto Updater

Java 6 Update 21

Junk Mail filter update

K-Lite Mega Codec Pack 5.1.0

License Admin Tools

Longman Dicion?rio Escolar

Malwarebytes' Anti-Malware

MATLAB 7.1

MATLAB R2006b

MediaCoder 0.6.1

MessengerDiscovery 2.5.95

Microke Special Edition

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Security Update (KB2416447)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft Choice Guard

Microsoft English TTS 5.1

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Access MUI (Portuguese (Brazil)) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office Groove MUI (Portuguese (Brazil)) 2007

Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007

Microsoft Office Live Add-in 1.3

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Visio 2007 Service Pack 2 (SP2)

Microsoft Office Visio MUI (Portuguese (Brazil)) 2007

Microsoft Office Visio Professional 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft SQL Server 2005

Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)

Microsoft SQL Server 2005 Tools Express Edition

Microsoft SQL Server Setup Support Files (English)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Minilyrics(remove only)

mIRC

Mozilla Firefox (3.6.13)

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero 9 Lite

Nero ControlCenter

Nero Installer

Nero Online Upgrade

Nero StartSmart

neroxml

NextUp-ScanSoft Raquel Brazilian Portuguese Voice

Nmap 4.76

No-IP.com DUC (remove only)

NSIS Example2

OpenAL

Origin 6.0

PC Inspector File Recovery

PDF Settings

PhotoFiltre Studio

Postal 2 Share The Pain

Process Modeling (Aspen Plus) V7.0

Process Modeling (HYSYS) V7.0

Python 2.4.4

QUICKfind

QuickTime Alternative 2.7.0

Real Alternative 1.9.0

RealPlayer

Receitanet 2009

Receitanet Java 2010.02a

Samsung New PC Studio

Samsung PC Studio 3 USB Driver Installer

Search Settings 1.2.2

Security Update for 2007 Microsoft Office System (KB2288621)

Security Update for 2007 Microsoft Office System (KB2288931)

Security Update for 2007 Microsoft Office System (KB2289158)

Security Update for 2007 Microsoft Office System (KB2344875)

Security Update for 2007 Microsoft Office System (KB2345043)

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB976321)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Microsoft Office Access 2007 (KB979440)

Security Update for Microsoft Office Excel 2007 (KB2345035)

Security Update for Microsoft Office InfoPath 2007 (KB979441)

Security Update for Microsoft Office PowerPoint 2007 (KB982158)

Security Update for Microsoft Office PowerPoint Viewer (KB2413381)

Security Update for Microsoft Office Publisher 2007 (KB2284697)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio 2007 (KB982127)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Security Update for Microsoft Office Word 2007 (KB2344993)

Shared Add-in Extensibility Update for Microsoft .NET Framework 2.0 (KB908002)

Shared Add-in Support Update for Microsoft .NET Framework 2.0 (KB908002)

Skype Toolbars

Skype™ 4.2

Sony Vegas Pro 8.0

Spyware Terminator

Steam

StuffPlug 3

Subtitle Workshop 2.51

Sun xVM VirtualBox

SUPERAntiSpyware Free Edition

sXe Injected

TextAloud

The KMPlayer (remove only)

The Unscrambler® 9.8

Tibia

Tibia MULTI-ip changer

Unity Web Player

Update for 2007 Microsoft Office System (KB2284654)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Office OneNote 2007 (KB980729)

Update for Microsoft Office Outlook 2007 (KB2412171)

Update for Outlook 2007 Junk Email Filter (KB2466076)

Visual C++ 8.0 Runtime Setup Package (x64)

Windows Essentials Media Codec Pack 2.3d

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Mail

Windows Live Messenger

Windows Live Sync

Windows Live Writer

Windows Media Player Firefox Plugin

Windows Movie Maker 2.6

winpcap-nmap 4.02

WinSCP 4.1.8

Worms2 Demo

==== End Of File ===========================

GMER 1.0.15.15530 - http://www.gmer.net

Rootkit scan 2010-12-17 20:13:49

Windows 6.0.6002 Service Pack 2

Running: gmer.exe

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\Descriptions@NIC Gigabit Ethernet PCI-E Realtek Fam 1?

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 2

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 1

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xA2 0x43 0xE5 0xFD ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files (x86)\DAEMON Tools Lite\

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x31 0xDB 0x85 0x15 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x93 0x3C 0xE2 0x84 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0x41 0xA3 0x77 0xD0 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0x38 0xFB 0xA3 0x8A ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42@khjeh 0x39 0xD2 0x78 0xEA ...

Reg HKLM\SYSTEM\ControlSet003\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\Descriptions@NIC Gigabit Ethernet PCI-E Realtek Fam 1?

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 1

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xA2 0x43 0xE5 0xFD ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files (x86)\DAEMON Tools Lite\

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x31 0xDB 0x85 0x15 ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x93 0x3C 0xE2 0x84 ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0x41 0xA3 0x77 0xD0 ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0x38 0xFB 0xA3 0x8A ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42@khjeh 0x39 0xD2 0x78 0xEA ...

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IRPF2009 - Declaraç

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IRPF2009 - Declaraç@SlowInfoCache 0x28 0x02 0x00 0x00 ...

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IRPF2009 - Declaraç@Changed 0

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IRPF2010 - Declaraç

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IRPF2010 - Declaraç@SlowInfoCache 0x28 0x02 0x00 0x00 ...

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IRPF2010 - Declaraç@Changed 0

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Acess

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Acess@Order 0x08 0x00 0x00 0x00 ...

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Acess

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Acess@Order 0x08 0x00 0x00 0x00 ...

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Acess

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Acess@Order 0x08 0x00 0x00 0x00 ...

Reg HKCU\Software\Microsoft\Windows Live\Communications Clients\Shared\1795218283\Groups@Fam 0

Reg HKCU\Software\Microsoft\Windows Live\Communications Clients\Shared\2208660093\Groups@Fam 1

Reg HKCU\Software\Microsoft\Windows Live\Communications Clients\Shared\255171934\Groups@Dispon 0

Reg HKCU\Software\Microsoft\Windows Live\Communications Clients\Shared\940874458\Groups@Fam 1

Reg HKCU\Software\Microsoft\Windows Live\Communications Clients\Shared\969140246\Groups@Fam 1

---- EOF - GMER 1.0.15 ----

Editado por vinigo_lp

Compartilhar este post


Link para o post
Compartilhar em outros sites
RenatoMejias    1.041

Entre em contato com sua provedora de internet.

Compartilhar este post


Link para o post
Compartilhar em outros sites
vinigo_lp    0
  • Autor do tópico
  • Como divido a net com os computadores da casa, vejo que só quando ligo esse, a internet fica lerda, mesmo sem baixar nada...

    Assim o problema não é com a provedora.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    RenatoMejias    1.041

    Façamos um scan mais profundo.

    Leia atentamente toda a instrução abaixo antes de executar o programa.

    Faça download do Kaspersky Removal Tool e salve em seu desktop.

    • Instale o programa normalmente, seguindo todas as instruções.
    • Uma pasta chamada Virus Removal Tool será criada no desktop.
    • Na tela do programa clique nas opções:
      • Meu computador
      • Hidden Startup objects
      • Disk boot sectors
      • System Memory

      [*]Clique no botão Start Scan.[*]Seja paciente, o scan é demorado![*]Conforme for scaneando provavelmente abrirá algumas janelas pequenas ao lado do relógio, não clique em nada.[*]Também há uma possibilidade de abrir uma janela maior contendo as seguintes opções:

      • Desinfection (quando possível)
      • Delete
      • Skip
    • Quando aparecer, marque primero a opção abaixo Apply to all objects e depois clique numa das opções acima.
    • Após completar tudo, clique no botão Reports, na janela que abrir nas opções acima deixe:
      • Autoscan
      • Group by result
      • All Events

      [*]Expanda Autoscan clicando no sinal ao lado de +[*]Expanda Result: Detected.[*]Clique com o botão direito do mouse e escolha Select all, e depois escolha Copy.[*]Atenção, ao fazer isso parece que o PC travou, mas não, aguarde uns minutos para liberar a memória.[*]Abra o Bloco de Notas e cole (ctrl + v)[*]Dê um nome para o arquivo e salve numa pasta de sua preferência.[*]Feche o resultado clicando no botão Exit.[*]Ao fazer isso será questionado se quer desinstalar a ferramenta, clique em Sim.[*]Reinicie o computador quando for pedido.[*]Poste o conteúdo desse arquivo em sua próxima resposta.

    OBSERVAÇÃO1:
    Atente para as janelas durante o scan elas possuem cores diferentes dependendo do risco. Portanto,

    • verde
      :
      baixo risco
    • amarelo
      :
      médio risco
    • vermelho
      :
      alto risco

    Antes de tomar qualquer medida verifique com cuidado o caminho/nome do arquivo para ver é de seu conhecimento, caso seja clique em
    Skip
    .

    OBSERVAÇÃO2:
    Se no resultado final do scan apenas tiver
    Result:
    OK
    , não precisa gerar um relatório, apenas informe deste.

    OBSERVAÇÃO3:
    Durante o scan pode ser que o Kaspersky acuse a seguinte pasta com vírus:
    c:\
    QooBox
    . Caso isto aconteça escolha a opção
    Skip
    , pois a mesma pertence ao
    ComboFix
    e será removida quando o mesmo for desinstalado.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    vinigo_lp    0
  • Autor do tópico
  • Isso demora viu....

    :D

    Verificação automática: concluído 3 horas atrás (eventos: 2798822, objetos: 2780865, hora: 10:57:17)

    Resultado: OK (eventos: 2769814)

    Resultado: Detectados (eventos: 3)

    23/12/2010 20:46:31 C:\Documents and Settings\Vinicius\Desktop\Anti Virus\Age Of Empires 2 & The Conquerors Expansion - Full Game.exe/Data\Aconfig.exe/PE_Patch/data0007.res/ASProtect Ação padrão selecionada

    23/12/2010 21:45:18 C:\Documents and Settings\Vinicius\Downloads\sXeInjectedSetup.11.1.Fix.1.exe/web.dll Ação padrão selecionada

    23/12/2010 21:47:44 C:\Documents and Settings\Vinicius\Downloads\sXeInjectedSetup.11.2.exe/web.dll Ação padrão selecionada

    Resultado: Arquivar (eventos: 27462)

    Resultado: Compactado (eventos: 1243)

    Resultado: Corrompido (eventos: 5)

    Resultado: Excluído (eventos: 3)

    Resultado: Em backup (eventos: 3)

    Resultado: Não processado (eventos: 27)

    Resultado: Protegido por senha (eventos: 260)

    Resultado: Tarefa iniciada (eventos: 1)

    Resultado: Tarefa concluída (eventos: 1)

    Verificação de vírus: concluído 15 minutos atrás (eventos: 223, objetos: 214, hora: 00:00:16)

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    RenatoMejias    1.041

    Seus logs não apontam nenhuma infecção que possa prejudicar a velocidade da internet.

    Como a internet é compartilhada, você precisa verificar se algum dos computadores usa P2P, isso pode consumir a banda e deixar a internet lenta para os outros.

    Seu problema NÃO tem relação com malware.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    vinigo_lp    0
  • Autor do tópico
  • Não sei então o que tá acontecendo, mas quando eu ligo esse pc a net fica lerda...

    Acho que passou, nunca mais aconteceu isso...

    hsuHsuhushUSHuHsuhUShUHsuHUShUHS, meu pc não aguentou ficar 24 hrs ligado e uma das memorias rams queimou...

    Tô rodando só com 1gb.

    :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    RenatoMejias    1.041

    Poste suas dúvidas na área de Internet Geral & Redes.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    RenatoMejias    1.041

    Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.
    Entre para seguir isso  





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×