Ir ao conteúdo
  • Comunicados

    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
kakarossoneri

Pc infectado, já fiz de tudo, alguém me salva?

Recommended Posts

o gerenciador de tarefas não liga e meu kaspersky não inicia, nem o avira...

Baixei o combofix, passei ele e nada....

ComboFix 10-08-07.01 - KAKA 07/08/2010 17:44:44.1.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.447.198 [GMT -3:00]

Executando de: c:\documents and settings\KAKA\Desktop\CCM.exe

AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}

* Criado um novo ponto de restauração

.

((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\arquivos de programas\FlashGet Network

c:\arquivos de programas\FlashGet Network\FlashGet 3\adns.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\btcoreu.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\BugReport.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\BugReport.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\cd1.ico

c:\arquivos de programas\FlashGet Network\FlashGet 3\ckcore.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\14_43260.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\28_83260.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\atrc.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\Codecs.zip

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\cook.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\ddnt3260.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\dnet3260.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\drv1.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\drv2.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\drvc.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\hxltcolor.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\raac.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\ralf.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\rv10.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\rv20.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\rv30.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\rv40.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\codec\real\Codecs\sipr.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\commonlib.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\componentskrnl.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\clients.met

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\clients.met.bak

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\cryptkey.dat

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\emfriends.met

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\known.met

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\known2_64.met

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\preferences.dat

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\preferences.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\server.met

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\server_met.old

c:\arquivos de programas\FlashGet Network\FlashGet 3\config\upload.met

c:\arquivos de programas\FlashGet Network\FlashGet 3\corestat.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\dat\Appsetting.cfg

c:\arquivos de programas\FlashGet Network\FlashGet 3\dat\FlashGet3db.bak

c:\arquivos de programas\FlashGet Network\FlashGet 3\dat\FlashGet3db.db

c:\arquivos de programas\FlashGet Network\FlashGet 3\dat\torrent\13623093_0FA6C6AFC0D522DD738EA93FE78FDB0963FAC24E.torrent

c:\arquivos de programas\FlashGet Network\FlashGet 3\dat\torrent\4932796_[isoHunt] DVDs PREPARE SE.torrent

c:\arquivos de programas\FlashGet Network\FlashGet 3\dat\torrent\4943671_[isoHunt] DVDs PREPARE SE.torrent

c:\arquivos de programas\FlashGet Network\FlashGet 3\dbghelp.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fg.ico

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\default.htm

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\banner.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\bullet.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\close.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\closelabel.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\download-icon.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\explorer.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\ftp.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\image.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\introTextBg.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\loading.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\nextlabel.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\prevlabel.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\software.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\vod.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\FGResDetector.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\about.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\ftplist_tree_icon.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\option_icon.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\quickop_hide.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\quickop_show.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\statusbar_bk.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\tasktab_close.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_back.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_bk.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_close.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_forward.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_refresh.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcara.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcbul.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jccro.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcdax.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\Jcetl.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jceus.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcfin.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcfra.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcheb.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcinb.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcjpn.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcmak.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcmal.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcmsm.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcpob.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcser.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcslo.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcsrc.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcsrk.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcsrl.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcthi.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jctur.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\jcviu.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGResDetector_I\lang\l.eng.xml

c:\arquivos de programas\FlashGet Network\FlashGet 3\FGSoftware.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\Flashget3.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\FlashGet3.xpi

c:\arquivos de programas\FlashGet Network\FlashGet 3\FlashGetBHO3.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\FlashGetHook.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsArchive.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsDirectuix.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsLanguage.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnslanguage_en.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsScheduler.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsSecurity.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsSkinX.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\fnsStatistics.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\game.ico

c:\arquivos de programas\FlashGet Network\FlashGet 3\gb2312-unicode.dic

c:\arquivos de programas\FlashGet Network\FlashGet 3\gdiplus.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\GetAllUrl.htm

c:\arquivos de programas\FlashGet Network\FlashGet 3\GetUrl.htm

c:\arquivos de programas\FlashGet Network\FlashGet 3\GoogleToolbarInstaller_download_signed.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\libem.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\license.txt

c:\arquivos de programas\FlashGet Network\FlashGet 3\lst_tz.bin

c:\arquivos de programas\FlashGet Network\FlashGet 3\P2PCfg.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\P2PCore.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\P2SCore.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\perf.ini

c:\arquivos de programas\FlashGet Network\FlashGet 3\pncrt.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\pstat.dat

c:\arquivos de programas\FlashGet Network\FlashGet 3\pup.dat

c:\arquivos de programas\FlashGet Network\FlashGet 3\RdOldDb.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\RealMediaSplitter.ax

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\BarSet.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\bmsgbox_clock.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\bmsgbox_disk.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\btn_check.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\btn_normal.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\btn_radio.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\desktoplink.ico

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\login_line.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\menu_icon.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\option_line.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\option_page_line.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\skin.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\SuspendLogo.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\SuspendNoLogo.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_backgrand.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_cancle.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_catgroy.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_group.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_new.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_open.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_option.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_pause.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_recly.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_start.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_left.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_middle.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_right.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\top_logotitle.gif

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\torrent.ico

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\userinfo_head.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\image\VistaStyleListItems.bmp

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\preview.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\skin.xml

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\default\sound\notify.wav

c:\arquivos de programas\FlashGet Network\FlashGet 3\skin\international\Gray\BarSet.png

c:\arquivos de programas\FlashGet Network\FlashGet 3\storage.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\SysOptimize.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\uninst.exe

c:\arquivos de programas\FlashGet Network\FlashGet 3\VodCore.dll

c:\arquivos de programas\FlashGet Network\FlashGet 3\zlib.dll

c:\arquivos de programas\Search Settings

c:\arquivos de programas\Search Settings\FF\chrome.manifest

c:\arquivos de programas\Search Settings\FF\chrome\content\plugin.js

c:\arquivos de programas\Search Settings\FF\chrome\content\plugin.xul

c:\arquivos de programas\Search Settings\FF\chrome\content\protection.js

c:\arquivos de programas\Search Settings\FF\chrome\content\utils.js

c:\arquivos de programas\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.dtd

c:\arquivos de programas\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.properties

c:\arquivos de programas\Search Settings\FF\components\IFBHOSearch.xpt

c:\arquivos de programas\Search Settings\FF\components\IFBHOSearchHelperEngine.xpt

c:\arquivos de programas\Search Settings\FF\components\IFHelperPreferences.xpt

c:\arquivos de programas\Search Settings\FF\components\SearchSettingsFF.dll

c:\arquivos de programas\Search Settings\FF\install.rdf

C:\Autorun.inf

C:\desktop.ini

c:\documents and settings\KAKA\Dados de aplicativos\BITS

c:\documents and settings\KAKA\Dados de aplicativos\BITS\BITS.ini

c:\documents and settings\KAKA\Dados de aplicativos\BITS\DHTTable.dat

c:\documents and settings\KAKA\Dados de aplicativos\BITS\ProxyList.ini

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041455.torrent

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041455.torrent.filelist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041518.torrent

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041518.torrent.filelist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent.~tmp

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent.bits

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent.filelist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent.hybridlist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent.seeds

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803041519.torrent.statistic

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063942.torrent

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063942.torrent.filelist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063957.torrent

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063957.torrent.filelist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063958.torrent

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063958.torrent.~tmp

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063958.torrent.bits

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063958.torrent.filelist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063958.torrent.hybridlist

c:\documents and settings\KAKA\Dados de aplicativos\BITS\Torrent\20100803063958.torrent.statistic

c:\documents and settings\KAKA\Dados de aplicativos\BITS\UPnP.ini

c:\documents and settings\KAKA\Dados de aplicativos\Dealio

c:\documents and settings\KAKA\Dados de aplicativos\Dealio\res\widgets.xml

c:\documents and settings\KAKA\Dados de aplicativos\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml

c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO

c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\FlashGetBHO3.dll

c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\FlashGetHook.dll

c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\GetAllUrl.htm

c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\GetUrl.htm

c:\documents and settings\KAKA\Dados de aplicativos\inst.exe

c:\documents and settings\KAKA\Dados de aplicativos\Wplugin.dll

c:\windows\system32\secushr.dat

c:\windows\system32\secustat.dat

c:\windows\system32\Sys

c:\windows\system32\Sys\AKV.exe

c:\windows\system32\Sys\DCXW.001

c:\windows\system32\Sys\DCXW.002

c:\windows\system32\Sys\DCXW.006

D:\Autorun.inf

D:\btshlp.pif

.

((((((((((((((((((((((((((((((((((((((( Drivers/Serviços )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Legacy_AMSINT32

-------\Legacy_SSHNAS

-------\Service_amsint32

-------\Service_SSHNAS

(((((((((((((((( Arquivos/Ficheiros criados de 2010-07-07 to 2010-08-07 ))))))))))))))))))))))))))))

.

2010-08-07 20:18 . 2010-08-07 20:18 911 ----a-w- C:\FindyKill_Upload_Me_MICRO-07CAD5BC4.zip

2010-08-07 19:54 . 2010-08-07 20:19 -------- d-----w- C:\FyK

2010-08-04 03:16 . 2010-08-04 03:16 103140 --sh--r- C:\naqlxk.exe

2010-08-03 03:21 . 2010-08-04 01:22 -------- d-----w- C:\Downloads

2010-08-03 03:21 . 2010-08-03 03:21 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\FlashGet

2010-07-28 00:25 . 2010-08-03 15:46 -------- d-----w- c:\arquivos de programas\The Sims

2010-07-27 11:18 . 2010-07-27 11:18 -------- d-----w- c:\arquivos de programas\Unlocker

2010-07-26 19:26 . 2010-07-26 19:26 -------- d-----w- C:\Os Meus Registos

2010-07-26 05:24 . 2010-07-26 05:24 -------- d-----w- C:\Catalogs

2010-07-26 05:23 . 2010-07-26 05:27 -------- d-----w- c:\arquivos de programas\Visual CD

2010-07-26 05:23 . 2002-11-27 16:12 4608 ----a-w- c:\windows\system32\W95INF32.DLL

2010-07-26 05:23 . 2002-11-27 16:12 2272 ----a-w- c:\windows\system32\W95INF16.DLL

2010-07-26 04:15 . 2010-08-07 19:32 -------- d-----w- c:\arquivos de programas\CDlyse

2010-07-26 01:26 . 2010-07-26 01:26 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\Moyea

2010-07-26 01:26 . 2010-07-26 01:26 -------- d-----w- c:\arquivos de programas\Moyea

2010-07-25 21:51 . 2007-09-04 16:56 164352 ----a-w- c:\windows\system32\unrar.dll

2010-07-25 21:51 . 2010-07-25 21:51 -------- d-----w- c:\arquivos de programas\K-Lite Codec Pack

2010-07-25 21:04 . 2000-07-15 02:00 101888 ----a-w- c:\windows\system32\VB6STKIT.DLL

2010-07-25 03:11 . 2010-08-03 21:32 -------- d-----w- C:\Meus arquivos recebidos

2010-07-24 20:38 . 2008-08-29 01:45 51072 ----a-w- c:\windows\system32\drivers\ifsmount.sys

2010-07-24 20:38 . 2008-09-25 20:35 181120 ----a-w- c:\windows\system32\drivers\ext2fs.sys

2010-07-24 20:38 . 2008-07-27 02:56 210432 ----a-w- c:\windows\system32\ifsdrives.dll

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-08-07 20:54 . 2010-02-23 09:50 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\uTorrent

2010-08-07 20:54 . 2010-05-15 22:37 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\BitTorrent

2010-08-07 20:52 . 2010-08-07 20:52 103140 --sh--r- C:\wmwxs.pif

2010-08-07 20:20 . 2008-04-14 10:00 80198 ----a-w- c:\windows\system32\perfc016.dat

2010-08-07 20:20 . 2008-04-14 10:00 471376 ----a-w- c:\windows\system32\perfh016.dat

2010-08-07 19:29 . 2010-01-21 21:39 -------- d-----w- c:\arquivos de programas\DreaMule

2010-08-04 02:45 . 2010-01-02 00:43 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\Any DVD Converter Professional

2010-08-04 02:43 . 2010-02-15 23:55 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\Vso

2010-08-03 22:50 . 2010-05-20 13:49 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Kaspersky Lab

2010-08-03 15:21 . 2010-05-20 20:51 -------- d-----w- c:\arquivos de programas\Free Download Manager

2010-08-03 12:24 . 2010-02-23 15:23 -------- d---a-w- c:\documents and settings\All Users\Dados de aplicativos\TEMP

2010-07-26 08:10 . 2010-05-20 20:55 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\Free Download Manager

2010-06-12 05:13 . 2010-06-12 05:13 -------- d-----w- c:\arquivos de programas\USB Disk Security

2010-06-12 04:43 . 2010-06-06 19:38 -------- d-----w- c:\arquivos de programas\Filzip

2010-06-11 19:51 . 2010-06-11 19:51 3055600 ----a-w- c:\documents and settings\KAKA\Dados de aplicativos\Mozilla\plugins\npgtpo3dautoplugin.dll

2010-06-11 19:36 . 2010-06-11 19:36 275952 ----a-w- c:\documents and settings\KAKA\Dados de aplicativos\Mozilla\plugins\npgoogletalk.dll

2010-06-11 16:01 . 2010-05-27 14:30 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\PC Suite

2010-06-11 15:59 . 2010-05-27 14:27 -------- d-----w- c:\arquivos de programas\DIFX

2010-06-11 15:58 . 2010-06-11 15:58 -------- d-----w- c:\arquivos de programas\Arquivos comuns\PCSuite

2010-06-11 15:58 . 2010-05-27 14:27 -------- d-----w- c:\arquivos de programas\Arquivos comuns\Nokia

2010-06-11 15:58 . 2010-05-27 14:26 -------- d-----w- c:\arquivos de programas\Nokia

2010-06-11 03:24 . 2010-06-11 02:51 -------- d-----w- c:\documents and settings\KAKA\Dados de aplicativos\DAEMON Tools Lite

2010-06-11 02:52 . 2010-06-11 02:52 -------- d-----w- c:\arquivos de programas\DAEMON Tools Lite

2010-06-11 02:52 . 2010-06-11 02:52 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-06-11 02:52 . 2010-06-11 02:51 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\DAEMON Tools Lite

2010-06-10 19:59 . 2010-06-03 16:08 -------- d-----w- c:\arquivos de programas\McAfee

2010-06-09 20:17 . 2010-06-09 20:17 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\PC Suite

2010-06-09 12:58 . 2010-06-09 12:58 -------- d-----w- c:\arquivos de programas\CPUID

2010-06-09 04:31 . 2009-12-26 17:43 -------- d-----w- c:\arquivos de programas\CCleaner

2010-06-03 02:41 . 2010-06-03 02:41 3600384 ----a-w- c:\windows\system32\GPhotos.scr

2010-06-02 13:17 . 2009-12-29 06:43 2887680 ----a-w- c:\windows\system32\VagalumePluginWMP.dll

2010-05-31 09:56 . 2010-05-25 12:16 53364 ---ha-w- c:\windows\system32\mlfcache.dat

2010-05-30 04:14 . 2010-05-30 04:14 3584 ----a-r- c:\documents and settings\KAKA\Dados de aplicativos\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe

2010-05-27 07:39 . 2010-05-27 07:39 95232 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe

2010-05-27 07:39 . 2010-05-27 07:39 8192 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe

2010-05-27 07:39 . 2010-05-27 07:39 61440 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe

2010-05-27 07:39 . 2010-05-27 07:39 10240 ----a-w- c:\documents and settings\All Users\Dados de aplicativos\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe

2010-05-26 17:02 . 2010-05-20 13:49 46624 --sha-w- c:\windows\system32\drivers\fidbox.dat

2010-05-26 17:02 . 2010-05-20 13:49 322080 --sha-w- c:\windows\system32\drivers\fidbox2.dat

2010-05-19 20:41 . 2010-05-19 20:41 7168 ----a-w- c:\windows\system32\drivers\utg4njgz.sys

2010-05-18 13:56 . 2010-05-18 13:51 112284 ----a-w- c:\windows\hpoins11.dat

2010-05-11 15:00 . 2010-06-09 12:58 20072 ----a-w- c:\windows\system32\drivers\cpuz133_x32.sys

1999-04-23 22:22 . 1999-04-23 22:22 12 --sha-w- c:\windows\system\WININETICMP32.drv

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por defeito não são mostradas.

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\arquivos de programas\Windows Live\Messenger\msnmsgr.exe" [2007-05-17 5811056]

"uTorrent"="c:\arquivos de programas\uTorrent\uTorrent.exe" [2010-06-03 402224]

"BitTorrent"="c:\arquivos de programas\BitTorrent\bittorrent.exe" [2010-02-09 726840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"USB Antivirus"="c:\arquivos de programas\USB Disk Security\USBGuard.exe" [2008-09-23 876544]

"Adobe Reader Speed Launcher"="c:\arquivos de programas\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 105392]

"Adobe ARM"="c:\arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]

"UnlockerAssistant"="c:\arquivos de programas\Unlocker\UnlockerAssistant.exe" [2010-07-04 95232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"SYSTRAYX"="c:\systrayx\RUNSTX.EXE" [2006-07-31 114688]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\KAKA\Menu Iniciar\Programas\Inicializar\

SYSTRAYX.LNK - c:\systrayx\SysTrayX.EXE [2010-5-15 233472]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableLUA"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]

"DisableTaskMgr"= 1 (0x1)

"DisableRegistryTools"= 1 (0x1)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]

"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\arquivos de programas\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk /p \??\C\0autocheck autochk *

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Adobe Gamma Loader.lnk]

backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^FrostWire Ultra Accelerator.lnk]

backup=c:\windows\pss\FrostWire Ultra Accelerator.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^TRAkaspersky.bat]

backup=c:\windows\pss\TRAkaspersky.batCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^KAKA^Menu Iniciar^Programas^Inicializar^Stardock ObjectDock.lnk]

backup=c:\windows\pss\Stardock ObjectDock.lnkStartup

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bar

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2010-06-09 08:06 976832 ----a-w- c:\arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2010-06-20 02:04 105392 ----a-w- c:\arquivos de programas\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]

2010-07-02 20:33 2347216 ----a-w- c:\arquivos de programas\IObit\Advanced SystemCare 3\AWC.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

2007-10-23 17:18 271656 ----a-w- c:\arquivos de programas\Arquivos comuns\Nero\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]

2010-02-09 22:16 726840 ----a-w- c:\arquivos de programas\BitTorrent\bittorrent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccleaner]

2008-10-23 18:34 1336560 ----a-w- c:\arquivos de programas\CCleaner\CCleaner.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

2010-04-01 09:16 431424 ----a-w- c:\arquivos de programas\DAEMON Tools Lite\DTLite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]

2010-04-20 03:28 3801135 ----a-w- c:\arquivos de programas\Free Download Manager\fdm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]

2006-10-27 03:47 31016 ----a-w- c:\arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDAudDeck]

2007-05-11 07:47 790528 ----a-r- c:\arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

2007-05-17 16:11 5811056 ----a-w- c:\arquivos de programas\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]

2007-09-20 11:51 1836328 ----a-w- c:\arquivos de programas\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

2007-03-01 17:57 230960 ----a-w- c:\arquivos de programas\Arquivos comuns\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]

2009-06-25 18:12 1414144 ----a-w- c:\arquivos de programas\Nokia\Nokia PC Suite 7\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S3Trayp]

2007-02-05 23:30 176128 ----a-r- c:\windows\system32\S3Trayp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM]

2010-07-02 15:58 198864 ----a-w- c:\arquivos de programas\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

2007-03-14 06:43 83608 ----a-w- c:\arquivos de programas\Java\jre1.6.0_01\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]

2010-06-03 15:25 402224 ----a-w- c:\arquivos de programas\uTorrent\uTorrent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]

2006-09-21 08:36 53248 ----a-r- c:\windows\system32\VTTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"WLSetupSvc"=3 (0x3)

"Pml Driver HPZ12"=2 (0x2)

"NitroPCSrv"=3 (0x3)

"idsvc"=3 (0x3)

"gusvc"=3 (0x3)

"gupdate"=2 (0x2)

"EsetNod32Fix"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

"AntiVirusOverride"=dword:00000001

"AntiVirusDisableNotify"=dword:00000001

"FirewallDisableNotify"=dword:00000001

"FirewallOverride"=dword:00000001

"UpdatesDisableNotify"=dword:00000001

"UacDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

"DisableNotifications"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"c:\\Arquivos de programas\\DreaMule\\emule.exe"=

"c:\\Arquivos de programas\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Documents and Settings\\KAKA\\Configurações locais\\Dados de aplicativos\\Google\\Google Talk Plugin\\googletalkplugin.exe"=

"c:\\Arquivos de programas\\BitTorrent\\bittorrent.exe"=

"c:\\Arquivos de programas\\uTorrent\\uTorrent.exe"=

"c:\\Arquivos de programas\\Kaspersky Lab\\Kaspersky Internet Security 7.0\\avp.exe"=

"c:\\SysTrayX\\RUNSTX.EXE"=

"c:\\Arquivos de programas\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe"=

"c:\\naqlxk.exe"=

"c:\\SysTrayX\\SYSTRAYX.EXE"=

"c:\\DOCUME~1\\KAKA\\CONFIG~1\\Temp\\winayncro.exe"=

"c:\\DOCUME~1\\KAKA\\CONFIG~1\\Temp\\winwugc.exe"=

"c:\\DOCUME~1\\KAKA\\CONFIG~1\\Temp\\tlmecr.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"4662:TCP"= 4662:TCP:emule tcp

"4672:UDP"= 4672:UDP:emule udp

R0 ViBus;ViBus;c:\windows\system32\drivers\ViBus.sys [26/12/2009 13:52 16896]

R0 ViPrt;VIA SATA IDE Device Driver;c:\windows\system32\drivers\ViPrt.sys [26/12/2009 13:52 52224]

R1 Ext2fs;Ext2fs;c:\windows\system32\drivers\ext2fs.sys [24/7/2010 17:38 181120]

R1 IfsMount;IfsMount;c:\windows\system32\drivers\ifsmount.sys [24/7/2010 17:38 51072]

R2 Application Updater;Application Updater;c:\arquivos de programas\Application Updater\ApplicationUpdater.exe [16/12/2009 17:38 375296]

R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [9/6/2010 09:58 20072]

R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\arquiv~1\mcafee\SITEAD~1\mcsacore.exe [3/6/2010 13:08 88176]

S3 utg4njgz;AVZ Kernel Driver;c:\windows\system32\drivers\utg4njgz.sys [19/5/2010 17:41 7168]

S4 EsetNod32Fix;Nod32 AV;c:\windows\regedit.exe [14/4/2008 07:00 150528]

S4 gupdate;Google Update Service (gupdate);c:\arquivos de programas\Google\Update\GoogleUpdate.exe [21/5/2010 11:02 135664]

S4 NitroPCSrv;NitroPC Service;c:\arquivos de programas\NitroPC\NitroPCService.exe --> c:\arquivos de programas\NitroPC\NitroPCService.exe [?]

S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [10/6/2010 23:52 691696]

--- =Outros Serviços/Drivers Na Memória ---

*NewlyCreated* - AMSINT32

.

Conteúdo da pasta 'Tarefas Agendadas'

2010-08-07 c:\windows\Tasks\AWC AutoSweep.job

- c:\arquivos de programas\IObit\Advanced SystemCare 3\AutoSweep.exe [2010-02-26 17:11]

2010-08-03 c:\windows\Tasks\AWC Update.job

- c:\arquivos de programas\IObit\Advanced SystemCare 3\IObitUpdate.exe [2010-02-26 19:18]

2010-08-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-05-21 14:01]

2010-08-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-05-21 14:01]

2010-08-07 c:\windows\Tasks\User_Feed_Synchronization-{C69C817D-D399-459C-B6BF-6334DA973CDA}.job

- c:\windows\system32\msfeedssync.exe [2009-03-08 07:31]

.

.

------- Scan Suplementar -------

.

uStart Page = hxxp://google.com.br/

mStart Page = hxxp://www.microsoft.com

mWindow Title = Microsoft Internet Explorer

uInternet Connection Wizard,ShellNext = iexplore

uInternet Settings,ProxyOverride = *.local

IE: &NeoTrace It!

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Baixar com o Free Download Manager - file://c:\arquivos de programas\Free Download Manager\dllink.htm

IE: Baixar tudo com o Free Download Manager - file://c:\arquivos de programas\Free Download Manager\dlall.htm

IE: Baixar vídeo com o Free Download Manager - file://c:\arquivos de programas\Free Download Manager\dlfvideo.htm

IE: Download all by FlashGet3 - c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\GetAllUrl.htm

IE: Download by FlashGet3 - c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\GetUrl.htm

IE: Download selecionado pelo Free Download Manager - file://c:\arquivos de programas\Free Download Manager\dlselected.htm

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\MICROS~2\Office12\EXCEL.EXE/3000

IE: ????3?? - c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\GetUrl.htm

IE: ????3?????? - c:\documents and settings\KAKA\Dados de aplicativos\FlashGetBHO\GetAllUrl.htm

FF - ProfilePath - c:\documents and settings\KAKA\Dados de aplicativos\Mozilla\Firefox\Profiles\ynuiebxn.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2567694&SearchSource=3&q={searchTerms}

FF - prefs.js: browser.startup.homepage - www.bomjardimnet.com.br

FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2567694&q=

FF - component: c:\arquivos de programas\Free Download Manager\Firefox\Extension\components\vmsfdmff.dll

FF - component: c:\arquivos de programas\McAfee\SiteAdvisor\components\McFFPlg.dll

FF - plugin: c:\arquivos de programas\Google\Picasa3\npPicasa3.dll

FF - plugin: c:\arquivos de programas\Google\Update\1.2.183.29\npGoogleOneClick8.dll

FF - plugin: c:\arquivos de programas\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

FF - plugin: c:\arquivos de programas\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

FF - plugin: c:\documents and settings\KAKA\Dados de aplicativos\Mozilla\plugins\npgoogletalk.dll

FF - plugin: c:\documents and settings\KAKA\Dados de aplicativos\Mozilla\plugins\npgtpo3dautoplugin.dll

---- FIREFOX POLICIES ----

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");

c:\arquivos de programas\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);

c:\arquivos de programas\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".com.br");

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);

.

- - - - ORFÃOS REMOVIDOS - - - -

BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

HKCU-Run-FlashGet 3 - c:\arquivos de programas\FlashGet Network\FlashGet 3\FlashGet3.exe

MSConfigStartUp-NitroPC - c:\arquivos de programas\NitroPC\NitroPC.exe

AddRemove-FlashGet 3.5 - c:\arquivos de programas\FlashGet Network\FlashGet 3\uninst.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-08-07 17:52

Windows 5.1.2600 Service Pack 3 NTFS

Procurando processos ocultos ...

Procurando entradas auto inicializáveis ocultas ...

Procurando ficheiros/arquivos ocultos ...

Varredura completada com sucesso

arquivos/ficheiros ocultos: 0

**************************************************************************

.

--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------

[HKEY_USERS\S-1-5-21-1960408961-1606980848-1177238915-1003\Software\Microsoft\Internet Explorer\MenuExt\O(uë_f3*N}]

@="c:\\Documents and Settings\\KAKA\\Dados de aplicativos\\FlashGetBHO\\GetUrl.htm"

"contexts"=dword:00000022

[HKEY_USERS\S-1-5-21-1960408961-1606980848-1177238915-1003\Software\Microsoft\Internet Explorer\MenuExt\O(uë_f3*N}hQèþ”¥c]

@="c:\\Documents and Settings\\KAKA\\Dados de aplicativos\\FlashGetBHO\\GetAllUrl.htm"

"contexts"=dword:000000f3

[HKEY_LOCAL_MACHINE\software\zbshareware]

@DACL=(02 0000)

"times"="8"

"lastcheck"="9"

"Name"="ledworld"

"Code"="BHJDH17937"

"autorun"="1"

DUMPHIVE0.003 (REGF)

.

--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------

- - - - - - - > 'explorer.exe'(2740)

c:\windows\system32\WININET.dll

c:\arquiv~1\WINDOW~2\wmpband.dll

c:\arquivos de programas\Stardock\Fences\FencesMenu.dll

c:\windows\system32\webcheck.dll

c:\arquivos de programas\stardock\fences\DesktopDock.dll

c:\windows\system32\WPDShServiceObj.dll

c:\arquivos de programas\Nokia\Nokia PC Suite 7\PhoneBrowser.dll

c:\arquivos de programas\Nokia\Nokia PC Suite 7\NGSCM.DLL

c:\arquivos de programas\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_por-br.nlr

c:\arquivos de programas\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

c:\arquivos de programas\Microsoft Office\Office12\1046\GrooveIntlResource.dll

c:\arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\PDFShell.dll

c:\arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\PDFShell.PTB

.

------------------------ Outros Processos em Execução ------------------------

.

c:\arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe

c:\windows\system32\HPZipm12.exe

c:\docume~1\KAKA\CONFIG~1\Temp\winayncro.exe

c:\docume~1\KAKA\CONFIG~1\Temp\winwugc.exe

c:\arquivos de programas\stardock\fences\Fences.exe

.

**************************************************************************

.

Tempo para conclusão: 2010-08-07 17:57:54 - Máquina reiniciou

ComboFix-quarantined-files.txt 2010-08-07 20:57

Pré-execução: 12 pasta(s) 29.152.714.752 bytes disponíveis

Pós execução: 16 pasta(s) 28.987.654.144 bytes disponíveis

WindowsXP-KB310994-SP2-Pro-BootDisk-PTG.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 18990D6B87A11A81F5E8B4329E663107

passei o FindyKill e..

exclui, mas NADA..

############################## | FindyKill V5.045 |

# User : KAKA (Administradores) # MICRO-07CAD5BC4

# Update on 23/06/2010 by El Desaparecido

# Start at: 18:52:08 | 7/8/2010

# Website : http://pagesperso-orange.fr/NosTools/index.html

# Contact : FindyKill.Contact@gmail.com

# Genuine Intel® CPU 2140 @ 1.60GHz

# Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3

# Internet Explorer 8.0.6001.18702

# Windows Firewall Status : Enabled

# AV : Kaspersky Internet Security 7.0.1.325 [ (!) Disabled | Updated ]

# A:\ # Unidade de disquete de 3 1/2 polegadas

# C:\ # Disco fixo local # 46,33 Go (31,13 Go free) # NTFS

# D:\ # Disco fixo local # 25,66 Go (12,22 Go free) # NTFS

# E:\ # Disco CD-ROM

# F:\ # Disco CD-ROM

################## | Ficheiros infeciosos |

C:\autorun.inf

D:\autorun.inf

################## | Registro |

[HKCR\ed2k]

[HKCU\Software\Classes\ed2k]

[HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"

[HKU\S-1-5-21-1960408961-1606980848-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"

################## | Estado |

# Affichagem dos arquivos ocultos : OK

Chave faltando : HKLM\SYSTEM\...\SafeBoot\Minimal | Safe mode não funcional !

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )

# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )

# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )

# (!) SharedAccess -> Start = 4 ( Good = 2 | Bad = 4 )

# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )

# (!) wscsvc -> Start = 4 ( Good = 2 | Bad = 4 )

################## | ! Fim do relatório # FindyKill V5.045 ! |

Compartilhar este post


Link para o post
Compartilhar em outros sites

sem falar que o modo de segurança não entra, antes de entrar ele reinicia.

Editado por kakarossoneri

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário






Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×