Ir ao conteúdo
  • Cadastre-se
Entre para seguir isso  
Nattal Jacksonn

Internet explorer abre Várias Páginas sozinho

Recommended Posts

Daí galera beleza.

Andei lendo vários tópicos acerca desse tema inclusive sobre o third lies itch (que penso que tirei na marra do registro) e quando penso que não eis que surgem novamente as páginas abertas no IE. Eu uso o Avant Browser como navegador. Ví que tem um arquivo chamado WAYJUNGS tbém. Tentei antes de postar tirar com AD-AWARE, COMBOFIX (não rodou) e KILLBOX (não usei). Depois de apagar o registro usei o CCLEANER pra limpar os registros e os cookies. Mas não resolveu. Lí o tutorial de procedimento e abaixo estou enviando os LOGS para análise de vocês.

Grato por enquanto,

Nattal

1) DDS.TXT

DDS (Ver_09-02-01.01) - NTFSx86

Run by Nattal at 15:34:25.59 on 2009-02-27

Internet Explorer: 7.0.5730.13

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1046.18.2015.1351 [GMT -3:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)

AV: Lavasoft Ad-Watch Live! Anti-vírus *On-access scanning disabled* (Updated)

============== Running Processes ===============

C:\ARQUIV~1\GbPlugin\GbpSv.exe

C:\WINDOWS\system32\svchost -k DcomLaunch

C:\WINDOWS\system32\svchost -k rpcss

C:\Arquivos de programas\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Arquivos de programas\HP\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\tsnpstd3.exe

C:\Arquivos de programas\Windows Defender\MSASCui.exe

C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe

C:\ARQUIV~1\AVG\AVG8\avgwdsvc.exe

C:\WINDOWS\system32\svchost.exe -k hpdevmgmt

C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\system32\VTtrayp.exe

C:\WINDOWS\vsnpstd3.exe

C:\WINDOWS\System32\svchost.exe -k HPZ12

C:\Arquivos de programas\NewSoft\Presto! PVR\Monitor.exe

C:\WINDOWS\system32\IoctlSvc.exe

C:\WINDOWS\System32\svchost.exe -k HPZ12

C:\ARQUIV~1\Nokia\NOKIAP~1\LAUNCH~1.EXE

C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Messenger\msmsgs.exe

C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexStoreSvr.exe

C:\ARQUIV~1\AVG\AVG8\avgemc.exe

C:\ARQUIV~1\AVG\AVG8\avgrsx.exe

C:\Arquivos de programas\HP\Digital Imaging\bin\hpqtra08.exe

C:\ARQUIV~1\AVG\AVG8\avgnsx.exe

C:\Arquivos de programas\AVG\AVG8\avgcsrvx.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\Arquivos de programas\Arquivos comuns\PCSuite\Services\ServiceLayer.exe

C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexingService.exe

C:\WINDOWS\System32\alg.exe

C:\Arquivos de programas\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Avant Browser\avant.exe

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Documents and Settings\Nattal.HOME\Desktop\dds.scr

C:\WINDOWS\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = https://www.google.com/accounts/ServiceLogin?service=orkut&hl=pt-BR&rm=false&continue=http%3A%2F%2Fwww.orkut.com%2FRedirLogin.aspx%3Fmsg%3D0%26page%3Dhttp%253A%252F%252Fwww.orkut.com.br%252FHome.aspx&cd=BR&passive=true&skipvpage=true&sendvemail=false

BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - c:\arquivos de programas\orbitdownloader\orbitcth.dll

BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\arquivos de programas\hp\smart web printing\hpswp_printenhancer.dll

BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\arquivos de programas\hp\smart web printing\hpswp_framework.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\arquivos de programas\arquivos comuns\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: ssh2 Class: {2e3c3651-b19c-4dd9-a979-901ec3e930af} - c:\arquivos de programas\scpad\scpsssh2.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\arquivos de programas\avg\avg8\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\arquivos de programas\microsoft\search enhancement pack\search helper\SearchHelper.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\arquivos de programas\microsoft office\office12\GrooveShellExtensions.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540003} - c:\arquivos de programas\gbplugin\gbiehcef.dll

BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\arquivos de programas\windows live\toolbar\wltcore.dll

TB: Grab Pro: {c55bbcd6-41ad-48ad-9953-3609c48eacc7} - c:\arquivos de programas\orbitdownloader\GrabPro.dll

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\arquivos de programas\windows live\toolbar\wltcore.dll

TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [MSMSGS] "c:\arquivos de programas\messenger\msmsgs.exe" /background

uRun: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\arquivos de programas\arquivos comuns\nero\lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

uRun: [GlobalInside] c:\docume~1\nattal~1.hom\dadosd~1\inforo~1\wayjugs.exe

mRun: [HP Software Update] c:\arquivos de programas\hp\hp software update\HPWuSchd2.exe

mRun: [tsnpstd3] c:\windows\tsnpstd3.exe

mRun: [Windows Defender] "c:\arquivos de programas\windows defender\MSASCui.exe" -hide

mRun: [GrooveMonitor] "c:\arquivos de programas\microsoft office\office12\GrooveMonitor.exe"

mRun: [NeroFilterCheck] c:\arquivos de programas\arquivos comuns\nero\lib\NeroCheck.exe

mRun: [NBKeyScan] "c:\arquivos de programas\nero\nero8\nero backitup\NBKeyScan.exe"

mRun: [soundMan] SOUNDMAN.EXE

mRun: [VTTimer] VTTimer.exe

mRun: [VTTrayp] VTtrayp.exe

mRun: [snpstd3] c:\windows\vsnpstd3.exe

mRun: [AVG8_TRAY] c:\arquiv~1\avg\avg8\avgtray.exe

mRun: [ChangeFilterMerit] c:\arquivos de programas\newsoft\presto! pvr\ChangeFilterMerit.exe

mRun: [Presto! PVR Monitor] c:\arquivos de programas\newsoft\presto! pvr\Monitor.exe

mRun: [PCSuiteTrayApplication] c:\arquiv~1\nokia\nokiap~1\LAUNCH~1.EXE -startup

mRun: [Ad-Watch] c:\arquivos de programas\lavasoft\ad-aware\AAWTray.exe

mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto

dRun: [DWQueuedReporting] "c:\arquiv~1\arquiv~1\micros~1\dw\dwtrig20.exe" -t

StartupFolder: c:\docume~1\alluse~1.win\menuin~1\progra~1\inicia~1\hpdigi~1.lnk - c:\arquivos de programas\hp\digital imaging\bin\hpqtra08.exe

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\arquivos de programas\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\arquiv~1\micros~2\office12\ONBttnIE.dll

IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\arquivos de programas\hp\smart web printing\hpswp_extensions.dll

IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\arquivos de programas\hp\smart web printing\hpswp_extensions.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~2\office12\REFIEBAR.DLL

DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab

DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab

DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} - hxxps://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab

DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} - hxxp://download.gamedesire.com/g_bin/eng/poker_2_0_0_49.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} - hxxp://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931} - hxxps://imagem.caixa.gov.br/cab/gbpdist.cab

TCP: {C5BDB2CB-7914-45A1-BAAC-CCDF1A3901C4} = 200.204.0.10 200.204.0.138

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\arquivos de programas\microsoft office\office12\GrooveSystemServices.dll

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg8\avgpp.dll

Notify: GbPluginCef - c:\arquivos de programas\gbplugin\gbiehcef.dll

Notify: avgrsstarter - avgrsstx.dll

SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - c:\arquivos de programas\scpad\scpLIB.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

STS: compIB Class: {a3717295-941d-416f-9384-ed1736729f1c} - c:\arquivos de programas\scpad\scpLIB.dll

SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\arquiv~1\wifd1f~1\MpShHook.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\arquivos de programas\microsoft office\office12\GrooveShellExtensions.dll

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399003} - c:\arquivos de programas\gbplugin\gbiehcef.dll

============= SERVICES / DRIVERS ===============

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2009-1-7 31296]

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-2-26 64160]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2009-2-26 28544]

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-4 325128]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-4 27656]

R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-10-4 107272]

R2 avg8emc;AVG Free8 E-mail Scanner;c:\arquiv~1\avg\avg8\avgemc.exe [2008-10-4 903960]

R2 avg8wd;AVG Free8 WatchDog;c:\arquiv~1\avg\avg8\avgwdsvc.exe [2008-10-4 298264]

R2 GbpSv;Gbp Service;c:\arquiv~1\gbplugin\GbpSv.exe [2008-9-26 52808]

R2 SeaPort;SeaPort;c:\arquivos de programas\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-1-14 226656]

R2 WinDefend;Windows Defender;c:\arquivos de programas\windows defender\MsMpEng.exe [2006-11-3 13592]

S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\arquivos de programas\lavasoft\ad-aware\AAWService.exe [2009-1-18 950096]

S3 AS11Loader;AS11Loader.Sys AS11 USB DTV firmware download driver;c:\windows\system32\drivers\AS11Loader.sys [2008-11-15 20992]

S3 AsicenUSBDTV_DM011;Asicen_DM011 USB DTV(ASV5211) service for BDA;c:\windows\system32\drivers\AsicenUSBDTVBDA_DM011.sys [2008-11-15 62848]

S3 usb2vcom;USB Data Cable;c:\windows\system32\drivers\usb2vcom.sys [2008-9-16 28704]

=============== Created Last 30 ================

2009-02-27 09:37 400,896 a------- c:\windows\system32\CF21125.exe

2009-02-27 09:37 <DIR> --d----- C:\ComboFix

2009-02-27 09:26 <DIR> a-dshr-- C:\cmdcons

2009-02-27 09:21 161,792 a------- c:\windows\SWREG.exe

2009-02-27 09:21 98,816 a------- c:\windows\sed.exe

2009-02-27 09:21 400,896 a------- c:\windows\system32\CF18682.exe

2009-02-27 01:13 15,688 a------- c:\windows\system32\lsdelete.exe

2009-02-26 23:59 64,160 a------- c:\windows\system32\drivers\Lbd.sys

2009-02-26 23:53 <DIR> -cd-h--- c:\docume~1\alluse~1.win\dadosd~1\{83C91755-2546-441D-AC40-9A6B4B860800}

2009-02-26 20:16 <DIR> --d----- c:\arquivos de programas\Lavasoft

2009-02-26 18:26 <DIR> --d----- C:\!KillBox

2009-02-26 12:08 28,544 a------- c:\windows\system32\drivers\pavboot.sys

2009-02-26 12:08 <DIR> --d----- c:\arquivos de programas\Panda Security

2009-02-26 00:30 <DIR> --d----- c:\docume~1\nattal~1.hom\dadosd~1\Avant Profiles

2009-02-26 00:30 <DIR> --d----- c:\arquivos de programas\Avant Browser

2009-02-25 14:19 <DIR> --d----- c:\docume~1\alluse~1.win\dadosd~1\Messenger Plus!

2009-02-22 13:36 <DIR> --d----- c:\arquivos de programas\Adverts

2009-02-22 13:22 <DIR> --d----- c:\arquivos de programas\Info Road Curb

2009-02-22 13:10 <DIR> --d----- c:\docume~1\alluse~1.win\dadosd~1\third lies itch ford

2009-02-22 13:10 <DIR> --d----- c:\docume~1\nattal~1.hom\dadosd~1\Info Road Curb

2009-02-22 13:09 <DIR> --d----- c:\arquivos de programas\Circle Devlopement

2009-02-22 13:09 <DIR> --d----- c:\arquivos de programas\Messenger Plus! Live

2009-02-21 01:22 <DIR> --d----- c:\arquivos de programas\Free WMA to MP3 Converter

2009-02-20 20:27 <DIR> --d----- c:\arquivos de programas\Microsoft Office Outlook Connector

2009-02-19 18:19 90,112 a------- c:\windows\system32\QuickTimeVR.qtx

2009-02-19 18:19 57,344 a------- c:\windows\system32\QuickTime.qts

2009-02-14 12:21 <DIR> --d----- c:\arquivos de programas\JanSoft

2009-02-14 10:54 <DIR> --d----- C:\Multimedia Files

2009-02-14 10:53 <DIR> --d----- c:\arquivos de programas\Microsoft GIF Animator

2009-02-07 17:07 <DIR> --d----- c:\docume~1\nattal~1.hom\dadosd~1\D-Book

2009-02-07 17:07 472 a------- c:\docume~1\nattal~1.hom\dadosd~1\momento_log.dat

2009-02-07 17:06 <DIR> --d----- c:\arquivos de programas\Digipix D-Book

2009-02-07 07:31 253,952 -------- c:\windows\Setup1.exe

2009-02-07 07:31 74,240 a------- c:\windows\ST6UNST.EXE

2009-02-06 19:14 308,088 a------- c:\windows\WLXPGSS.SCR

2009-02-06 18:52 49,504 a------- c:\windows\system32\sirenacm.dll

==================== Find3M ====================

2009-02-20 20:27 428,340 a------- c:\windows\system32\perfh016.dat

2009-02-20 20:27 68,408 a------- c:\windows\system32\perfc016.dat

2009-02-11 17:30 152,122 a------- c:\windows\hpoins14.dat

2009-01-31 16:58 325,128 a------- c:\windows\system32\drivers\avgldx86.sys

2009-01-31 16:58 10,520 a------- c:\windows\system32\avgrsstx.dll

2009-01-31 16:58 107,272 a------- c:\windows\system32\drivers\avgtdix.sys

2009-01-27 14:51 31,296 a------- c:\windows\system32\drivers\GbpKm.sys

2008-12-20 19:47 826,368 a------- c:\windows\system32\wininet.dll

2008-09-10 17:56 32,768 a--sh--- c:\windows\system32\config\systemprofile\configurações locais\histórico\history.ie5\mshist012008091020080911\index.dat

============= FINISH: 15:35:01.39 ===============

2) GMER.TXT

GMER 1.0.14.14536 - http://www.gmer.net

Rootkit scan 2009-02-27 15:48:58

Windows 5.1.2600 Service Pack 3

---- Devices - GMER 1.0.14 ----

AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Ip ntoskrnl.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Tcp ntoskrnl.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Tcp Lbd.sys (Boot Driver/Lavasoft AB)

AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Udp ntoskrnl.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Udp Lbd.sys (Boot Driver/Lavasoft AB)

AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\RawIp ntoskrnl.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\RawIp Lbd.sys (Boot Driver/Lavasoft AB)

---- EOF - GMER 1.0.14 ----

O DDS tbém gerou um outro arquivo chamado ATTACH.TXT e caso precisem está salvo no desktop.

Aguardo,

Grato,

Nattal:)

Compartilhar este post


Link para o post
Compartilhar em outros sites

Faça o download do Lop Uninstaller

Se ao tentar efetuar o Download, aparecer alguma mensagem de restrição, siga os seguintes passos:

  • Abra o Internet Explorer, clique em Ferramentas em seguida Opções da Internet, clique na guia Segurança clique em Sites Confiáveis e em seguida clique em Sites, no campo Adicionar este site à zona coloque:
    http://lop.com e clique em Adicionar
  • Desmarque a opção: Exigir Verificação do Servidor(https)
  • Clique em Ok em todas as janelas e tente realizar o download novamente.

Se o seu antivírus detectar algum problema no arquivo, ignore. O arquivo é seguro.

Desabilite seu antivírus e qualquer anti spyware. Rode-o. Coloque os números e confirme.

  • Abra novamente o Internet Explorer, clique em Ferramentas em seguida Opções da Internet, clique na guia Segurança clique em Sites Confiáveis em seguida clique em Sites.
  • Clique em: http://lop.com e clique em Remover.
  • Clique em Ok em todas as janelas.

Faça o download do findlop

Tire os arquivos do ZIP para qualquer pasta.

Rode o findlop.bat.

Poste o arquivo c:\findlop.txt em sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Renato, tudo beleza?

Abra novamente o Internet Explorer, clique em Ferramentas em seguida Opções da Internet, clique na guia Segurança clique em Sites Confiáveis em seguida clique em Sites.

Clique em: http://lop.com e clique em Remover.

Clique em Ok em todas as janelas.

Nessa opção no Avant Browser (que eu uso) estava em branco. No IE tava escrito assim: runonce.msn.com (no lugar de lop.com). Quando eu abrí o IE a página que entrou estava assim: runonce.msn.com/runonce3.asp. Espero que ajude em alguma coisa.

Segue o TXT

Grato,

Nattal

[TRACE] Enumerating jobs and queues

[TRACE] Activating job 'Ad-Aware Update (Weekly).job'

[TRACE] Printing all job properties

ApplicationName: 'C:\Arquivos de programas\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe'

Parameters: 'update all silent'

WorkingDirectory: 'C:\Arquivos de programas\Lavasoft\Ad-Aware\'

Comment: 'Esta opção efectuará uma actualização agendada com Ad-Aware'

Creator: 'SYSTEM'

Priority: NORMAL

MaxRunTime: 259200000 (3d 0:00:00)

IdleWait: 10

IdleDeadline: 60

MostRecentRun: 00/00/0000 0:00:00

NextRun: 03/02/2009 23:59:00

StartError: SCHED_S_TASK_HAS_NOT_RUN

ExitCode: 0

Status: SCHED_S_TASK_HAS_NOT_RUN

ScheduledWorkItem Flags:

DeleteWhenDone = 0

Suspend = 0

StartOnlyIfIdle = 0

KillOnIdleEnd = 0

RestartOnIdleResume = 0

DontStartIfOnBatteries = 0

KillIfGoingOnBatteries = 0

RunOnlyIfLoggedOn = 0

SystemRequired = 0

Hidden = 0

TaskFlags: 0

1 Trigger

Trigger 0:

Type: Weekly

WeeksInterval: 1

DaysOfTheWeek: .M..R..

StartDate: 02/26/2009

EndDate: 00/00/0000

StartTime: 23:59

MinutesDuration: 0

MinutesInterval: 0

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

[TRACE] Activating job 'MP Scheduled Scan.job'

[TRACE] Printing all job properties

ApplicationName: 'C:\Arquivos de programas\Windows Defender\MpCmdRun.exe'

Parameters: 'Scan -RestrictPrivileges'

WorkingDirectory: ''

Comment: 'Scheduled Scan'

Creator: 'SYSTEM'

Priority: NORMAL

MaxRunTime: 259200000 (3d 0:00:00)

IdleWait: 10

IdleDeadline: 60

MostRecentRun: 00/00/0000 0:00:00

NextRun: 03/01/2009 1:45:00

StartError: SCHED_S_TASK_HAS_NOT_RUN

ExitCode: 0

Status: SCHED_S_TASK_HAS_NOT_RUN

ScheduledWorkItem Flags:

DeleteWhenDone = 0

Suspend = 0

StartOnlyIfIdle = 0

KillOnIdleEnd = 0

RestartOnIdleResume = 0

DontStartIfOnBatteries = 1

KillIfGoingOnBatteries = 0

RunOnlyIfLoggedOn = 0

SystemRequired = 0

Hidden = 1

TaskFlags: 0

1 Trigger

Trigger 0:

Type: Daily

DaysInterval: 1

StartDate: 02/28/2009

EndDate: 00/00/0000

StartTime: 01:45

MinutesDuration: 0

MinutesInterval: 0

Flags:

HasEndDate = 0

KillAtDuration = 0

Disabled = 0

Obrigado Novamente

Compartilhar este post


Link para o post
Compartilhar em outros sites

Não entendi.

Você conseguiu ou não baixar o Lop Uninstaller?

Compartilhar este post


Link para o post
Compartilhar em outros sites

Sim, fiz todo o procedimento. Só agora entendí o porque o lop.com não estava em sites confiáveis. É porque eu não fiz o procedimento de adicionar. (Não torço pra Lusa, mas dei uma de burrinho). VIVA A LUSA, VIVA! VIVA! VIVA! Desculpe se ofendí alguém. Mas falando sério, fiz todo o procedimento como o descrito. Será que eu esquecí de alguma coisa.

Obrigado mais uma vez Renato.

Compartilhar este post


Link para o post
Compartilhar em outros sites
(Não torço pra Lusa, mas dei uma de burrinho). VIVA A LUSA, VIVA! VIVA! VIVA!

O outro moderador de Remoção de Malwares é português e se fosse ele analisando este tópico poderia se sentir ofendido, então recomendo cautela com piadas deste cunho, lembre-se que há pessoas de outros países por aqui.

Poste um novo log do DDS.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Renato beleza!!!

Mas nada a ver com ofensas porque é apelido carinhoso do torcedor assim como o time do Taubaté que é apelidado de Burro da Central, o Palmeiras PORCO e assim vai.

Segue o LOG

DDS (Ver_09-02-01.01) - NTFSx86

Run by Nattal at 0:38:58,78 on dom 01/03/2009

Internet Explorer: 7.0.5730.13

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2015.1446 [GMT -3:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)

AV: Lavasoft Ad-Watch Live! Anti-vírus *On-access scanning disabled* (Updated)

============== Running Processes ===============

C:\ARQUIV~1\GbPlugin\GbpSv.exe

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\Arquivos de programas\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Arquivos de programas\HP\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\tsnpstd3.exe

C:\Arquivos de programas\Windows Defender\MSASCui.exe

C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe

C:\ARQUIV~1\AVG\AVG8\avgwdsvc.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\svchost.exe -k hpdevmgmt

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\system32\VTtrayp.exe

C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe

C:\WINDOWS\vsnpstd3.exe

C:\Arquivos de programas\NewSoft\Presto! PVR\Monitor.exe

C:\ARQUIV~1\Nokia\NOKIAP~1\LAUNCH~1.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\System32\svchost.exe -k HPZ12

C:\Arquivos de programas\Messenger\msmsgs.exe

C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexStoreSvr.exe

C:\WINDOWS\system32\IoctlSvc.exe

C:\WINDOWS\System32\svchost.exe -k HPZ12

C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Arquivos de programas\HP\Digital Imaging\bin\hpqtra08.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\ARQUIV~1\AVG\AVG8\avgemc.exe

C:\ARQUIV~1\AVG\AVG8\avgrsx.exe

C:\Arquivos de programas\AVG\AVG8\avgcsrvx.exe

C:\Arquivos de programas\Arquivos comuns\PCSuite\Services\ServiceLayer.exe

C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexingService.exe

C:\Arquivos de programas\HP\Digital Imaging\bin\hpqSTE08.exe

C:\ARQUIV~1\AVG\AVG8\avgnsx.exe

C:\WINDOWS\explorer.exe

C:\Arquivos de programas\Avant Browser\avant.exe

C:\Documents and Settings\Nattal.HOME\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = https://www.google.com/accounts/ServiceLogin?service=orkut&hl=pt-BR&rm=false&continue=http%3A%2F%2Fwww.orkut.com%2FRedirLogin.aspx%3Fmsg%3D0%26page%3Dhttp%253A%252F%252Fwww.orkut.com.br%252FHome.aspx&cd=BR&passive=true&skipvpage=true&sendvemail=false

BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - c:\arquivos de programas\orbitdownloader\orbitcth.dll

BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\arquivos de programas\hp\smart web printing\hpswp_printenhancer.dll

BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\arquivos de programas\hp\smart web printing\hpswp_framework.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\arquivos de programas\arquivos comuns\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: ssh2 Class: {2e3c3651-b19c-4dd9-a979-901ec3e930af} - c:\arquivos de programas\scpad\scpsssh2.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\arquivos de programas\avg\avg8\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\arquivos de programas\microsoft\search enhancement pack\search helper\SearchHelper.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\arquivos de programas\microsoft office\office12\GrooveShellExtensions.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540003} - c:\arquivos de programas\gbplugin\gbiehcef.dll

BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\arquivos de programas\windows live\toolbar\wltcore.dll

TB: Grab Pro: {c55bbcd6-41ad-48ad-9953-3609c48eacc7} - c:\arquivos de programas\orbitdownloader\GrabPro.dll

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\arquivos de programas\windows live\toolbar\wltcore.dll

TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [MSMSGS] "c:\arquivos de programas\messenger\msmsgs.exe" /background

uRun: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\arquivos de programas\arquivos comuns\nero\lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

mRun: [HP Software Update] c:\arquivos de programas\hp\hp software update\HPWuSchd2.exe

mRun: [tsnpstd3] c:\windows\tsnpstd3.exe

mRun: [Windows Defender] "c:\arquivos de programas\windows defender\MSASCui.exe" -hide

mRun: [GrooveMonitor] "c:\arquivos de programas\microsoft office\office12\GrooveMonitor.exe"

mRun: [NeroFilterCheck] c:\arquivos de programas\arquivos comuns\nero\lib\NeroCheck.exe

mRun: [NBKeyScan] "c:\arquivos de programas\nero\nero8\nero backitup\NBKeyScan.exe"

mRun: [soundMan] SOUNDMAN.EXE

mRun: [VTTimer] VTTimer.exe

mRun: [VTTrayp] VTtrayp.exe

mRun: [snpstd3] c:\windows\vsnpstd3.exe

mRun: [AVG8_TRAY] c:\arquiv~1\avg\avg8\avgtray.exe

mRun: [ChangeFilterMerit] c:\arquivos de programas\newsoft\presto! pvr\ChangeFilterMerit.exe

mRun: [Presto! PVR Monitor] c:\arquivos de programas\newsoft\presto! pvr\Monitor.exe

mRun: [PCSuiteTrayApplication] c:\arquiv~1\nokia\nokiap~1\LAUNCH~1.EXE -startup

mRun: [Ad-Watch] c:\arquivos de programas\lavasoft\ad-aware\AAWTray.exe

dRun: [DWQueuedReporting] "c:\arquiv~1\arquiv~1\micros~1\dw\dwtrig20.exe" -t

StartupFolder: c:\docume~1\alluse~1.win\menuin~1\progra~1\inicia~1\hpdigi~1.lnk - c:\arquivos de programas\hp\digital imaging\bin\hpqtra08.exe

StartupFolder: c:\docume~1\alluse~1.win\menuin~1\progra~1\inicia~1\TERRAA~1.LNK -

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\arquivos de programas\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\arquiv~1\micros~2\office12\ONBttnIE.dll

IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\arquivos de programas\hp\smart web printing\hpswp_extensions.dll

IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\arquivos de programas\hp\smart web printing\hpswp_extensions.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~2\office12\REFIEBAR.DLL

DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab

DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab

DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} - hxxps://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab

DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} - hxxp://download.gamedesire.com/g_bin/eng/poker_2_0_0_49.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} - hxxp://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931} - hxxps://imagem.caixa.gov.br/cab/gbpdist.cab

TCP: {C5BDB2CB-7914-45A1-BAAC-CCDF1A3901C4} = 200.204.0.10 200.204.0.138

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\arquivos de programas\microsoft office\office12\GrooveSystemServices.dll

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg8\avgpp.dll

Notify: GbPluginCef - c:\arquivos de programas\gbplugin\gbiehcef.dll

Notify: avgrsstarter - avgrsstx.dll

SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - c:\arquivos de programas\scpad\scpLIB.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

STS: compIB Class: {a3717295-941d-416f-9384-ed1736729f1c} - c:\arquivos de programas\scpad\scpLIB.dll

SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\arquiv~1\wifd1f~1\MpShHook.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\arquivos de programas\microsoft office\office12\GrooveShellExtensions.dll

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399003} - c:\arquivos de programas\gbplugin\gbiehcef.dll

============= SERVICES / DRIVERS ===============

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2009-1-7 31296]

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-2-26 64160]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2009-2-26 28544]

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-4 325128]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-4 27656]

R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-10-4 107272]

R2 avg8emc;AVG Free8 E-mail Scanner;c:\arquiv~1\avg\avg8\avgemc.exe [2008-10-4 903960]

R2 avg8wd;AVG Free8 WatchDog;c:\arquiv~1\avg\avg8\avgwdsvc.exe [2008-10-4 298264]

R2 GbpSv;Gbp Service;c:\arquiv~1\gbplugin\GbpSv.exe [2008-9-26 52808]

R2 SeaPort;SeaPort;c:\arquivos de programas\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-1-14 226656]

R2 WinDefend;Windows Defender;c:\arquivos de programas\windows defender\MsMpEng.exe [2006-11-3 13592]

S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\arquivos de programas\lavasoft\ad-aware\AAWService.exe [2009-1-18 950096]

S3 AS11Loader;AS11Loader.Sys AS11 USB DTV firmware download driver;c:\windows\system32\drivers\AS11Loader.sys [2008-11-15 20992]

S3 AsicenUSBDTV_DM011;Asicen_DM011 USB DTV(ASV5211) service for BDA;c:\windows\system32\drivers\AsicenUSBDTVBDA_DM011.sys [2008-11-15 62848]

S3 usb2vcom;USB Data Cable;c:\windows\system32\drivers\usb2vcom.sys [2008-9-16 28704]

=============== Created Last 30 ================

2009-02-27 17:02 <DIR> --d----- C:\ComboFix

2009-02-27 15:47 250 a------- c:\windows\gmer.ini

2009-02-27 09:37 400,896 a------- c:\windows\system32\CF21125.exe

2009-02-27 09:26 <DIR> a-dshr-- C:\cmdcons

2009-02-27 09:21 400,896 a------- c:\windows\system32\CF18682.exe

2009-02-27 01:13 15,688 a------- c:\windows\system32\lsdelete.exe

2009-02-26 23:59 64,160 a------- c:\windows\system32\drivers\Lbd.sys

2009-02-26 23:53 <DIR> -cd-h--- c:\docume~1\alluse~1.win\dadosd~1\{83C91755-2546-441D-AC40-9A6B4B860800}

2009-02-26 20:16 <DIR> --d----- c:\arquivos de programas\Lavasoft

2009-02-26 18:26 <DIR> --d----- C:\!KillBox

2009-02-26 12:08 28,544 a------- c:\windows\system32\drivers\pavboot.sys

2009-02-26 12:08 <DIR> --d----- c:\arquivos de programas\Panda Security

2009-02-26 00:30 <DIR> --d----- c:\docume~1\nattal~1.hom\dadosd~1\Avant Profiles

2009-02-26 00:30 <DIR> --d----- c:\arquivos de programas\Avant Browser

2009-02-25 14:19 <DIR> --d----- c:\docume~1\alluse~1.win\dadosd~1\Messenger Plus!

2009-02-22 13:36 <DIR> --d----- c:\arquivos de programas\Adverts

2009-02-22 13:09 <DIR> --d----- c:\arquivos de programas\Circle Devlopement

2009-02-22 13:09 <DIR> --d----- c:\arquivos de programas\Messenger Plus! Live

2009-02-21 01:22 <DIR> --d----- c:\arquivos de programas\Free WMA to MP3 Converter

2009-02-20 20:27 <DIR> --d----- c:\arquivos de programas\Microsoft Office Outlook Connector

2009-02-19 18:19 90,112 a------- c:\windows\system32\QuickTimeVR.qtx

2009-02-19 18:19 57,344 a------- c:\windows\system32\QuickTime.qts

2009-02-14 12:21 <DIR> --d----- c:\arquivos de programas\JanSoft

2009-02-14 10:54 <DIR> --d----- C:\Multimedia Files

2009-02-14 10:53 <DIR> --d----- c:\arquivos de programas\Microsoft GIF Animator

2009-02-07 17:07 <DIR> --d----- c:\docume~1\nattal~1.hom\dadosd~1\D-Book

2009-02-07 17:07 472 a------- c:\docume~1\nattal~1.hom\dadosd~1\momento_log.dat

2009-02-07 17:06 <DIR> --d----- c:\arquivos de programas\Digipix D-Book

2009-02-07 07:31 253,952 -------- c:\windows\Setup1.exe

2009-02-07 07:31 74,240 a------- c:\windows\ST6UNST.EXE

2009-02-06 19:14 308,088 a------- c:\windows\WLXPGSS.SCR

2009-02-06 18:52 49,504 a------- c:\windows\system32\sirenacm.dll

==================== Find3M ====================

2009-02-20 20:27 428,340 a------- c:\windows\system32\perfh016.dat

2009-02-20 20:27 68,408 a------- c:\windows\system32\perfc016.dat

2009-02-11 17:30 152,122 a------- c:\windows\hpoins14.dat

2009-01-31 16:58 325,128 a------- c:\windows\system32\drivers\avgldx86.sys

2009-01-31 16:58 10,520 a------- c:\windows\system32\avgrsstx.dll

2009-01-31 16:58 107,272 a------- c:\windows\system32\drivers\avgtdix.sys

2009-01-27 14:51 31,296 a------- c:\windows\system32\drivers\GbpKm.sys

2008-12-20 19:47 826,368 a------- c:\windows\system32\wininet.dll

2008-09-10 17:56 32,768 a--sh--- c:\windows\system32\config\systemprofile\configurações locais\histórico\history.ie5\mshist012008091020080911\index.dat

============= FINISH: 0:39:22,78 ===============

Obrigado.

Compartilhar este post


Link para o post
Compartilhar em outros sites

O problema com as páginas abrindo sozinhas persiste?

Compartilhar este post


Link para o post
Compartilhar em outros sites

Parabéns, seu log está limpo.

De agora em diante fique ALERTA!

Para finalizar faça o seguinte:

Desative e reative a Restauração do Sistema

Sugiro que rode o CCleaner para fazer uma limpeza em sua máquina. Faça o download dele aqui CCleaner

  • Abra o programa e clique em Executar Limpeza;
  • Após isto, clique em Erros >> Procurar erros >> Corrigir Erros

Sugiro também que consulte este artigo: Proteja seu PC

Mais algum problema com o computador?

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.
Entre para seguir isso  





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×