Ir ao conteúdo
  • Cadastre-se
Iracema

será vírus

Recommended Posts

Quando ligo o equipamento as seguintes mensagens de erro aparecem quando o windows é iniciado:

1) desktop.ini - bloco de notas

[.ShellClassInfo]

LocalizedResourceName=@%SystemRoot%\systems32\shell32.dll,-21787

2) uvPL.exe - Não foi possível localizar componente

Este aplicativo não pôde ser iniciado porque não foi encontrado u32sn.dll. A reinstalação do aplicativo pode corrigir o problema.

A máquina estaria infectada?

Abaixo o log do DDS. Agradeço antecipadamente a ajuda dos colegas.

Iracema

DDS (Ver_09-02-01.01) - NTFSx86

Run by Iracema at 13:47:08,46 on seg 04/05/2009

Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_12

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.2047.1491 [GMT -3:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)

FW: Norton Internet Worm Protection *disabled*

FW: ZoneAlarm Firewall *disabled*

FW: ActiveArmor Firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup

svchost.exe

svchost.exe

c:\Arquivos de programas\Arquivos comuns\Symantec Shared\ccSetMgr.exe

C:\WINDOWS\system32\spoolsv.exe

svchost.exe

C:\Arquivos de programas\Arquivos comuns\InterVideo\DeviceService\DevSvc.exe

C:\WINDOWS\system32\cisvc.exe

C:\ARQUIV~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe

C:\WINDOWS\system32\inetsrv\inetinfo.exe

C:\Arquivos de programas\Google\Update\GoogleUpdate.exe

C:\Arquivos de programas\Java\jre6\bin\jqs.exe

C:\Arquivos de programas\Marvell\61xx\svc\mvraidsvc.exe

C:\ARQUIV~1\McAfee\MSC\mcmscsvc.exe

c:\ARQUIV~1\ARQUIV~1\mcafee\mna\mcnasvc.exe

c:\ARQUIV~1\ARQUIV~1\mcafee\mcproxy\mcproxy.exe

C:\ARQUIV~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe

C:\ARQUIV~1\McAfee\VirusScan\mcshield.exe

C:\Arquivos de programas\Marvell\61xx\Apache2\bin\Apache.exe

C:\ARQUIV~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Arquivos de programas\CyberLink\Shared Files\RichVideo.exe

C:\Arquivos de programas\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Arquivos de programas\Marvell\61xx\Apache2\bin\Apache.exe

C:\WINDOWS\System32\snmp.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\ARQUIV~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe

C:\WINDOWS\Explorer.EXE

C:\Arquivos de programas\CyberLink\PowerDVD\PDVDServ.exe

C:\Arquivos de programas\QuickTime\qttask.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Arquivos de programas\ASUS\AI Suite\AiNap\AiNap.exe

C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe

C:\Arquivos de programas\Vimicro Corporation\VMUVC\VMonitor.exe

C:\Arquivos de programas\Unlocker\UnlockerAssistant.exe

C:\Arquivos de programas\Microsoft LifeChat\LifeChat.exe

C:\Arquivos de programas\Java\jre6\bin\jusched.exe

C:\ARQUIV~1\MyWebSearch\bar\1.bin\mwsoemon.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\IBM\Lotus\Symphony\framework\shared\eclipse\plugins\com.ibm.productivity.tools.base.app.win32_3.0.0.20071102-1326\soffice.exe

C:\ARQUIV~1\McAfee\VirusScan\mcsysmon.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\system32\cidaemon.exe

C:\WINDOWS\system32\cidaemon.exe

C:\temp\antivirus\temp\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://uol.com.br/

uSearch Page = hxxp://www.google.com

uSearch Bar = hxxp://www.google.com/ie

mSearch Page = hxxp://www.google.com

mStart Page = hxxp://www.uol.com.br

uInternet Connection Wizard,ShellNext = iexplore

mSearchAssistant = hxxp://www.google.com/ie

uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\arquivos de programas\yahoo!\companion\installs\cpn\yt.dll

uURLSearchHooks: N/A: {00a6faf6-072e-44cf-8957-5838f569a31d} - c:\arquivos de programas\mywebsearch\bar\1.bin\MWSSRCAS.DLL

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\arquivos de programas\yahoo!\companion\installs\cpn\yt.dll

BHO: NoExplorer - No File

BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\arquivos de programas\adobe\acrobat 7.0\activex\AcroIEHelper.dll

BHO: mwsBar BHO: {07b18ea1-a523-4961-b6bb-170de4475cca} - c:\arquivos de programas\mywebsearch\bar\1.bin\MWSBAR.DLL

BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\arquivos de programas\flashget\jccatch.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\arquivos de programas\microsoft\search enhancement pack\search helper\SearchHelper.dll

BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\arquiv~1\mcafee\virusscan\scriptsn.dll

BHO: CNisExtBho Class: {9ecb9560-04f9-4bbc-943d-298ddf1699e1} - c:\arquivos de programas\arquivos comuns\symantec shared\adblocking\NISShExt.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\arquivos de programas\google\googletoolbar1.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\arquivos de programas\java\jre6\bin\jp2ssv.dll

BHO: Google Gears Helper: {e0fefe40-fbf9-42ae-ba58-794ca7e3fb53} - c:\arquivos de programas\google\google gears\internet explorer\0.5.4.2\gears.dll

BHO: {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - No File

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: EpsonToolBandKicker Class: {e99421fb-68dd-40f0-b4ac-b7027cae2f1a} - c:\arquivos de programas\epson\epson web-to-page\EPSON Web-To-Page.dll

BHO: EWPP - No File

BHO: ZoneAlarm Spy Blocker BHO: {f0d4b231-da4b-4daf-81e4-dfee4931a4aa} - c:\arquivos de programas\zonealarmsb\bar\1.bin\SPYBLOCK.DLL

BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\arquivos de programas\flashget\getflash.dll

TB: Norton Internet Security 2006: {0b53eac3-8d69-4b9e-9b19-a37c9a5676a7} - c:\arquivos de programas\arquivos comuns\symantec shared\adblocking\NISShExt.dll

TB: EPSON Web-To-Page: {ee5d279f-081b-4404-994d-c6b60aaeba6d} - c:\arquivos de programas\epson\epson web-to-page\EPSON Web-To-Page.dll

TB: {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No File

TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\arquivos de programas\google\googletoolbar1.dll

TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\arquivos de programas\yahoo!\companion\installs\cpn\yt.dll

TB: ZoneAlarm Spy Blocker: {f0d4b239-da4b-4daf-81e4-dfee4931a4aa} - c:\arquivos de programas\zonealarmsb\bar\1.bin\SPYBLOCK.DLL

TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

TB: My Web Search: {07b18ea9-a523-4961-b6bb-170de4475cca} - c:\arquivos de programas\mywebsearch\bar\1.bin\MWSBAR.DLL

TB: {A45D8289-FFA3-4CD8-B83A-F84F7173B2CE} - No File

TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File

uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe

uRun: [PMCRemote] \Programs\Remote\Remoterm.exe

uRun: [swg] c:\arquivos de programas\google\googletoolbarnotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

uRun: [sODCPreLoad] c:\arquivos de programas\ibm\lotus\symphony\framework\shared\eclipse\plugins\com.ibm.productivity.tools.base.app.win32_3.0.0.20071102-1326\preload.exe c:\arquiv~1\ibm\lotus\symphony\data\.sodc\

uRun: [ccleaner] "c:\arquivos de programas\ccleaner\CCleaner.exe" /AUTO

uRun: [PMCLoader] c:\arquivos de programas\pinnacle\tvcenter pro\PMCLoader.exe -checktasks

mRun: [nTrayFw] c:\arquiv~1\nvidia~1\networ~1\bin\nTrayFw.exe

mRun: [skyTel] SkyTel.EXE

mRun: [JMB36X IDE Setup] c:\windows\jm\JMInsIDE.exe

mRun: [JMB36X Configure] c:\windows\system32\JMRaidSetup.exe boot

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [nwiz] nwiz.exe /install

mRun: [sSC_UserPrompt] "c:\arquivos de programas\arquivos comuns\symantec shared\security center\UsrPrmpt.exe"

mRun: [RemoteControl] "c:\arquivos de programas\cyberlink\powerdvd\PDVDServ.exe"

mRun: [LanguageShortcut] "c:\arquivos de programas\cyberlink\powerdvd\language\Language.exe"

mRun: [NeroFilterCheck] c:\arquivos de programas\arquivos comuns\ahead\lib\NeroCheck.exe

mRun: [ink Monitor] c:\arquivos de programas\epson\ink monitor\InkMonitor.exe

mRun: [QuickTime Task] "c:\arquivos de programas\quicktime\qttask.exe" -atboottime

mRun: [MsmqIntCert] regsvr32 /s mqrt.dll

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [Alcmtr] ALCMTR.EXE

mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit

mRun: [Ai Nap] "c:\arquivos de programas\asus\ai suite\ainap\AiNap.exe"

mRun: [iSUSPM Startup] c:\arquiv~1\arquiv~1\instal~1\update~1\isuspm.exe -startup

mRun: [iSUSScheduler] "c:\arquivos de programas\arquivos comuns\installshield\updateservice\issch.exe" -start

mRun: [uVS11 Preload] c:\documents and settings\thaiane\meus documentos\thaiane\arquivos - downloads\uvPL.exe

mRun: [VMonitorVMUVC] "c:\arquivos de programas\vimicro corporation\vmuvc\VMonitor.exe" VMUVC

mRun: [unlockerAssistant] "c:\arquivos de programas\unlocker\UnlockerAssistant.exe"

mRun: [ZoneAlarm Client] "c:\arquivos de programas\zone labs\zonealarm\zlclient.exe"

mRun: [LifeChat] "c:\arquivos de programas\microsoft lifechat\LifeChat.exe"

mRun: [sunJavaUpdateSched] "c:\arquivos de programas\java\jre6\bin\jusched.exe"

mRun: [MyWebSearch Plugin] rundll32 c:\arquiv~1\mywebsearch\bar\1.bin\M3PLUGIN.DLL,UPF

mRun: [My Web Search Bar] rundll32 c:\arquiv~1\mywebsearch\bar\1.bin\MWSBAR.DLL,S

mRun: [MyWebSearch Email Plugin] c:\arquiv~1\mywebsearch\bar\1.bin\mwsoemon.exe

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

StartupFolder: c:\docume~1\alluse~1.win\menuin~1\progra~1\inicia~1\adober~1.lnk - c:\arquivos de programas\adobe\acrobat 7.0\reader\reader_sl.exe

StartupFolder: c:\docume~1\alluse~1.win\menuin~1\progra~1\inicia~1\interv~1.lnk - c:\arquivos de programas\intervideo\common\bin\WinCinemaMgr.exe

IE: &Download All with FlashGet - c:\arquivos de programas\flashget\jc_all.htm

IE: &Download with FlashGet - c:\arquivos de programas\flashget\jc_link.htm

IE: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZKfox000

IE: &Windows Live Search

IE: Abrir em uma nova guia do plano de fundo

IE: Abrir em uma nova guia do primeiro plano

IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\micros~3\office11\EXCEL.EXE/3000

IE: Translate with &Babylon

IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\arquivos de programas\flashget\FlashGet.exe

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe

IE: {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - {0B4350D1-055F-47A3-B112-5F2F2B0D6F08} - c:\arquivos de programas\google\google gears\internet explorer\0.5.4.2\gears.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC}

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\arquiv~1\micros~3\office11\REFIEBAR.DLL

LSP: %SYSTEMROOT%\system32\nvappfilter.dll

Trusted Zone: microsoft.com\download.windowsupdate

Trusted Zone: microsoft.com\update

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204

DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/PT-BR/a-UNO1/GAME_UNO1.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

Notify: fsmgmt - fsmgmt.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\iracema\dadosd~1\mozilla\firefox\profiles\078b6xuz.default\

FF - prefs.js: browser.search.selectedEngine - MyWebSearch

FF - prefs.js: browser.startup.homepage - www.uol.com.br

FF - prefs.js: keyword.URL - hxxp://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZKfox000&fl=0&ptb=Fu0PT5hIqn0Fkhi.znt_Aw&st=kwd&o=kwd&url=http://search.mywebsearch.com/mywebsearch/dft_redir.jhtml&searchfor=

FF - component: c:\arquivos de programas\google\google gears\firefox\components\gears.dll

FF - plugin: c:\arquivos de programas\google\update\1.2.141.5\npGoogleOneClick7.dll

FF - plugin: c:\arquivos de programas\microsoft\office live\npOLW.dll

FF - plugin: c:\arquivos de programas\mozilla firefox\plugins\NPMyWebS.dll

FF - plugin: c:\arquivos de programas\mozilla firefox\plugins\NPZoneSB.dll

FF - plugin: c:\arquivos de programas\unity\webplayer\loader\npUnity3D32.dll

---- FIREFOX POLICIES ----

c:\arquivos de programas\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".com.br");

============= SERVICES / DRIVERS ===============

R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [2007-5-25 137728]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2008-8-31 28544]

R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2009-1-5 214024]

R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2009-3-10 353680]

R2 ccSetMgr;Symantec Settings Manager;c:\arquivos de programas\arquivos comuns\symantec shared\ccSetMgr.exe [2005-9-16 169584]

R2 Marvell RAID;Marvell RAID Event Agent;c:\arquivos de programas\marvell\61xx\svc\mvraidsvc.exe [2007-4-20 61440]

R2 McProxy;McAfee Proxy Service;c:\arquiv~1\arquiv~1\mcafee\mcproxy\mcproxy.exe [2009-1-5 359952]

R2 McShield;McAfee Real-time Scanner;c:\arquiv~1\mcafee\virusscan\mcshield.exe [2009-1-5 144704]

R2 MRUWebService;MRU Web Service;c:\arquivos de programas\marvell\61xx\apache2\bin\Apache.exe [2007-1-10 20539]

R2 SeaPort;SeaPort;c:\arquivos de programas\microsoft\search enhancement pack\seaport\SeaPort.exe [2008-12-4 226640]

R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;c:\windows\system32\drivers\3xHybrid.sys [2007-9-21 1121536]

R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2007-10-17 38656]

R3 bbcap;bbcap;c:\windows\system32\drivers\bbcap.sys [2008-11-17 4096]

R3 McSysmon;McAfee SystemGuards;c:\arquiv~1\mcafee\virusscan\mcsysmon.exe [2009-1-5 606736]

R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2009-1-5 79880]

R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2009-1-5 35272]

R3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2009-1-5 40552]

R3 VMUVC;Vimicro Camera Service VMUVC;c:\windows\system32\drivers\VMUVC.sys [2008-10-18 250240]

R3 vvftUVC;Vimicro Camera Filter Service VMUVC;c:\windows\system32\drivers\vvftUVC.sys [2008-10-18 476160]

S2 0000221191730850mcinstcleanup;McAfee Application Installer Cleanup (0000221191730850); [x]

S2 0211151231172347mcinstcleanup;McAfee Application Installer Cleanup (0211151231172347); [x]

S2 0242851223175932mcinstcleanup;McAfee Application Installer Cleanup (0242851223175932); [x]

S2 ccProxy;Symantec Network Proxy;c:\arquivos de programas\arquivos comuns\symantec shared\ccProxy.exe [2005-9-16 202352]

S2 gupdate1c99d3671cfac00;Google Update Service (gupdate1c99d3671cfac00);c:\arquivos de programas\google\update\GoogleUpdate.exe [2009-3-4 133104]

S2 MyWebSearchService;My Web Search Service;c:\arquiv~1\mywebsearch\bar\1.bin\mwssvc.exe [2009-3-18 28762]

S2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]

S3 CrystalSysInfo;CrystalSysInfo;c:\arquivos de programas\mediacoder\SysInfo.sys [2007-9-25 15152]

S3 lgmcbus;LGE Mobile driver (WDM);c:\windows\system32\drivers\lgmcbus.sys [2009-1-13 83584]

S3 lgmcmdfl;LGE Mobile USB WMC Modem Filter;c:\windows\system32\drivers\lgmcmdfl.sys [2009-1-13 14976]

S3 lgmcmdm;LGE Mobile USB WMC Modem Driver;c:\windows\system32\drivers\lgmcmdm.sys [2009-1-13 110464]

S3 lgmcmgmt;LGE Mobile USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\lgmcmgmt.sys [2009-1-13 104448]

S3 lgmcobex;LGE Mobile USB WMC OBEX Interface;c:\windows\system32\drivers\lgmcobex.sys [2009-1-13 100480]

S3 lgmcunic;LGE Mobile USB WMC Ethernet ELDA (WDM);c:\windows\system32\drivers\lgmcunic.sys [2009-1-13 109952]

S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2009-1-5 34216]

S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-6-21 42512]

=============== Created Last 30 ================

2009-05-04 11:44 105,792 a------- c:\temp\cc_20090504_114357.reg

2009-04-26 22:32 692,736 a----r-- c:\windows\system32\firstclass2000_vcl5.bpl

2009-04-26 22:32 387,072 a----r-- c:\windows\system32\dss50.bpl

2009-04-26 22:32 <DIR> --d----- c:\arquivos de programas\Central de Jogos

2009-04-26 22:32 315,904 a------- c:\windows\IsUn0416.exe

2009-04-24 21:41 954 a------- c:\temp\cc_20090424_214136.reg

2009-04-16 19:09 227,840 -c------ c:\windows\system32\dllcache\wmiprvse.exe

2009-04-16 19:09 401,408 -c------ c:\windows\system32\dllcache\rpcss.dll

2009-04-16 19:09 286,208 -c------ c:\windows\system32\dllcache\pdh.dll

2009-04-16 19:09 111,104 -c------ c:\windows\system32\dllcache\services.exe

2009-04-16 19:09 731,648 -c------ c:\windows\system32\dllcache\lsasrv.dll

2009-04-16 19:09 683,520 -c------ c:\windows\system32\dllcache\advapi32.dll

2009-04-16 19:09 473,600 -c------ c:\windows\system32\dllcache\fastprox.dll

2009-04-16 19:09 730,624 -c------ c:\windows\system32\dllcache\ntdll.dll

2009-04-16 19:09 453,120 -c------ c:\windows\system32\dllcache\wmiprvsd.dll

2009-04-16 19:07 1,203,922 -c------ c:\windows\system32\dllcache\sysmain.sdb

2009-04-16 19:07 216,064 -c------ c:\windows\system32\dllcache\wordpad.exe

==================== Find3M ====================

2009-05-04 13:05 4,212 a---h--- c:\windows\system32\zllictbl.dat

2009-04-28 23:03 507,546 a------- c:\windows\system32\perfh016.dat

2009-04-28 23:03 97,378 a------- c:\windows\system32\perfc016.dat

2009-03-25 11:06 40,552 a------- c:\windows\system32\drivers\mfesmfk.sys

2009-03-25 11:06 214,024 a------- c:\windows\system32\drivers\mfehidk.sys

2009-03-25 11:06 79,880 a------- c:\windows\system32\drivers\mfeavfk.sys

2009-03-25 11:06 35,272 a------- c:\windows\system32\drivers\mfebopk.sys

2009-03-25 11:05 34,216 a------- c:\windows\system32\drivers\mferkdk.sys

2009-03-18 21:34 28,672 a------- c:\windows\system32\f3PSSavr.scr

2009-03-16 11:40 410,984 a------- c:\windows\system32\deploytk.dll

2009-03-06 11:20 286,208 a------- c:\windows\system32\pdh.dll

2009-02-20 05:10 668,160 a------- c:\windows\system32\wininet.dll

2009-02-20 05:10 81,920 -------- c:\windows\system32\ieencode.dll

2009-02-19 21:16 368,640 a------- c:\windows\system32\ReWire.dll

2009-02-19 21:16 233,472 a------- c:\windows\system32\REX Shared Library.dll

2009-02-09 11:06 1,846,912 -------- c:\windows\system32\win32k.sys

2009-02-09 08:25 2,028,032 -------- c:\windows\system32\ntkrnlpa.exe

2009-02-09 08:25 2,149,376 -------- c:\windows\system32\ntoskrnl.exe

2009-02-09 08:25 111,104 -------- c:\windows\system32\services.exe

2009-02-09 07:53 401,408 a------- c:\windows\system32\rpcss.dll

2009-02-09 07:53 731,648 -------- c:\windows\system32\lsasrv.dll

2009-02-09 07:53 730,624 -------- c:\windows\system32\ntdll.dll

2009-02-09 07:53 683,520 -------- c:\windows\system32\advapi32.dll

2009-02-06 07:39 35,328 -------- c:\windows\system32\sc.exe

2009-02-03 16:58 56,832 a------- c:\windows\system32\secur32.dll

2008-12-08 19:47 8 -------- c:\docume~1\alluse~1.win\dadosd~1\VYAAUFMZPWQQ.SYS

2008-04-10 17:43 8 -------- c:\docume~1\alluse~1.win\dadosd~1\SDGLYBMPWPP.SYS

2008-02-21 20:32 8 -------- c:\docume~1\alluse~1.win\dadosd~1\TYRCPHJYWWPP.SYS

2006-06-23 03:48 32,768 -------- c:\windows\inf\UpdateUSB.exe

============= FINISH: 13:47:49,54 ===============

Compartilhar este post


Link para o post
Compartilhar em outros sites

Faça o download do Malwarebytes Anti-Malware:

Link1

Link alternativo

Duplo-clique em mbam-setup.exe, escolha a linguagem e siga as instruções para o software ser instalado.

  • Certifique-se que marca a caixa Atualizar Malwarebytes Anti-Malware e Executar Malwarebytes Anti-Malware, e clique em concluir.
  • Se existirem atualizações, elas serão baixadas e instaladas.
  • Quando as atualizações terminarem, abrirá uma janela do programa. Marque "Verificação Rápida", e depois clique no botão Verificar.
  • O scan iniciará e poderá ser demorado. Por favor seja paciente.
  • Quando o scan estiver completo, clique em Ok, depois em Mostrar Resultados para ver o log.
  • Se algo for encontrado, certifique-se que tudo está marcado e clique em Remover.
  • Quando a desinfecção terminar, automaticamente um log surgirá aberto num documento do Bloco de Notas e pode ser questionado para reiniciar o PC. (Leia a nota)
  • O log é automaticamente guardado e pode ser consultado clicando na tab Logs do menu principal.
  • Copie e cole o conteúdo desse log na sua próxima resposta.

Nota: Em infecções mais complicadas, poderá haver a necessidade de reiniciar o PC. Caso lhe seja pedido para reiniciar o PC, por favor, faça-o imediatamente.

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×