Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
burn_in_fyre

Trojan Downloader-alguem Ativo Me Ajuda =d

Recommended Posts

tenho certeza que é trojan downloader porque scanniei no kaspersky e ele falou até como minha irmã pegow =\ só não entendo de logs

o Windows é vista, por isso unknown, o ie abri sozinho com propagandas de operadora de celulares e a navegação fica muito difícil num curto periodo depois da conexão com a internet

Logfile of HijackThis v1.99.1

Scan saved at 15:42:33, on 18/05/2008

Platform: Unknown Windows (WinNT 6.00.1905 SP1, v.668)

MSIE: Internet Explorer v7.00 (7.00.6001.17052)

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Alwil Software\Avast4\ashDisp.exe

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe

C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe

C:\Windows\System32\mobsync.exe

C:\Users\Familia Cabral\Desktop\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.clubedohardware.com.br/malware-win32/532951?p=2778265

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Facilitador de Leitor de Link Adobe PDF - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKCU\..\Run: [supporttick] "C:\ProgramData\vgaerrorerror.18fc32"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [Help Creative Meow City] "C:\ProgramData\1 Funk First.1p0ar"

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

O4 - Startup: Registration Prince of Persia T2T.LNK = C:\Program Files\Ubisoft\Prince of Persia T2T\Support\Register\RegistrationReminder.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll

O11 - Options group: [iNTERNATIONAL] International*

O13 - Gopher Prefix:

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/VistaMSNPUpldpt-br.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{153B0808-B58E-40A8-B940-3E0A22BDD488}: NameServer = 200.150.224.35,200.150.224.36

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)

Editado por burn_in_fyre

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

Malwarebytes' Anti-Malware 1.12

Versão do banco de dados: 765

Tipo de Verificação: Completa (A:\|C:\|D:\|)

Objetos verificados: 153216

Tempo decorrido: 31 minute(s), 19 second(s)

Processos da Memória infectados: 0

Módulos de Memória Infectados: 0

Chaves do Registro infectadas: 0

Valores do Registro infectados: 0

Ítens do Registro infectados: 0

Pastas infectadas: 0

Arquivos infectados: 0

Processos da Memória infectados:

(Nenhum ítem malicioso foi detectado)

Módulos de Memória Infectados:

(Nenhum ítem malicioso foi detectado)

Chaves do Registro infectadas:

(Nenhum ítem malicioso foi detectado)

Valores do Registro infectados:

(Nenhum ítem malicioso foi detectado)

Ítens do Registro infectados:

(Nenhum ítem malicioso foi detectado)

Pastas infectadas:

(Nenhum ítem malicioso foi detectado)

Arquivos infectados:

(Nenhum ítem malicioso foi detectado)

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

Deckard's System Scanner v20071014.68

Run by Familia Cabral on 2008-05-19 02:21:50

Computer is in Normal Mode.

--------------------------------------------------------------------------------

-- Last 5 Restore Point(s) --

13: 2008-05-17 20:03:49 UTC - RP176 - Ponto de Verificação Agendado

12: 2008-05-17 02:14:10 UTC - RP175 - Ponto de Verificação Agendado

11: 2008-05-16 04:40:34 UTC - RP174 - Windows Update

10: 2008-05-15 19:30:36 UTC - RP173 - Ponto de Verificação Agendado

9: 2008-05-14 18:58:03 UTC - RP172 - Ponto de Verificação Agendado

-- First Restore Point --

1: 2008-05-08 22:40:40 UTC - RP162 - ????????? Counter-Strike 1.6

Backed up registry hives.

Performed disk cleanup.

-- HijackThis Clone ------------------------------------------------------------

Emulating logfile of Trend Micro HijackThis v2.0.2

Scan saved at 2008-05-19 02:25:40

Platform: Windows Vista Service Pack 1, v.668 (6.00.6001)

MSIE: Internet Explorer (7.00.6000.16386)

Boot mode: Normal

Running processes:

C:\Windows\System32\dwm.exe

C:\Windows\explorer.exe

C:\Program Files\Alwil Software\Avast4\ashDisp.exe

C:\Windows\System32\rundll32.exe

C:\Windows\System32\taskeng.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe

C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe

C:\Program Files\Internet Explorer\ieuser.exe

C:\Users\Familia Cabral\Desktop\dss.exe

C:\Windows\System32\conime.exe

C:\Windows\System32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.clubedohardware.com.br/malware-win32/532951?p=2778265

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

O2 - BHO: Facilitador de Leitor de Link Adobe PDF - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKCU\..\Run: [supporttick] "C:\ProgramData\vgaerrorerror.18fc32"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [Help Creative Meow City] "C:\ProgramData\1 Funk First.1p0ar"

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [x64setup] cmd.exe /c If EXIST "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" regsvr32.exe /s "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [x64set] cmd.exe /c If EXIST "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" REG ADD HKCU\Software\GNU\ffdshow\default /v isSubtitles /t REG_DWORD /d 1 /f (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [x64setup] cmd.exe /c If EXIST "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" regsvr32.exe /s "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [x64set] cmd.exe /c If EXIST "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" REG ADD HKCU\Software\GNU\ffdshow\default /v isSubtitles /t REG_DWORD /d 1 /f (User 'Default user')

O4 - Startup: Registration Prince of Persia T2T.LNK = C:\Program Files\Ubisoft\Prince of Persia T2T\Support\Register\RegistrationReminder.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/VistaMSNPUpldpt-br.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{153B0808-B58E-40A8-B940-3E0A22BDD488}: NameServer = 200.150.224.35,200.150.224.36

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NBService - Unknown owner - C:\Program Files\Nero\Nero 7\Nero

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

--

End of file - 7248 bytes

-- File Associations -----------------------------------------------------------

All associations okay.

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

S3 DCamUSBPremier (USB Video Camera) - c:\windows\system32\drivers\mpixvid.sys

S3 NPPTNT2 - \??\c:\windows\system32\npptnt2.sys

-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 RichVideo (Cyberlink RichVideo Service(CRVS)) - "c:\program files\cyberlink\shared files\richvideo.exe" <Not Verified; ; RichVideo Module>

R3 NMIndexingService - "c:\program files\common files\ahead\lib\nmindexingservice.exe" <Not Verified; Nero AG; Nero Home>

S3 NBService - c:\program files\nero\nero 7\nero backitup\nbservice.exe

-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.

-- Files created between 2008-04-19 and 2008-05-19 -----------------------------

2008-05-19 01:41:45 0 d-------- C:\Users\All Users\Malwarebytes

2008-05-19 01:41:44 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware

2008-05-10 03:00:10 0 d-------- C:\Program Files\OnGame

2008-05-08 19:57:59 0 d-------- C:\Program Files\Valve

2008-05-07 12:46:05 45 ---h----- C:\Windows\dsez3697.dat

2008-05-02 08:25:25 0 d-------- C:\Windows\system32\Kaspersky Lab

2008-04-24 13:47:55 0 d-------- C:\Windows\pss

2008-04-22 03:10:58 0 d-------- C:\Program Files\Panda Security

2008-04-22 01:28:55 0 d-------- C:\Program Files\The Cleaner Free

2008-04-22 01:27:08 0 d-------- C:\Users\All Users\Lavasoft

-- Find3M Report ---------------------------------------------------------------

2008-05-19 01:42:02 0 d-------- C:\Users\Familia Cabral\AppData\Roaming\Malwarebytes

2008-05-18 15:26:51 0 d-------- C:\Users\Familia Cabral\AppData\Roaming\LimeWire

2008-05-15 13:58:14 632782 --a------ C:\Windows\system32\prfh0416.dat

2008-05-15 13:58:14 121294 --a------ C:\Windows\system32\prfc0416.dat

2008-05-13 17:23:19 0 d-------- C:\Program Files\LimeWire

2008-05-06 22:42:10 0 d--h----- C:\Program Files\InstallShield Installation Information

2008-04-30 22:23:23 0 d-------- C:\Program Files\Common Files

2008-04-23 21:46:12 0 d-------- C:\Users\Familia Cabral\AppData\Roaming\uTorrent

2008-04-09 16:19:37 0 d-------- C:\Users\Familia Cabral\AppData\Roaming\Orbit

2008-04-09 08:48:35 0 d-------- C:\Program Files\Messenger Plus! Live

2008-04-08 13:00:14 0 d-------- C:\Program Files\LimeWire Turbo Accelerator

2008-04-08 12:58:21 0 d-------- C:\Program Files\Conduit

2008-04-08 12:58:21 0 d-------- C:\Program Files\Best_Security_Tips

2008-04-08 12:57:42 2560 --a------ C:\Windows\_MSRSTRT.EXE

2008-04-07 09:14:30 0 d-------- C:\Program Files\LimeWireTurbo

2008-04-05 12:50:59 0 d-------- C:\Users\Familia Cabral\AppData\Roaming\LimeWireTurbo

-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [29/03/2008 15:37]

"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [06/07/2007 02:15]

"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [06/07/2007 02:15]

"NvSvc"="C:\Windows\system32\nvsvc.dll" [06/07/2007 02:15]

"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [30/11/2007 03:13]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [22/02/2008 04:25]

"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [23/11/2006 14:10]

"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [12/01/2006 14:40]

"LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" [05/12/2006 21:55]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11/01/2008 22:16]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Supporttick"="C:\ProgramData\vgaerrorerror.18fc32" []

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [30/11/2007 03:07]

"Help Creative Meow City"="C:\ProgramData\1 Funk First.1p0ar" []

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [23/12/2006 17:05]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]

"x64setup"=cmd.exe /c If EXIST "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" regsvr32.exe /s "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax"

"x64set"=cmd.exe /c If EXIST "%programfiles%\VistaCodecPack\filters\MatroskaSplitter.ax" REG ADD HKCU\Software\GNU\ffdshow\default /v isSubtitles /t REG_DWORD /d 1 /f

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"=2 (0x2)

"EnableUIADesktopToggle"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoDFSTab"=1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoDFSTab"=1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

@="IEEE 1394 Bus host controllers"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

@="SBP2 IEEE 1394 Devices"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

@="SecurityDevices"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalService nsi lltdsvc SSDPSRV upnphost SCardSvr w32time EventSystem RemoteRegistry WinHttpAutoProxySvc lanmanworkstation TBS SLUINotify THREADORDER fdrespub netprofm fdphost wcncsvc QWAVE WebClient SstpSvc

LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc TabletInputService wlansvc WPDBusEnum EMDMgmt

LocalServiceNoNetwork PLA DPS BFE mpssvc

LocalServiceNetworkRestricted DHCP eventlog AudioSrv LmHosts wscsvc WPCSvc

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64fed1ef-ac3d-11dc-9f41-001bb994c656}]

Auto\command- F:\MicrosoftPowerPoint.exe

AutoRun\command- C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\MicrosoftPowerPoint.exe

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]

C:\Windows\system32\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]

%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI

-- End of Deckard's System Scanner: finished at 2008-05-19 02:28:09 ------------

Compartilhar este post


Link para o post
Compartilhar em outros sites

Poderia postar um novo log do Kaspersky por gentileza?

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

-------------------------------------------------------------------------------

KASPERSKY ONLINE SCANNER REPORT

Saturday, May 29, 2008 4:24:04 AM

Operating System: Microsoft Windows Vista Home Edition, Service Pack 1, v.668 (Build 6001)

Kaspersky Online Scanner version: 5.0.98.0

Kaspersky Anti-Virus database last update: 24/05/2008

Kaspersky Anti-Virus database records: 799530

-------------------------------------------------------------------------------

Scan Settings:

Scan using the following antivirus database: extended

Scan Archives: true

Scan Mail Bases: true

Scan Target - My Computer:

A:\

C:\

D:\

Scan Statistics:

Total number of scanned objects: 113207

Number of viruses found: 5

Number of infected objects: 7

Number of suspicious objects: 2

Duration of the scan process: 01:02:57

Infected Object Name / Virus Name / Last Action

C:\Boot\BCD Object is locked skipped

C:\Boot\BCD.LOG Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\ASPNETSetup_00000.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\D653F3EC.TMP Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\DFC5A2B2.TMP Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\DMI8583.tmp Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\DMI8BF2.tmp Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\fwtsqmfile00.sqm Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071218-184743-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071218-184747-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071218-195838-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071218-195842-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-010108-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-010128-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-121956-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-122005-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-144239-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-144249-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-155359-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-155407-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-200351-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-200401-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-202642-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071219-202652-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071220-114431-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071220-114440-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071220-194340-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071220-194353-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071220-224823-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071220-224832-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071221-094554-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071221-094602-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071221-155934-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071221-155943-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071221-222627-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071221-222640-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071222-153422-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071222-153440-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071223-233032-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071223-233046-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071224-103141-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071224-103152-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071224-175727-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071224-175735-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071225-154440-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071225-154449-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071226-000147-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071226-000156-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071226-132038-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071226-132047-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071227-031913-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071227-031920-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071227-141022-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071227-141030-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071227-201303-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071227-201311-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071228-102230-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071228-102238-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071229-113344-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071229-113354-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071229-183700-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071229-183708-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071230-113953-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20071230-114000-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080101-233941-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080101-233949-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080102-183223-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080102-183422-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080103-124657-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080103-124705-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080104-104211-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080104-104221-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080105-112914-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080105-112923-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080105-140013-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080105-140022-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080105-154548-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080105-154556-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080106-120016-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080106-120024-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080106-145817-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080106-145825-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080106-171448-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080106-171456-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080107-084244-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080107-084252-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080107-175055-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080107-175104-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080108-223419-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080108-223428-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-012508-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-012520-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-080810-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-080819-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-104821-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-104830-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-231718-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080110-231728-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-002510-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-002520-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-101636-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-101644-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-145554-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-145603-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-163557-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-163606-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-211304-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080111-211314-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080112-102010-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080112-102018-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080112-201849-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080112-201858-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080113-182037-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080113-182046-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080114-093841-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080114-093850-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080114-133406-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080114-133415-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-020518-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-020528-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-092512-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-092522-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-162417-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-162425-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-170030-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-170046-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-204654-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080115-204702-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-003001-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-003010-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-104832-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-104841-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-155521-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-155531-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-222524-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-222534-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-233717-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080116-233726-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-070259-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-070312-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-081340-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-081350-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-083729-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-083739-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-143405-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-143414-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-221944-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-222001-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-224624-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-224700-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-230551-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080117-230612-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080118-000711-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080118-000722-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080118-164133-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080118-164141-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080118-230544-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080118-230553-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080119-101545-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080119-101555-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080119-201309-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080119-201319-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080120-015209-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080120-015220-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080120-132742-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080120-132750-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080120-220658-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080120-220706-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-001041-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-001051-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-130030-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-130040-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-222800-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-222810-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-233633-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080121-233643-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080122-020401-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080122-020410-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080122-155148-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080122-155156-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080123-013252-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\lpksetup-20080123-013344-0.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\MpCmdRun.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\MpSigStub.log Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\TMP000000060250D93408DA9627 Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\TMP00000009D301CDFE443A7DFF Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\TMP0000002DD2AD8650F13C2B6F Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\WinSAT_DX.etl Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\WinSAT_KernelLog.etl Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\WinSAT_StorageAsmt.etl Object is locked skipped

C:\Deckard\System Scanner\backup\Windows\temp\wmsetup.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\report\Proteção residente.txt Object is locked skipped

C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.ilg Object is locked skipped

C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.ilg Object is locked skipped

C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\setup.ilg Object is locked skipped

C:\Program Files\The Cleaner Free\quarantine.zip/C:/Program Files/EA GAMES/Need for Speed Underground 2/rld-nu2k.exe Suspicious: Password-protected-EXE skipped

C:\Program Files\The Cleaner Free\quarantine.zip ZIP: suspicious - 1 skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\History\Low\History.IE5\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1 Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2 Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\UsrClass.dat{c4a8ad7e-ac3c-11dc-a9e0-001bb994c656}.TM.blf Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\UsrClass.dat{c4a8ad7e-ac3c-11dc-a9e0-001bb994c656}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows\UsrClass.dat{c4a8ad7e-ac3c-11dc-a9e0-001bb994c656}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Feeds Cache\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Microsoft\Windows Sidebar\Settings.ini Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Ahead\Nero Home\bl.db Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Ahead\Nero Home\is2.db Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Temp\Cookies\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Temp\History\History.IE5\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Temp\Low\~DFCE42.tmp Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Temp\Low\~DFCE4D.tmp Object is locked skipped

C:\Users\Familia Cabral\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Users\Familia Cabral\AppData\Roaming\Microsoft\Windows\Cookies\Low\index.dat Object is locked skipped

C:\Users\Familia Cabral\Documents\Meus arquivos recebidos\Cheat v3.3.rar/Cheat v3.3/Cv33.dll Infected: not-a-virus:Monitor.Win32.KeyLogger.bw skipped

C:\Users\Familia Cabral\Documents\Meus arquivos recebidos\Cheat v3.3.rar/Cheat v3.3/Project1.exe Infected: not-a-virus:Monitor.Win32.KeyLogger.bw skipped

C:\Users\Familia Cabral\Documents\Meus arquivos recebidos\Cheat v3.3.rar RAR: infected - 2 skipped

C:\Users\Familia Cabral\Music\Mix Gore\Arctic Monkeys - Brianstorm.wma Infected: Trojan-Downloader.WMA.GetCodec.a skipped

C:\Users\Familia Cabral\ntuser.dat Object is locked skipped

C:\Users\Familia Cabral\ntuser.dat.LOG1 Object is locked skipped

C:\Users\Familia Cabral\ntuser.dat.LOG2 Object is locked skipped

C:\Users\Familia Cabral\NTUSER.DAT{024c5571-6a70-11db-8b20-e67c0f776047}.TM.blf Object is locked skipped

C:\Users\Familia Cabral\NTUSER.DAT{024c5571-6a70-11db-8b20-e67c0f776047}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Users\Familia Cabral\NTUSER.DAT{024c5571-6a70-11db-8b20-e67c0f776047}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Windows\Debug\PASSWD.LOG Object is locked skipped

C:\Windows\Debug\WIA\wiatrace.log Object is locked skipped

C:\Windows\Logs\CBS\CBS.log Object is locked skipped

C:\Windows\Logs\CBS\CBS.persist.log Object is locked skipped

C:\Windows\Logs\DPX\setupact.log Object is locked skipped

C:\Windows\Logs\DPX\setuperr.log Object is locked skipped

C:\Windows\MEMORY.DMP Object is locked skipped

C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe.config Object is locked skipped

C:\Windows\Panther\UnattendGC\diagerr.xml Object is locked skipped

C:\Windows\Panther\UnattendGC\diagwrn.xml Object is locked skipped

C:\Windows\Panther\UnattendGC\setupact.log Object is locked skipped

C:\Windows\Panther\UnattendGC\setuperr.log Object is locked skipped

C:\Windows\security\database\secedit.sdb Object is locked skipped

C:\Windows\SoftwareDistribution\EventCache\{CD6B2BA0-71C4-42A7-AF71-782F20D5F858}.bin Object is locked skipped

C:\Windows\SoftwareDistribution\ReportingEvents.log Object is locked skipped

C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 Object is locked skipped

C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 Object is locked skipped

C:\Windows\System32\catroot2\edb.log Object is locked skipped

C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb Object is locked skipped

C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb Object is locked skipped

C:\Windows\System32\LogFiles\Scm\SCM.EVM Object is locked skipped

C:\Windows\System32\LogFiles\SQM\SQMLogger_2008-5-24-1-0-0_0.etl Object is locked skipped

C:\Windows\System32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped

C:\Windows\System32\restore\MachineGuid.txt Object is locked skipped

C:\Windows\System32\spool\SpoolerETW.etl Object is locked skipped

C:\Windows\System32\sysprep\Panther\diagerr.xml Object is locked skipped

C:\Windows\System32\sysprep\Panther\diagwrn.xml Object is locked skipped

C:\Windows\System32\sysprep\Panther\setupact.log Object is locked skipped

C:\Windows\System32\sysprep\Panther\setuperr.log Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\0296C47314AB746EC35476488248FCD9.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\040270F850D5C3C91057DDDA2DA294D8.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\0A9DBC92D554324656F61F9862679F27.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\0DF617D6737A7561E732F853792261C3.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\259CE2EF94D46CE52F25BBF65A2C2B7C.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\26C097A9392F8C541AD42E89B7909073.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\2A811E5CCC22CC9D7AE2B04EF0402688.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\2AA23BB86A5EBD8BC2D820944E55B233.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\2D57A7682ACD19214C258D31A06D008F.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\3460B7617E0429A960E481B197F238A3.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\3DC0BABDCA20E5E319117C21BD4BD795.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\494C62FAA08CD5217399BAA555FF491B.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\4A01E0F376B5833EBA98F0D1D5F60CD1.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\4B471F64BAF831EC7945C820FD5A16E5.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\4DC104AD0FB12FAEC72576F033043DB3.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\54A8F7AD64093EE99C733854AAD3552D.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\5774C77265BE4C55B5C6C9718979E015.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\5966D45C7B25EACA46E87DD8E5703964.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\61CE0C67A84883CF7AC2277902BD495E.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\69554D930FCA40B0304B9A43A8036F2D.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\707CF7635BB78ACE301603FC05A70919.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\72F867EF62976CE9F70993FF3E68A4EB.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\73F40F3121ACE1D0E402D0E8391A0F5C.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\75054C3771DF289038069A9BB1C1FB6E.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\75E761BE943C23BC4A5B566C8BF93A38.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\7851AF96EA828F912853F32DB0D96138.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\7F417E1A6D819A9B2FEB55DA6858EA0A.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\8C46D171BF781F913F748C7B459462A8.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\8D5F358278D013E3ACE4B83971C4726E.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\903E49C444C46FEF5F2C3A189C9CEF71.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\9A72EE7775E8021F75961342B8AFD1B4.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\9AD3182A2F39A3E091E15109132EC6CC.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\9E06E4FE97F0CBB8D659894823F805D7.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\AA6E0E396C238977CA909EFD82299737.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\ADB2352B5D095374B56B19476EBCED3F.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\BBF206490BAA431B592F9A13534F43F6.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\BE81B2C0741907C1FC1C42B6223E59AD.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\DE391013DA56ABA39FFF40A9ABDF052F.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\DF80FD3849FFF74B4BF43E2EA8ADEC8A.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\DFB9AD54AC2D3B8122567AAD3BF3EB7F.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\E04DE4CDFEC284A342159BB920976701.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\E737DE61441445E1FDFCA45EF5E7D987.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\E9D8A460B2C986DD5FF19F299F4A27EC.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\EC45C70F2A3D9DED718E71631C38E2FE.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\F01326692CC5736EBAC31B9FC2381CF2.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\F619524F41FF48CC71B3F727D55AC71E.mof Object is locked skipped

C:\Windows\System32\wbem\AutoRecover\F81E6BEBC3067C406E6C491608474198.mof Object is locked skipped

C:\Windows\System32\wbem\Logs\WMITracing.log Object is locked skipped

C:\Windows\System32\wbem\repository\INDEX.BTR Object is locked skipped

C:\Windows\System32\wbem\repository\MAPPING1.MAP Object is locked skipped

C:\Windows\System32\wbem\repository\MAPPING2.MAP Object is locked skipped

C:\Windows\System32\wbem\repository\OBJECTS.DATA Object is locked skipped

C:\Windows\System32\winevt\Logs\Antivirus.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Application.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\HardwareEvents.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Internet Explorer.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Key Management Service.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-CorruptedFileRecovery-Client%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-CorruptedFileRecovery-Server%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-DateTimeControlPanel%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Forwarding%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WDI%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-ParentalControls%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Metrics.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Leak-Diagnostic%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RDPClient%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Wired-AutoConfig%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\ODiag.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\OSession.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Security.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Setup.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\System.evtx Object is locked skipped

C:\Windows\Tasks\SCHEDLGU.TXT Object is locked skipped

C:\Windows\WindowsUpdate.log Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16386_none_cef7ceb03914a67f\dnary.xsd Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.17052_none_d0fa986c36265c15\dnary.xsd Object is locked skipped

D:\scoop2004.exe/data0010 Infected: not-a-virus:Client-IRC.Win32.mIRC.614 skipped

D:\scoop2004.exe NSIS: infected - 1 skipped

D:\ts-3-final.exe Infected: not-a-virus:FraudTool.Win32.MasterAntiVirus.a skipped

Scan process completed.

Compartilhar este post


Link para o post
Compartilhar em outros sites

As únicas infecções apontadas em seu log são:

"C:\Users\Familia Cabral\Documents\Meus arquivos recebidos\Cheat v3.3.rar"

"C:\Users\Familia Cabral\Music\Mix Gore\Arctic Monkeys - Brianstorm.wma"

"D:\ts-3-final.exe"

Recomendo que apague esses arquivos.

Algum problema com o computador?

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

bom, ele está um pouco lento, muitas vezes eu abro 1 arquivo ou um programa e ele fica um bom tempo sem resposta, tenho q aguardar uns 3 minutos pra q ele execute o que eu mandei, isso ocorre mais com o explorer, a navegação em geral está lenta, acho que esse é o real problema\incomodo.

Obrigado pela ajuda.

Editado por burn_in_fyre

Compartilhar este post


Link para o post
Compartilhar em outros sites

Sugiro que rode o CCleaner para fazer uma limpeza em sua máquina. Faça o download dele aqui CCleaner

  • Abra o programa e clique em Executar Limpeza;
  • Após isto, clique em Erros >> Procurar erros >> Corrigir Erros

Informe se houve melhorias.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

Nossa, foram encontrados num total de 3 scans 134 erros no primeiro, 32 erros no segundo e 1 no terceiro, exclui 1 inicialização automatica e parece que está tudo otimo agora.

Muito obrigado, desculpe o transtorno e continue assim, apreciei muito a sua atenção =D

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×